Privacy Policy

At SitePillarHQ, we take data security and user privacy extremely seriously. This Privacy Policy details how we collect, use, and protect your information when using the Constractor platform.

1. Data Security & API Keys

We use end-to-end encryption for all stored credentials. Your AI API keys are encrypted at rest and are never accessible to SitePillarHQ staff.

Your sensitive API keys from providers like OpenAI, Anthropic, or Google are stored in our secure vault using Supabase's encryption infrastructure. They are only decrypted momentarily on the server to relay requests to the AI providers and are never stored in plaintext or logged.

2. Usage Data & Document Vault

We only collect data necessary to provide permit tracking services. We do not sell your project data to third parties.

The blueprints, permits, and tasks you upload to our platform remain your exclusive intellectual property. We use secure cloud storage (Supabase Storage) to host these files. We will never use your private construction documents to train public AI models.

3. Third-Party Processors

We employ third-party service providers to facilitate our platform, including:

• Paddle.com: Our Merchant of Record. They collect and process your payment information securely. We do not store your credit card details.
• Supabase: For database hosting and authentication.
• AI Providers: Any AI queries generated are passed to the provider whose API key you supplied. Their respective privacy policies apply to those queries.

4. GDPR & CCPA Compliance

If you are a resident of the European Economic Area (EEA) or California, you have certain data protection rights, including the right to access, update, or delete the information we have on you. If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please contact our support team.

Last updated: June 14, 2026