Privacy Policy

1. Information Collection and Use

1.1 Personal Information: At Propulix, we collect specific personal information necessary to provide our AI-powered interior design services. This includes essential account details such as your name, email address, and encrypted password. For paid subscriptions, payment information is securely processed through Stripe, our authorized payment processor. We also maintain records of your platform preferences and service interaction history to provide a personalized experience. Authentication data is managed securely through Clerk to ensure account protection and seamless access.

1.2 Technical Data: Our systems automatically collect certain technical information to ensure proper platform functionality and security. This includes device-specific information such as the type of device you use, your IP address, browser type and version, access timestamps, and usage patterns. This technical data helps us optimize our service for different devices and browsers while maintaining platform security and performance.

2. Data Storage and Security

2.1 Storage Systems: We utilize industry-leading secure storage systems to protect your data. Your design images are stored in AWS S3 with enterprise-grade security measures. User profile and preference data is maintained in MongoDB with comprehensive security protocols. Payment information is securely handled by Stripe, never touching our servers directly. Authentication credentials are managed through Clerk's secure identity management system. Each storage system is selected for its robust security features and compliance with international data protection standards.

2.2 Security Measures: Our security approach implements multiple layers of protection. We employ end-to-end encryption for all data transmission and storage, conduct regular third-party security audits, maintain strict access control systems with role-based permissions, deploy automated threat detection systems, and perform regular backup procedures. Our security measures are continuously updated to address emerging threats and vulnerabilities.

3. Information Usage

3.1 Service Provision: Your data enables us to deliver our core AI design services effectively. We use your information to process and generate AI designs, handle subscription payments, continuously improve platform functionality, maintain service security, and provide responsive user support. Every use of your data is tied to specific service functions that enhance your experience with our platform.

3.2 Service Optimization: We analyze aggregated data to optimize our services. This analysis helps us enhance platform performance, develop new features based on user needs, quickly identify and fix technical issues, and personalize the user experience. All optimization efforts focus on improving service quality while maintaining user privacy.

4. Data Sharing

4.1 Third-Party Services: We share data with selected third-party services essential for platform operation. This includes Stripe for secure payment processing, Clerk for user authentication, AWS for infrastructure and hosting, and carefully selected analytics providers. Each third-party service is bound by strict data protection agreements and selected based on their security standards and privacy practices.

4.2 Legal Requirements: In certain circumstances, we may be required to share data to comply with legal obligations. This includes responding to valid legal proceedings, court orders, or government requests. We may also share data when necessary to protect our rights, investigate fraud, or ensure platform security. Any such sharing is conducted with minimum necessary disclosure and in accordance with applicable laws.

5. User Rights

5.1 Access Rights: We empower users with comprehensive access rights to their personal data. You can view all personal data we hold about you, request complete copies of your data, update your information at any time, and delete your account if desired. These rights ensure you maintain control over your personal information.

5.2 Data Controls: Users have extensive control over their data through our platform. You can modify your preferences at any time, limit how your data is used, export your information in a portable format, and control data sharing settings. These controls are accessible through your account settings and our privacy dashboard.

6. Data Retention

6.1 Storage Duration: We maintain clear data retention policies. Your data is retained while your account remains active and as required by applicable laws. We keep backup copies for disaster recovery purposes and retain certain information based on specific user requests or legal requirements. Our retention periods are regularly reviewed to ensure they meet both user needs and legal obligations.

6.2 Deletion Processes: Our deletion processes ensure thorough removal of user data when requested. This includes user-initiated deletions through our platform, automatic purging of eligible data, removal from backup systems within defined timeframes, and clearing from archives. All deletion processes follow industry best practices for secure data removal.

7. International Transfer

7.1 Data Location: Our infrastructure spans multiple locations to ensure service reliability. Primary data storage is located in the United States, with our global Content Delivery Network (CDN) enabling fast access worldwide. Backup locations and processing centers are strategically placed to ensure data security and service performance while complying with international data protection regulations.

7.2 Transfer Security: International data transfers are protected by comprehensive security measures. We implement encryption for all data in transit, maintain strict storage security protocols, enforce rigorous access controls, and regularly verify compliance with international data protection standards. All transfers are conducted in accordance with applicable data protection laws.

8. Children's Privacy

8.1 Age Restrictions: Our service is not intended for users under 18 years of age. We do not knowingly collect or target data from children. If we discover that we have inadvertently collected information from a user under 18, we will promptly delete this information and notify parents as required by law. Accounts discovered to belong to minors will be removed immediately.

9. Updates to Policy

9.1 Policy Changes: We may update this Privacy Policy to reflect changes in our practices or legal requirements. When we make changes, we will provide prior notice through our platform, ensure continued legal compliance, clearly communicate service changes, and implement any necessary security updates. All updates will be posted with a new effective date.

10. Contact Information

For privacy concerns or questions, please contact us at:

Email: privacy@propulix.com Address: 251 Consumers Rd North York, ON M2J 4R3 Canada

Business Hours: Monday-Friday, 9:00 AM - 5:00 PM EST

This Privacy Policy was last updated on November 25, 2024. We regularly review and update our policies to ensure they reflect our current practices and meet regulatory requirements.