Legal

Privacy Policy

Last updated: June 5, 2026

This Privacy Policy explains how CadFiles (β€œwe”, β€œus”) collects, uses, and protects personal data. Update the placeholders (company/legal entity, address, contact email) before publishing.

Template notice: This is a general SaaS privacy policy draft, not legal advice. Adjust based on your actual data flows, cookies/analytics, and your billing provider.
Who we are Data we collect How we use data Legal basis Sharing Retention Your rights Contact

1) Who we are

Controller: [Your Company Legal Name] (β€œCadFiles”).
Website: https://cadfiles.ai
Address: [Your registered address]
Email: [email protected]

2) Data we collect

  • Account data: name, email, password hash, role/permission assignments.
  • Billing data (if applicable): billing name, VAT/tax details, invoice metadata (payment handled by your payment provider).
  • Usage data: pages/features used, search/filter actions, report generation events (to improve performance and reliability).
  • Device/log data: IP address, browser/user agent, timestamps, error logs (security and debugging).
  • Support data: messages you send us and related context.
  • Customer content: data you upload (mappings, datasets, templates, layouts). You control what you upload.

3)Cookies & analytics

We may use cookies and similar technologies to keep you signed in, protect the service, and understand usage. You can control cookies in your browser settings.

4) How we use data

  • Provide and operate the service (accounts, permissions, dashboards, report generation).
  • Secure the platform (abuse prevention, monitoring, audit logs).
  • Improve performance and user experience (bug fixes, feature usage analytics).
  • Communicate with you (service messages, support responses, important updates).
  • Comply with legal obligations (tax, accounting, fraud prevention).

5) Legal basis (GDPR)

  • Contract: to provide the service you request.
  • Legitimate interests: security, fraud prevention, service improvement.
  • Legal obligation: accounting/tax compliance where required.
  • Consent (where applicable): optional cookies/marketing (if you use them).

6) Sharing & processors

We may share data with trusted service providers that process data on our behalf (e.g., hosting, email delivery, analytics, payments), under appropriate contractual safeguards.

  • Hosting/Infrastructure: [Provider name]
  • Email: [Provider name]
  • Payments: [Provider name] (we do not store full card details)
  • Analytics (optional): [Provider name]

7) Data retention

  • Account data is retained while your account is active.
  • Logs/security events are retained for a limited time for troubleshooting and protection.
  • Billing records may be retained for the period required by law.
  • You can request deletion where legally possible.

8) Your rights

Depending on your location, you may have rights to:

  • Access, rectification, deletion
  • Restriction and objection
  • Data portability
  • Withdraw consent (where processing is based on consent)
  • Lodge a complaint with a supervisory authority

9) Contact

For privacy requests, email us at [email protected]. Please include your account email and a clear description of your request.