LEGAL
Last updated: May 3, 2026
We collect the minimum data necessary to provide our service: Account information: Your name and email address when you create an account. Usage data: Which drawings you reviewed, review scores, and credit transactions. We store review metadata (filename, score, findings) but never the drawing file itself. Technical data: Browser type, IP address, and standard server logs for security and performance monitoring.
Your drawing files are never stored on our servers. When you upload a PDF: Your browser renders it to an image locally. That image is sent to our server over HTTPS. The image is sent to our AI provider for analysis. The image is immediately discarded after analysis — it is never written to disk or stored in any database. We do not store, retain, share, or sell your technical drawings under any circumstances.
We use your data solely to provide the drawing review service, maintain your account and credit balance, send transactional emails such as account confirmation and password reset, and improve the accuracy and reliability of our review engine. We do not use your data for advertising, and we do not sell your data to any third party.
We use the following trusted third-party services: Supabase (supabase.com) — database and authentication. SOC 2 Type II certified. Anthropic (anthropic.com) — AI analysis engine. Your drawing image is processed by Anthropic's API under their data processing terms. Anthropic does not use API inputs to train their models by default. Vercel (vercel.com) — hosting and infrastructure. SOC 2 Type II certified. Stripe (stripe.com) — payment processing. PCI DSS Level 1 certified. We never see or store your card data.
Account data is retained while your account is active and deleted immediately and permanently when you delete your account. Review metadata is retained to provide your review history. You may request deletion at any time. Drawing images are never retained — discarded immediately after processing. Credit transaction records (purchases and usage history) are deleted immediately when you delete your account. Payment records are retained by Stripe under their own privacy policy and regulatory obligations — we do not store your payment card data or have control over Stripe's retention practices.
You have the right to access all personal data we hold about you, request correction of inaccurate data, delete your account and all associated data, and export all your data at any time. You can exercise these rights directly from your Account page — no email required. Use the Export My Data button to download a ZIP file containing your account information, all reviews, all findings, and all transactions. Use the Delete Account button to permanently remove all your data from our systems. For any other privacy requests or questions, contact us at hello@redprint.app.
We implement industry-standard security measures including TLS encryption for all data in transit, bcrypt password hashing, Row Level Security at the database level, and API keys stored as environment variables never in source code. For our full security practices, see our Security page.
For privacy questions or requests, contact us at hello@redprint.app.