Legal

Privacy Policy

CPSCReady stores account, company, packet, citation, payment-status, and file-reference metadata needed to prepare and maintain certificate packet drafts.

For the current version, packet records and file-reference metadata are stored in your authenticated workspace. The wizard records lab-report file names or links for packet organization and missing-data review; it does not store the underlying lab-report file contents.

Hosted workspaces use Supabase authentication, database records, row-level security, and private storage patterns for packet data and file-reference records.

Packet records should be kept inside the user's workspace. The app does not use packet records or file-reference metadata to train AI models.

Stripe processes checkout payment data. CPSCReady stores Stripe session and order status identifiers, not raw payment card details.

Transactional emails may be sent through Brevo for account, packet, checkout, or support notifications.

You can delete saved drafts and file references from your workspace. Some billing, security, audit, and support records may be retained when needed for legitimate business, legal, tax, fraud-prevention, or dispute purposes.

Core vendors and subprocessors may include Vercel for hosting, Supabase for authentication/database/storage, Stripe for payments, and Brevo for transactional email. Deletion or privacy requests can be sent to support@cpscready.com.