Merge PDF files — no upload, no server
Add your PDFs, arrange order, click Merge. Everything happens in your browser.
Drop PDF files here
or click to browse — unlimited files, any size
100% private — files never leave your device. No upload, no account, no limits.
Add your PDFs, arrange order, click Merge. Everything happens in your browser.
When you use tools like iLovePDF or SmallPDF, your files travel over the internet to a remote server. That server processes them, stores them temporarily (for 1–2 hours), and then deletes them. During that window, your documents exist on someone else's computer.
For everyday files like meeting agendas this is fine. But for bank statements, medical records, legal contracts, tax returns, or personal IDs — uploading to a third-party server creates unnecessary exposure. A server breach, a misconfigured permission, or a subpoena could expose your documents.
PDFree's approach: Your files are loaded into your browser's RAM, merged using a JavaScript library (pdf-lib), and the result is generated locally. Close the tab — the files are gone. There is no server. There is nothing to breach.
| Feature | PDFree | iLovePDF | SmallPDF |
|---|---|---|---|
| Files uploaded to server | Never | Always | Always |
| Files deleted from server | N/A — never stored | After 2 hours | After 1 hour |
| Works offline | ✓ Yes (PWA) | ✗ No | ✗ No |
| File size limit | None | Limited (free) | Limited (free) |
| Daily usage limit | None | Limited (free) | 2 tasks/day (free) |
| Account required | ✓ Never | Optional | Optional |
| Safe for confidential docs | ✓ By design | Depends on trust | Depends on trust |
Don't take our word for it — verify it yourself in 30 seconds:
The only network requests you'll see are loading the app's JavaScript and CSS. Your PDF files never appear in the network log because they never leave your browser.
Client contracts, case documents, and evidence files are confidential. Upload to no one.
Patient records fall under HIPAA. PDFree is safe by design — zero PHI ever transmitted.
Tax returns, bank statements, and payroll data belong on your device — not a startup's server.
Employee records and candidate data are sensitive. Process locally, leave no trace.
No. PDFree merges PDFs entirely in your browser using pdf-lib. Your files are never sent over the internet. You can verify this by opening DevTools → Network — you'll see zero requests containing your PDF data.
Yes. Because files never leave your device, PDFree is safe for HIPAA-regulated medical records, privileged legal documents, and any other sensitive content. There is no server that could be breached.
iLovePDF and SmallPDF upload your files to their servers, process them there, and delete them after 1–2 hours. PDFree processes everything locally — your files never travel to any server. You also get no file size limits and no daily usage limits.
No. PDFree has no file size limits because processing is local. Your device's RAM is the only constraint — modern devices handle PDFs up to hundreds of megabytes without issues.
Yes. After your first visit, PDFree is cached as a PWA and works fully offline — no internet connection needed for processing.
PDFree is HIPAA-safe by architecture: no PHI is ever transmitted to our servers because there is no server-side processing. Healthcare workers can safely use PDFree for patient-related documents.
All PDFree tools work the same way — everything stays in your browser: