⚠ DRAFT — REQUIRES LEGAL REVIEW BEFORE PRODUCTION USE
This document was prepared as a starting point for legal review and does not constitute legal advice.
Privacy Policy
Last Updated: April 27, 2026
1. Who We Are
BuildMind LLC is an Illinois limited liability company providing AI-powered construction materials estimation software. We operate the BuildMind platform at buildmind.tech.
Contact: info@buildmind.tech
2. What Information We Collect
We collect the following categories of information when you use BuildMind:
- Account information: Company code, username, password hash (bcrypt or legacy SHA-256), and email address.
- Blueprint files: PDF documents you upload for AI analysis. These files are transmitted to our AI provider (Anthropic, PBC) to generate materials estimates.
- Analysis results: Generated framing materials lists, foreman corrections submitted through the platform, and knowledge submissions.
- Usage telemetry: IP address, login timestamps, analysis counts, and session data.
- Cookies and session tokens: We use session tokens stored in your browser's local storage for authentication purposes only. We do not use third-party tracking cookies or advertising cookies.
3. How We Use Information
- To provide, operate, and maintain the BuildMind analysis service.
- To improve estimate accuracy using anonymized foreman correction feedback.
- To communicate with you about service updates, maintenance windows, and issues affecting your account.
- To process billing and maintain account records when paid plans are active.
- To investigate security incidents and enforce our Acceptable Use Policy.
4. How We Share Information
We do not sell your personal information. We share information only in the following circumstances:
- Anthropic, PBC (anthropic.com) — Blueprint PDFs and analysis requests are sent to Anthropic's API for AI processing. Anthropic's data handling is governed by their commercial terms at anthropic.com/legal.
- Hostinger International Ltd — Our hosting provider. Server infrastructure and backups are stored on Hostinger's infrastructure.
- Relay Financial Inc. — Our banking provider for payment processing.
- Law enforcement — When required by a valid legal process, court order, or to protect the rights and safety of BuildMind, our customers, or the public.
5. Data Retention
- Active account data: Retained while your account is active and for a reasonable period after termination.
- Blueprint PDFs: Our intended policy is to retain blueprint PDFs for 90 days post-analysis, after which they are deleted. Note: the current implementation does not persistently store uploaded PDFs — they are processed in memory and transmitted to Anthropic. This section reflects intended future data handling as the platform evolves.
- Analysis results: Retained while your account is active. You may request deletion at any time.
- Backups: Automated backups are retained for 7 days before being overwritten.
6. Data Security
- All data in transit is encrypted using TLS 1.2 or higher via Let's Encrypt certificates.
- HSTS (HTTP Strict Transport Security) is enforced.
- Passwords are hashed using bcrypt. Legacy SHA-256 hashes are being phased out.
- Session tokens are 256-bit cryptographically random values with an 8-hour expiry.
- fail2ban is active on login endpoints to block brute-force attempts.
- Customer data is isolated by company namespace — no cross-company data access is possible.
- Daily automated backups with 7-day retention.
7. Your Rights
You have the right to access, correct, or request deletion of your personal information. To exercise these rights, email info@buildmind.tech. We aim to respond within 30 days.
- California residents (CCPA): You have the right to know what personal information we collect, the right to delete your information, and the right to opt out of sale (we do not sell personal information).
- EU/EEA residents (GDPR): You have the right to data portability, the right to erasure, the right to restrict processing, and the right to lodge a complaint with your local supervisory authority.
8. Children's Privacy
BuildMind is a professional business tool and is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us information, please contact us and we will delete it promptly.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify account holders of material changes via email or an in-product notice at least 30 days before the change takes effect. Continued use of the service after that date constitutes acceptance of the updated policy.
10. Contact Us
Questions about this Privacy Policy or our data practices:
BuildMind LLC
Email: info@buildmind.tech
Jurisdiction: Illinois, USA