Uploading a document to a website you found five minutes ago is a genuine privacy decision, that file might contain a contract, a passport scan, or salary details. Some PDF tools deserve your trust and some don't. This checklist gives you concrete signals to judge any tool before you hand it a file, and the red flags that should send you elsewhere.
Green flags: signs a tool is trustworthy
- HTTPS everywhere. The address bar shows a padlock and the URL starts with
https://. Without it, your upload travels in the clear. - In-browser (client-side) processing. The strongest signal: the tool states that files are processed locally and never uploaded. No upload means nothing to leak or retain.
- A clear no-storage statement. If files are processed server-side, the tool should say plainly that they're deleted immediately and never stored or shared.
- A real privacy policy that explains what happens to your data, not a boilerplate stub.
- No mandatory signup or payment for a simple, one-off task.
- No unnecessary permissions or requests to install browser extensions.
Our tool, for the record, is in-browser and requires no signup, see the privacy policy.
Red flags: walk away if you see these
- No HTTPS on a page that accepts file uploads.
- Claims to "crack" any password instantly. That's either dishonest or predatory, modern encryption can't be broken this way (here's why).
- Demands your email or a signup before it will hand back a simple result.
- Aggressive pop-ups, fake "download" buttons, or forced software installs.
- No privacy policy, no contact page, no company information.
- Vague or contradictory storage claims ("we don't store files" next to "we keep files for 24 hours").
A safer workflow for sensitive files
- Prefer an in-browser tool, or an offline app entirely (see online vs offline tools).
- For truly confidential documents, do the work on your own machine, never a server-side uploader.
- After using any online tool, remember that the result you download is fine, but reconsider before uploading originals containing personal data.
- When sending the file onward, follow secure sharing practices.
The bottom line
"Is it safe?" comes down to one question: does my file leave my device, and if so, who handles it and for how long? Tools that process in your browser sidestep the question entirely. For everything else, the checklist above tells you whether the provider has earned your trust.