← Back to sign in

Privacy Policy

Last updated: May 3, 2026

1. Information We Collect

Account Information

When you create an account, we collect your email address and any profile information you provide. Authentication is handled through Supabase Auth.

Uploaded Documents

You may upload PDF documents containing door hardware specifications. These documents are stored in Supabase Storage and are accessible only to members of the associated project.

Extracted Data

The Service extracts structured data (door numbers, hardware items, quantities, specifications) from your uploaded documents. This extracted data is stored in our database and associated with your project.

Usage Data

We collect standard usage data including extraction job logs, error logs, and feature usage patterns to improve the Service.

2. How We Use Your Information

  • To provide and operate the Service
  • To process and extract data from your uploaded documents
  • To improve extraction accuracy and Service reliability
  • To communicate with you about your account and the Service
  • To detect and prevent security issues

3. Sub-processors

We engage the following sub-processors to provide and operate the Service. Each sub-processor receives only the data necessary to perform its function. We require that none of them use your data for AI/ML model training.

  • Anthropic— Hardware extraction is performed by Claude AI (Anthropic's API). Uploaded document content is sent to Anthropic for processing. Anthropic is SOC 2 Type II certified and does not use API data for model training. Anthropic Privacy Policy. Before your first extraction we ask you to acknowledge this third-party transfer and confirm that you have authorization to share the document externally.
  • Supabase— Database, authentication, and file storage. Your data is stored on Supabase's infrastructure under Row Level Security policies that scope access to your project members. Supabase Privacy Policy
  • Vercel — Application hosting, serverless functions, and request logs. Vercel Privacy Policy
  • Sentry — Production error monitoring and session replay. Captures stack traces, request metadata, and (for replays) DOM changes. Document content is not included in error reports. Sentry Privacy Policy

4. Data Retention

We retain your account information and project data for as long as your account is active. Uploaded PDFs and extracted data are retained as part of your project records. You may request deletion of your data at any time by contacting us.

5. Data Security

We implement industry-standard security measures including:

  • Row Level Security (RLS) on all database tables
  • Authenticated access to all API endpoints
  • Internal authentication between service components
  • Private storage buckets with signed URL access
  • HTTPS encryption for all data in transit

6. Your Rights

You have the right to:

  • Access — Request a copy of the data we hold about you
  • Correction — Request correction of inaccurate data
  • Deletion — Request deletion of your account and associated data
  • Export — Request a machine-readable export of your project data

To exercise any of these rights, contact us at the email below.

7. Changes to This Policy

We may update this Privacy Policy from time to time. We will post changes on this page with an updated “Last updated” date.

8. Contact

Questions about this policy? Contact us at support@trackdoorhardware.app