Privacy Policy
This policy explains what information DesignTech AI collects, how we use and protect it, and the choices you have. We aim to collect only what we need to run the service, and to explain everything in plain language. For the controls behind these commitments, see our Trust & Security page.
1. Who we are
DesignTech AI provides a content platform for B2B marketing teams. When you use the platform, your organization is the controller of the content you bring in, and DesignTech AI processes that content on your behalf to deliver the service.
2. Information we collect
Account information
When you sign up or sign in, we collect identity details through our authentication provider, such as your name, work email, and organization. We do not store your password; authentication is handled by Auth0.
Content you provide
We process the content, files, brand assets, and source material you or your organization upload or connect, and the assets the platform generates for you. This content belongs to your organization.
Usage and technical data
We collect operational data needed to run and secure the service, such as log and diagnostic information, device and browser details, and records of actions taken in the platform.
3. How we use information
- To provide, maintain, and improve the platform and its features.
- To generate, repurpose, and publish content at your direction.
- To authenticate users and enforce organization-level access controls.
- To secure the service, prevent abuse, and troubleshoot issues.
- To communicate with you about your account, support, and service updates.
4. AI processing and your content
To generate content, the platform sends the relevant inputs to enterprise AI services on Google Vertex AI. Requests go directly to that provider with no third-party routing intermediary.
- Your content is not used to train public models. The enterprise model services we use do not use your prompts or content to train their models.
- Detailed execution logs are short-lived and are redacted for common secret patterns.
- Generated output is filed back into your organization's workspace and belongs to your organization.
5. How we share information
We do not sell your personal information. We share information only with service providers that help us run the platform, and only as needed to deliver the service. These sub-processors include:
- Auth0: authentication and identity.
- Supabase: managed database hosting.
- Google Cloud: AI execution (Vertex AI) and file storage (Cloud Storage).
- Render: application hosting.
- Integration partners you choose to connect: when you connect an external app, data flows to that app at your direction.
We may also disclose information if required by law, or to protect the rights, safety, and security of our users and the service.
6. Data isolation and security
Each organization's data is separated at the database with row-level security, enforced on every request, and scoped by your organization role. We run on managed, audited infrastructure. For more detail, see our Trust & Security page.
7. Data retention
We retain your content and account information for as long as your organization maintains an account, and as needed to provide the service. Operational logs are kept only as long as needed for security and troubleshooting. You can export or request deletion of your content as described below.
8. Your rights and choices
Depending on your location, you may have rights to access, correct, export, or delete your personal information, and to object to or restrict certain processing. You can export content and assets from the platform at any time. To exercise any right, contact us using the details below and we will respond in line with applicable law.
9. Ownership of your output
Everything produced in your workspace is yours to use, publish, edit, and keep. Your content, brand, and source material stay inside your organization's tenant.
10. International data transfers
Our service providers may process data in regions outside your own. Where that happens, we rely on the safeguards offered by those providers for international transfers. A Data Processing Agreement is available on request.
11. Children's privacy
DesignTech AI is a business tool and is not directed to children. We do not knowingly collect personal information from anyone under 16.
12. Changes to this policy
We may update this policy from time to time. When we make material changes, we will update the effective date above and, where appropriate, notify you.
13. Contact us
Questions about this policy or your data? Email [email protected]. For security and compliance requests, including a Data Processing Agreement, email [email protected].