• Nov 27, 2025
  • 4 min read

Privacy Policy

Introduction

This Privacy Policy explains how Doculore ("Doculore", "we", "our", or "us") collects, uses, and protects information when you use our enterprise desktop application and related services for document processing, OCR, advanced search, and retrieve‑augmented generation (RAG).

By using Doculore, you agree to the practices described here. If you do not agree, please refrain from using the product and services.

Information We Collect

  • Account Information (if applicable): Name, email, company, and billing details when you activate or license Doculore.
  • Content You Process: Documents and data you ingest for OCR, indexing, search, enrichment, and RAG. You retain ownership of your content.
  • Usage Data: Product interactions, feature metrics, and diagnostic events to improve stability and performance. This is aggregated or pseudonymized where possible.
  • Device & Technical Data: OS version, app version, locale, crash logs, and performance telemetry.
  • Connectivity & Integrations: When you connect storage providers or databases, we store necessary configuration metadata (e.g., connector type) but not credentials unless you explicitly provide and consent to secure storage.
  • Cookies/Web Data (website only): Standard analytics cookies on our website; the desktop app does not use browser cookies.

Google API Data Access (Limited Use Disclosure)

Doculore's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

When you connect your Google account, Doculore requests the following OAuth scopes:

ScopePurpose
gmail.metadataRead email metadata (sender, recipient, subject, date, labels) to enable search and indexing of your Gmail messages. We do not read the body or attachments of your emails through this scope.
drive.readonly or drive.metadata.readonlyList and read file metadata from your Google Drive to enable document discovery, indexing, and search. With drive.readonly we may also retrieve file contents you select for OCR/RAG processing.

How We Access Google User Data

  • Access: We access only the data necessary to provide the features you enable (e.g., indexing Drive files, searching Gmail metadata).
  • Use: Data retrieved via Google APIs is used solely within Doculore to power search, indexing, and RAG features you initiate. We do not use this data for advertising or unrelated purposes.
  • Storage: Google user data is processed locally on your device by default. If you opt into cloud-backed indexes, data may be stored on our managed servers with encryption at rest and in transit.
  • Sharing: We do not sell, rent, or share Google user data with third parties except as required to operate the service (e.g., cloud infrastructure providers under contractual safeguards) or to comply with law.
  • Retention: Google-sourced data is retained only as long as you maintain the integration. You can disconnect your Google account at any time, which removes cached Google data from Doculore.

How We Use Information

  • Provide core features (OCR, parsing, enrichment, indexing, semantic/vector search, RAG).
  • Improve quality, performance, and reliability; detect, prevent, and respond to incidents.
  • Provide customer support, licensing, and compliance.
  • Develop new features and conduct product analytics in an aggregated form.

Where applicable, we rely on: (i) performance of a contract; (ii) legitimate interests (e.g., app security, product improvement); (iii) consent (where required); and (iv) compliance with legal obligations.

Data Processing Architecture

  • Doculore is designed to process documents locally on your machine where possible. Some optional features (e.g., cloud connectors, managed vector search, or model endpoints) may transmit data to your chosen third‑party services or to Doculore’s managed endpoints if you opt in.
  • Source citations are preserved by design for grounded responses. You can disable RAG or redact fields via preprocessing.

Sharing of Information

We do not sell your personal information. We may share:

  • Service Providers: Hosting, telemetry, payment, and support vendors that process data on our behalf under contractual safeguards.
  • Enterprise Admins: If your license is provisioned by your organization, certain usage/activation metadata may be visible to your admin.
  • Legal & Safety: To comply with law, enforce terms, or protect rights, security, and users.
  • Business Transfers: In a merger, acquisition, or asset transfer, subject to continuing protections.

Data Retention

We retain personal data only as long as needed for the purposes described, or as required by law or contractual obligations. You control retention of your processed documents and indexes.

Security

We employ technical and organizational measures appropriate to the risks of processing (e.g., encryption in transit, access controls, and least‑privilege operational practices). No system is 100% secure; report issues via info@doculore.com.

International Transfers

Where data is transferred across borders, we use appropriate safeguards (e.g., Standard Contractual Clauses) as required by law.

Your Rights

Subject to local laws, you may request access, correction, deletion, portability, restriction, or objection to processing. Where we process data based on consent, you can withdraw consent at any time.

Requests: info@doculore.com.

Children’s Privacy

Doculore is not directed to children under 16 and we do not knowingly collect their data.

Changes to This Policy

We may update this Policy from time to time. Material changes will be announced via release notes or our website. Continued use indicates acceptance of updates.

Contact Us

Doculore Legal & Privacy info@doculore.com | 1 (833) 328‑2669 Istanbul, TR 34245