PRIVACY POLICY
How we handle your data.
Last updated 2026-05-05.
1. Who we are
LV-Architect ("we", "us") is operated by Structured Systems Labs LLC, a Virginia limited liability company. Throughout the rest of this policy we refer to the service simply as "LV-Architect". Reach us as "The LV-Architect Team" at:
- Privacy & data-rights requests: privacy@lv-architect.com
- General product support: support@lv-architect.com
2. What we collect
- Account data — your email address, a scrypt hash of your password, and the timestamp at which you verified your email. We never store your raw password.
- Project content — the room geometry, devices, landmarks, narrative options, BOM line prices, and proposal branding (company name, logo, prepared-by) you save.
- Operational data — IP address, user agent, request paths, and timestamps for security, abuse mitigation, and debugging. Stored in audit and request-metric tables.
- Payment data — handled by Stripe. We see only your Stripe customer id and current subscription state. Card numbers, expirations, and CVCs never reach our servers.
3. How we use it
- To deliver the design tool, save and load your projects, and render exports.
- To authenticate you, prevent abuse, and recover your account on password reset.
- To investigate security incidents and meet regulatory or legal obligations.
- To process subscription billing and respond to your support requests.
4. We do not sell or share for advertising
We do not sell, rent, or share your account or project data with advertisers, data brokers, or marketing platforms.
The only third parties that ever see your data are the service providers we need to run the product — and only the minimum data each one needs to do its job:
- Cloud hosting and database (a third-party US-based cloud provider — the specific provider is operational detail and may change without notice; we will not move data outside the United States without updating this page)
- Authentication tokens (in our own database; not externalized)
- Transactional email (e.g. Resend) for verification and password reset
- Payment processing (Stripe) for subscriptions
- Operational logging and security monitoring (server-side only)
- Customer support (when you write to us, we read what you write)
- Product analytics — none enabled at launch. If we add an analytics provider in the future, this page will be updated and the integration will respect the cookie-consent rules in §7.
5. Retention
Saved-project retention varies by your subscription tier and is measured from the last time the project was saved or modified:
| Plan | Retention |
|---|---|
| Free — Local browser-session only | Not stored on our servers |
| Tier 1 — $19 / mo | 14 days from last save |
| Tier 2 — $49 / mo | 30 days from last save |
| Tier 3 — $149 / mo | 90 days from last save |
| Tier 4 — $299 / mo | 180 days from last save |
- Audit, security, and operational logs may be retained for up to 2 years to support incident investigation and compliance.
- Account records are kept until you delete your account.
- Backups — when you delete a project or your account, the live database row is removed at delete time, but copies may remain in encrypted operational backups for the backup lifecycle (a rolling window, typically up to 35 days). Backups are not used for any purpose other than disaster recovery and are purged on schedule.
6. Your rights
You can request access to, correction of, or deletion of your account data at any time by emailing privacy@lv-architect.com from the email address on the account. You can also delete your account directly from the Account settings page; this triggers an immediate database delete (subject to the backup window described above).
7. Cookies
LV-Architect sets only essential cookies needed for the product to function:
- lv_session — your authenticated session (HTTP-only, SameSite=strict).
- lv_csrf — CSRF token for state-changing requests.
- A small localStorage entry for the snap-to-grid editor preference, which never leaves your browser.
We do not currently set advertising, retargeting, fingerprinting, or analytics cookies. If we add a non-essential cookie in the future, the integration will respect consent for users in jurisdictions that require it (see §8).
8. International users (GDPR / EEA, UK, Switzerland)
LV-Architect is operated from the United States and is not actively targeted at residents of the EEA, the UK, or Switzerland at this time. If you sign up from one of those regions, the legal basis for our processing is performance of the contract you enter into when you create an account. We do not enable non-essential cookies for any user without a consent mechanism in place. If a future product change adds such cookies, we will surface a consent banner before processing any GDPR-covered user's data through them, and you will be able to exercise GDPR access / correction / erasure / portability rights via privacy@lv-architect.com.
9. Children
LV-Architect is a professional design tool not directed at children under 13. We do not knowingly collect data from children under 13 (or under 16 in jurisdictions where that's the applicable age). If you believe a child has signed up, contact privacy@lv-architect.com and we will delete the account.
10. Changes to this policy
When we materially change this policy we will update the "Last updated" date above and notify signed-in users by email. Continuing to use the service after a change means you accept the updated policy.
11. Contact
For privacy or data-rights questions: privacy@lv-architect.com.
For general product support: support@lv-architect.com.
— The LV-Architect Team