Trust Center
Enterprise-Grade Protection
Your construction project data deserves the highest level of security. Review our security practices, privacy commitments, and infrastructure.
Your Data Stays Yours
We do not train AI models on your documents, photos, or reports. Your project data is used solely to provide you with our services, nothing more.
🔒 Security
Encryption
All data is encrypted at rest (AES-256) and in transit (TLS 1.3). Your drawings, reports, and media files are protected at every stage.
Authentication
Powered by Clerk with token validation on every request. Supports SSO integration and multi-factor authentication for enterprise accounts.
Access Controls
Row-Level Security (RLS) on Supabase ensures users only access their own organization's data. Role-based permissions control feature access.
Data Isolation
Strict programmatic controls ensure complete data isolation. Each organization operates in its own dedicated data environment at the database level.
🛡️ Data Privacy
No AI Training on Your Data
We do not train public or private AI models on your documents. Our third-party AI providers (OpenAI) are contractually prohibited from using your content for model training.
Your field reports, photos, voice recordings, and project data are processed solely to deliver your requested outputs (reports, transcriptions, exports) and are not retained by AI providers beyond the processing window.
Data Deletion on Request
Request deletion of your project data at any time via email to contact@architai.com. We honor deletion requests within 3 business days. All data is purged from backups within 30 days.
Data Portability
Export your reports in standard formats (PDF, DOCX) at any time. Your data is never locked into our platform.
☁️ Infrastructure
Where Your Data Lives
Database
Supabase (PostgreSQL) with Row Level Security, hosted on AWS
File Storage
Supabase Storage (S3-compatible) with signed URL access controls
Application
Vercel Edge Network with automatic HTTPS and DDoS protection
Technology Stack
| Service | Provider | Purpose |
|---|---|---|
| Database & Storage | Supabase (AWS) | PostgreSQL database, file storage, real-time sync |
| Authentication | Clerk | User authentication, session management, SSO |
| AI Processing | OpenAI | Report generation, voice transcription |
| Payments | Stripe / RevenueCat | Subscription billing, in-app purchases |
| Hosting | Vercel | Web application hosting, edge functions, CDN |
| Offline Sync | PowerSync | Offline-first data synchronization for mobile |
🏢 Enterprise Security Features
SSO & MFA
Single Sign-On integration available for enterprise accounts. Multi-factor authentication supported via authenticator apps.
Audit & Compliance
Activity logging tracks user access and data modifications. Security questionnaire and compliance documentation available on request.
Backup & Recovery
Automated daily backups with point-in-time recovery. Disaster recovery procedures ensure business continuity.
Incident Response
Documented incident response procedures. Prompt notification to affected customers in the event of a data breach.
Questions About Security?
Need a security review packet, have compliance questions, or want to discuss enterprise security requirements?
Contact Security TeamRelated Documents