26 November 2012
- Last edited 04 February 2013
I can understand your confusion since there is so many links to different privacy statements, but they are about different things (like site itself, forum, other services like ABBYY FineReader Online, etc.)
Cloud OCR SDK usage is actually regulated by this agreement: http://cloud.ocrsdk.com/Account/DisplayDeveloperAgreement
And it basically says, if you want to keep your documents safe - just don't forget to delete it after recognition.
If you read it more carefully, you will find that there is a rule, saying that if you don't delete it within 24 hours then you grant us right to use images for improving our service. I think this is important to explain that.
We do take data privacy seriously, and in no case data will be distributed outside or made public. We introduced internal procedures in order to be able to provide our service for companies who deal with images containing private data.
Nevertheless, any service needs maintenance. Maintenance is done by people. We monitor its performance, do regular updates, and investigate crashes and errors. Only limited number of trusted personnel has access to the service internals, but still they have. This sometimes involves interaction with database. This 24 hours rule actually says that we introduce additional level of security that prevents regular maintenance procedures to interact with recent data, giving it additional time to be removed. It is hardcoded into our standard admin tools.
I know, legal language is always written the way it minimized risks to the company. So it is very primitive currently. However, actual data security does not come from agreements; it comes from technical and administrative measures taken. And this is what we do in order to be trusted service provider.
Nevertheless, if there are legal regulations that require special language in agreements, you may contact our sales team and discuss custom agreement. Also, doing OCR in-house is always an option, we may offer you our great SDK for that too.