FSC Audit ProFSC AUDIT PRO
Back to Home

Privacy Policy

Last Updated: February 11, 2026

1. Introduction

FSC Audit Pro ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our foodservice design quality control platform. We are based in San Francisco, California, and comply with applicable federal and state privacy laws, including the California Consumer Privacy Act (CCPA) and the General Data Protection Regulation (GDPR) where applicable.

2. Information We Collect

2.1 Account Information

  • Name and username
  • Email address
  • Company name
  • Telephone number (optional)
  • Business address (optional)

2.2 Payment Information

Payment processing is handled by Stripe. We do not store your credit card numbers or bank account details. Stripe's privacy practices are governed by their own privacy policy.

2.3 Uploaded Documents

When you use the Service, you upload PDF documents including plan drawings, equipment specifications, and cutsheet books. These documents are stored securely and processed solely for the purpose of generating your audit reports.

2.4 Usage Data

  • Audit history (dates, project names, file names)
  • Feature usage and processing metrics
  • Browser type, device information, and IP address
  • Pages visited and actions taken within the Service

3. How We Use Your Information

  • To provide and maintain the Service, including generating audit reports
  • To process your subscription and payments
  • To communicate with you about your account and the Service
  • To improve the Service and develop new features
  • To detect, prevent, and address technical issues or fraud
  • To comply with legal obligations

4. AI Processing and Your Documents

Important: Your uploaded documents are confidential and will NOT be used to train AI models or for any purpose other than generating your requested audit reports.

Documents are sent to enterprise AI providers exclusively for real-time processing of your audit. These providers process documents under their enterprise API terms, which prohibit using API inputs for model training.

5. Third-Party Service Providers

We engage trusted third-party providers in the following categories to operate the Service:

  • Cloud infrastructure: Account data, authentication, and document storage
  • Payment processing: Subscription billing and payment information
  • AI processing: Document content is sent to enterprise AI providers solely for real-time audit analysis
  • Application hosting: Server logs and request metadata

All providers are based in the United States, operate under enterprise service agreements, and are contractually prohibited from using your data for model training or any purpose beyond providing the Service. A detailed list of subprocessors is available upon request or as part of our Data Processing Agreement.

6. Data Retention

  • Account data: Retained while your account is active
  • Uploaded documents: Permanently deleted from storage immediately upon completion of audit processing. Original PDF files are not retained.
  • Extracted text data: Temporarily stored for up to 14 days to support optional verification, then automatically purged
  • Audit reports: Retained for the duration of your subscription plus 30 days after cancellation
  • Payment records: Retained as required by tax and financial regulations

You may request deletion of your data at any time. We will process deletion requests within 30 days, subject to legal retention requirements.

7. Your Rights

7.1 CCPA Rights (California Residents)

  • Right to Know: Request disclosure of personal information collected
  • Right to Delete: Request deletion of your personal information
  • Right to Opt-Out: We do not sell personal information
  • Right to Non-Discrimination: We will not discriminate against you for exercising your rights

7.2 GDPR Rights (EU/EEA Residents)

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate personal data
  • Erasure: Request deletion of your personal data
  • Portability: Receive your data in a structured, machine-readable format
  • Restriction: Request restriction of processing
  • Objection: Object to processing based on legitimate interests

8. Data Security

We implement industry-standard security measures including encryption in transit (TLS) and at rest, access controls, and regular security reviews. However, no method of electronic storage or transmission is 100% secure, and we cannot guarantee absolute security.

9. Cookies

We use cookies and similar technologies as described in our Cookie Policy.

10. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service. Your continued use of the Service after changes become effective constitutes acceptance of the updated policy.

12. Contact Us

For privacy-related inquiries or to exercise your rights, contact us at privacy@fscauditpro.com.