Privacy Policy

Last updated: March 21, 2026

1. Introduction

arkiTrace ("we," "our," or "us") respects your privacy and is committed to protecting your personal data in accordance with the EU General Data Protection Regulation (GDPR). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website (arkitrace.com), our application (app.arkitrace.com), and our AI-powered proposal automation platform (collectively, the "Service").

Please read this Privacy Policy carefully. By accessing or using our Service, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: When you create an account, we collect your name, email address, and password.
  • Payment Information: When you subscribe to a paid plan, our payment processor (Stripe) collects your payment card details. We do not store your full payment card information on our servers.
  • User Content: Sketches, images, briefs, and other files you upload to the Service, as well as the AI-generated renders and outputs.
  • Communications: Information you provide when you contact our support team or communicate with us.

2.2 Information Collected Automatically

  • Usage Data: Information about how you use our Service, including features accessed, actions taken, and time spent on the platform.
  • Device Information: Browser type, operating system, device type, screen resolution, and unique device identifiers.
  • Log Data: IP address, access times, pages viewed, referring URL, and other standard server log information.
  • Location Data: Approximate geographic location based on your IP address (country/region level only).

2.3 Cookies and Similar Technologies

We use cookies and similar tracking technologies to collect and track information about your activity on our Service. The types of cookies we use include:

  • Essential Cookies: Required for the Service to function properly (authentication, security, load balancing).
  • Analytics Cookies: Help us understand how visitors interact with our Service to improve user experience.
  • Functional Cookies: Remember your preferences and settings.

You can control cookies through your browser settings. However, disabling essential cookies may affect the functionality of our Service.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Service
  • Process your transactions and manage your subscription
  • Create and manage your account
  • Process your uploaded content through our AI systems to generate renders
  • Communicate with you about your account, updates, and support requests
  • Send you marketing communications (with your consent, where required)
  • Analyze usage patterns to improve our Service and develop new features
  • Detect, prevent, and address technical issues, fraud, and security threats
  • Comply with legal obligations

4. AI Processing and Your Content

When you use our Service, your uploaded content (sketches, images, briefs) is processed by our AI systems to generate architectural visualizations. Please note:

  • Your uploaded content is processed on secure servers to generate renders, proposals, and production documents.
  • We may use aggregated, anonymized data to improve our AI models, but we do not use your identifiable content to train AI models without your explicit consent.
  • Your content remains your property. See our Terms of Service for details on content ownership and licensing.
  • We implement technical safeguards to protect your content during processing and storage.

4.3 Business Data

When you use the Service, you may upload business-sensitive information including:

  • Material catalogs with pricing, SKUs, and supplier information
  • Pricing formulas, labor rates, and markup rules
  • Client project details and inquiry emails
  • Construction rules and business preferences

This data is stored securely, encrypted at rest and in transit, and is never shared with other customers. Your business data is used solely to provide the Service to you.

4.4 Shareable Proposal Links

When you generate a shareable proposal link, the proposal content (renders, pricing, specifications) becomes accessible to anyone with the URL. You control what information is included in each share link and can set expiry dates. We do not index shareable links in search engines.

5. Analytics and Third-Party Services

5.1 Analytics and Advertising Services

  • Google Analytics: We use Google Analytics to analyze website and application traffic and usage patterns. Google Analytics uses cookies to collect anonymous information about your visits. You can opt out by installing the Google Analytics Opt-out Browser Add-on.
  • Meta Pixel (Facebook): We use Meta Pixel on our website and application to measure the effectiveness of our advertising campaigns and understand how visitors interact with our Service. Meta Pixel may collect information about your browsing activity, including pages visited and actions taken (such as button clicks and form submissions), and may use hashed identifiers to connect this activity with your Facebook account. This data is shared with Meta Platforms, Inc. and is subject to Meta's Privacy Policy. You can manage your ad preferences through your Facebook Ad Settings.

5.2 Payment Processing

  • Stripe: Our payment processor. Stripe's collection and use of your information is governed by their Privacy Policy.

5.3 Infrastructure

  • Cloud Hosting: We use cloud infrastructure providers to host our Service. Your data is stored on secure servers with industry-standard protections.

6. Data Sharing and Disclosure

We do not sell your personal data. We may share your information in the following circumstances:

  • Service Providers: With third-party vendors who perform services on our behalf (payment processing, hosting, analytics), subject to confidentiality obligations.
  • Legal Requirements: When required by law, legal process, or government request.
  • Protection of Rights: To protect the rights, property, or safety of arkiTrace, our users, or the public.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets.
  • With Your Consent: When you have given us explicit permission to share your information.

7. Data Retention

  • Account Data: Retained while your account is active and for a reasonable period afterward.
  • User Content: Retained while your account is active. Upon account deletion, your content will be deleted within 30 days, except where retention is required by law.
  • Usage Data: Retained in aggregated, anonymized form for analytics purposes.
  • Payment Records: Retained as required for tax and accounting purposes (typically 7 years).

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Regular security assessments and updates
  • Access controls and authentication requirements
  • Secure data centers with physical security measures

However, no method of transmission over the Internet or electronic storage is 100% secure.

9. Your Rights and Choices

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete personal data.
  • Deletion: Request deletion of your personal data.
  • Portability: Request a copy of your data in a structured, machine-readable format.
  • Objection: Object to processing of your personal data for certain purposes.
  • Restriction: Request restriction of processing in certain circumstances.
  • Withdraw Consent: Where processing is based on consent, you may withdraw it at any time.

To exercise these rights, contact us at privacy@arkitrace.com.

10. European Users (GDPR)

  • Legal Basis: We process your personal data based on: (a) your consent, (b) performance of a contract, (c) our legitimate interests, or (d) compliance with legal obligations.
  • Data Transfers: Your data may be transferred outside the EEA. We ensure appropriate safeguards such as Standard Contractual Clauses.
  • Supervisory Authority: You have the right to lodge a complaint with your local data protection authority.

11. California Users (CCPA)

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information held by businesses
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your CCPA rights

12. Children's Privacy

Our Service is not directed to children under the age of 16. We do not knowingly collect personal information from children under 16. If you believe your child has provided us with personal information, contact us at privacy@arkitrace.com.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy and updating the "Last updated" date. For significant changes, we may also notify you via email.

14. Contact Us