Barecopy

Data Handling & Security Overview

A one-page summary for security, IT and compliance review. It describes exactly how Barecopy processes files and what does and does not leave the user's device.

The core fact: Barecopy performs all metadata inspection and removal locally, inside the user's web browser. Files are never uploaded, transmitted or stored on any server. There is no backend that receives file data.

How processing works

Barecopy is a static web page containing JavaScript. When a user selects a file, the file is read into the browser's memory and processed on the device using in-page code. The cleaned copy is generated locally and offered as a download. At no point is the file, or any part of its contents, sent over the network.

Because processing is entirely client-side, the application continues to function with no network connection after the page has loaded — a property that can be verified by disconnecting from the internet and cleaning a file.

What data leaves the device

DataLeaves the device?
File contents (documents, images)No. Processed only in-browser; never transmitted.
Removed metadata valuesNo. Displayed locally; never transmitted.
Verification report (Pro)No. Generated in-browser; downloaded directly by the user.
Pro licence keyYes — sent only to the payment provider (Polar) to confirm subscription status. No file data accompanies it.

Storage & retention

Tracking & third parties

Barecopy sets no advertising or analytics cookies and runs no user-tracking scripts. Payment and subscription management are handled by Polar Software Inc. as merchant of record; card details are provided to Polar, never to Barecopy.

Independent verification

These claims are directly testable by your own technical staff:

1. Open the browser Developer Tools → Network tab.
2. Load barecopy.com and clean a test file.
3. Observe that no request carrying file data is sent.
4. Optionally, disconnect from the network and confirm the tool still works.

Scope & limitations

Barecopy removes file metadata. It deliberately does not alter document content such as tracked changes or comments; it detects and warns about these instead, leaving the decision to the user. Password-protected PDFs are refused rather than risk corruption. Users are advised to review cleaned files before distribution.

For questions from a security or compliance team, contact support@barecopy.com.