Architect

Privacy Policy

Last updated May 28, 2026

Architect (“Architect,” “we,” “us”) provides a CRM and workflow application at archi.build and through our iOS app. This policy explains what we collect, why, how it’s stored, and the control you have over it. We sell software, not your data — we do not sell or rent personal information to anyone.

Information we collect

We collect only what the product needs to function:

  • Account information — your name, email address, and (optionally) phone number and profile picture, provided when you sign up or update your profile.
  • Workspace content — the records, fields, files, messages, and configuration you and your team create inside Architect. This is your business data; we process it to provide the service.
  • Photos & files — when you attach a photo or document (including capturing a photo with your device camera), we store it to provide attachments. Camera and photo-library access is requested only at the moment you choose to add an attachment.
  • Location — if you use an address or location field and grant permission, we use your device’s location only to populate that field at your request. We do not track your location in the background.
  • Operational data — authentication events, error logs, and timestamps used to keep the service secure and working. We do not use third-party advertising or cross-app tracking.

How we use your information

  • To operate, sync, and secure your workspace across your devices.
  • To authenticate you and send transactional emails (verification and password-reset codes, org invites).
  • To diagnose errors and protect against abuse and fraud.

We do not use your workspace content to train advertising models, and we do not sell personal information.

Service providers

We share data only with infrastructure providers that process it on our behalf to run the service:

  • Neon — managed Postgres database hosting (your workspace data).
  • Cloudflare — application hosting, content delivery, and file storage (R2).
  • Fly.io — backend API hosting.
  • Resend — delivery of transactional emails.

Each provider is bound by its own data-processing terms and only receives the data necessary to perform its function.

Data security

Data is encrypted in transit (TLS). Passwords are hashed with argon2id and never stored in plaintext. Each organization’s data is isolated at the database level with row-level security so one tenant cannot access another’s data.

Data retention

We retain your data for as long as your account is active. Deleted records are kept in a recoverable trash for 30 days, then permanently removed. When you delete your account, we delete your personal information and the workspaces you own, except where we must retain limited records to comply with legal obligations.

Your rights & choices

  • Export — you can export your workspace data; contact us if you need a full machine-readable copy.
  • Delete your account — you can permanently delete your account and owned workspaces from Settings → Profile inside the app at any time. This removes your personal information from our systems.
  • Access & correction — you can view and update your profile information in the app, or contact us for assistance.

Children

Architect is a business tool not directed at children under 13, and we do not knowingly collect their information.

Changes to this policy

We may update this policy as the product evolves. Material changes will be reflected here with a new “last updated” date.

Contact

Questions about this policy or your data? Email privacy@archi.build.