48deploy
Start your project

Last updated: 23 June 2026

Privacy Policy

This Privacy Policy explains how 48deploy collects, uses, and protects the information you provide when using our platform. We take data privacy seriously and design our systems to collect only what we need.

1. Information we collect

We collect information you provide directly:

  • Account information: name, email address, and company name when you register.
  • Project intake data: your responses to the guided questionnaire, uploaded BRD documents, requirements, and any other content you submit to describe your project.
  • Communication data: messages sent through the portal, feedback on POC sections, and support correspondence.
  • Billing information: invoicing details processed through our payment provider (we do not store full card numbers).

We collect information automatically:

  • Usage data: pages visited, features used, and session timestamps — used to improve the platform and diagnose issues.
  • POC viewer audit log: view events in the sandboxed POC viewer (section viewed, timestamp, session token) for IP protection and security purposes.
  • Technical data: IP address, browser type, and device information for security monitoring and fraud prevention.

2. How we use your information

  • To provide, operate, and improve the 48deploy platform and services.
  • To process your project intake and generate your POC and BRD.
  • To communicate with you about your project, invoices, and service updates.
  • To detect and prevent fraud, abuse, and unauthorized access.
  • To comply with legal obligations, enforce our Terms of Service, and protect our rights and those of other users.

We do not use your project data to train, fine-tune, or evaluate AI models.

3. How we share your information

We do not sell or rent your personal information. We share it only as follows:

  • Service providers: cloud infrastructure (hosting, database, storage), transactional email, and payment processing — bound by data processing agreements and limited to what is necessary to provide the service.
  • 48deploy staff: employees and contractors who need access to deliver your project. Access is role-scoped and logged.
  • Legal obligations: where required by law, court order, or to protect against imminent harm. We will notify you where legally permitted.

4. Data retention

We retain your account and project data for the duration of your engagement and for 3 years afterward to support IP verification, legal disputes, and audit requirements. Usage logs are retained for 12 months. Billing records are retained as required by applicable tax law. You may request deletion of your account and personal data (subject to legal retention obligations) by contacting us at privacy@48deploy.com.

5. Security

We apply industry-standard security controls including encryption in transit (TLS 1.3) and at rest, role-based access control, audit logging, and regular security assessments. The POC viewer runs on an isolated subdomain with short-lived signed tokens to prevent unauthorized access to in-review assets. No security system is perfect — if you discover a vulnerability, please report it responsibly to security@48deploy.com.

6. Cookies and tracking

We use strictly necessary session cookies for authentication and CSRF protection. We may use first-party analytics cookies to understand aggregate usage patterns. We do not use third-party advertising cookies or tracking pixels. You can configure cookie preferences in your browser settings, though disabling necessary cookies will prevent you from logging in.

7. Your rights

Depending on your jurisdiction, you may have the right to:

  • Access a copy of the personal data we hold about you.
  • Correct inaccurate personal data.
  • Request deletion of your personal data (subject to legal retention requirements).
  • Object to or restrict certain processing.
  • Data portability — receive your data in a machine-readable format.
  • Withdraw consent where processing is based on consent.

To exercise these rights, contact us at privacy@48deploy.com. We will respond within 30 days.

8. International transfers

Your data may be processed in countries other than the one in which you are located. Where transfers occur, we rely on appropriate safeguards such as standard contractual clauses or equivalent mechanisms required under applicable law.

9. Changes to this policy

We will notify you of material changes to this Privacy Policy via email and a notice in the platform at least 14 days before the changes take effect. The current version is always available at this URL.

10. Contact

Privacy questions: privacy@48deploy.com

Terms of ServicePOC Usage Policy