Privacy Policy
Last updated: 13th December 2024
We comply with applicable data protection laws, including the General Data Protection Regulation (GDPR) for users in the European Union, and follow industry best practices for data privacy and security. By using Kepito's services, you consent to the practices described in this Privacy Policy.
1. Data Controller Information
1.1 Who We Are
Kepito is the data controller responsible for your personal information when you use our services. We are a cloud-based SaaS platform specialising in BIM metadata extraction, processing, and management through integration with Autodesk Construction Cloud and other industry-standard platforms.
1.2 Contact Information
For privacy-related enquiries, contact us at:
Privacy Officer:privacy@kepito.com
General Contact:admin@kepito.com
2. Information We Collect
2.1 Personal Information
Account Registration Data
- Name and email address
- Organisation name and job title
- Contact phone number (optional)
- Professional credentials and certifications (optional)
Authentication Information
- Encrypted passwords and authentication tokens
- OAuth tokens for Autodesk Construction Cloud integration
- Session management and security credentials
2.2 BIM Data and Technical Information
Project and BIM Data
- BIM model metadata, element properties, and attributes
- Project names, descriptions, and organisational structure
- File names, versions, and technical specifications
- Custom schema templates and compliance configurations
Generated Analytics and Reports
- AI-generated insights and analysis results
- Compliance reports and regulatory assessments
- Statistical summaries and performance metrics
3. Legal Basis for Processing
3.1 GDPR Compliance
For users in the European Union, we process your personal data based on the following legal grounds:
4. How We Use Your Information
4.1 Primary Service Delivery
- Processing and analysing BIM metadata to provide insights and reports
- Generating AI-powered analysis and semantic search capabilities
- Creating compliance reports and regulatory documentation
- Facilitating team collaboration and project management features
4.2 Platform Operations and Support
- Authenticating users and managing account access
- Providing technical support and customer service
- Processing subscription payments and billing management
- Communicating service updates, security alerts, and platform changes
5. Data Security and Protection
5.1 Technical Security Measures
Encryption
- End-to-end data encryption
- TLS 1.3 for data transmission
- AES-256 for data at rest
Access Controls
- Role-based access management
- Multi-factor authentication
- Regular access reviews
6. Your Privacy Rights
6.1 Universal Rights
Access Rights
Request copies of your personal data and information about how we process it
Correction Rights
Update or correct inaccurate personal information in your account
Deletion Rights
Request deletion of your personal data (subject to legal obligations)
Data Portability
Export your data in standard, machine-readable formats
6.2 How to Exercise Your Rights
To exercise any of your privacy rights, contact us through the following channels:
We will respond to privacy requests within 30 days (or as required by applicable law).
7. International Data Transfers
Kepito operates as a global platform and may process your data in multiple jurisdictions to provide optimal performance and reliability. We ensure that all international data transfers comply with applicable data protection laws and maintain equivalent levels of protection.
Transfer Safeguards
- Standard Contractual Clauses (SCCs) for EU data transfers
- Data processing agreements with international service providers
- Continuous monitoring of data protection standards in all jurisdictions
8. Contact Information
For privacy-related questions, concerns, or requests, please contact us:
We are committed to addressing your privacy concerns promptly and transparently.
This Privacy Policy is effective as of 13th December 2024, and supersedes all previous versions.