Privacy Policy

1. Who We Are

Foundry Compliance ("we", "us", "our") is the operator of this Service. Contact: privacy@foundrycompliance.co.uk.

2. Data We Collect

• Session identifier — a random UUID stored in a browser cookie to maintain your session.
• IP address — recorded at the time you accept these Terms, for contract-formation audit purposes.
• Acceptance timestamp — date and time of your ToS acceptance.
• Uploaded PDF metadata — file size/length only; we do not store the content of uploaded PDFs.
• Audit parameters and results — the building parameters you submit and the compliance results returned.

3. How We Use Your Data

• To provide the compliance checking Service.
• To record your acceptance of our Terms of Service as required for legal contract formation.
• To comply with data retention obligations (raw upload records are deleted after 30 days).

4. Third Parties

PDF text extracted from your uploaded design pack is sent to Anthropic (claude.ai) for AI processing. No other personal data is shared with third parties. Anthropic's data processing is governed by their Privacy Policy.

5. Data Retention

Raw upload metadata and audit records are automatically deleted after 30 days. ToS acceptance records are retained for the duration required to demonstrate legal contract formation.

6. Your Rights

Under UK GDPR you have the right to access, rectify, or erase your personal data, and to object to or restrict processing. To exercise these rights, contact us at privacy@foundrycompliance.co.uk.

7. Cookies

We use a single session cookie (sid) which is strictly necessary for the operation of the Service. It is HTTP-only and expires after 365 days. No advertising or tracking cookies are used.

8. Changes to This Policy

We may update this Privacy Policy from time to time. The version date at the top of this page indicates when it was last updated. Material changes will require renewed ToS acceptance.