Privacy Policy
Last Updated: June 10, 2026
1. Overview
Scope Architect ("we," "our," or "us") is a software platform for planning software projects and collaborating with AI coding agents. This Privacy Policy describes how we collect, use, and share personal information across our website (scopearchitect.com) and our application (app.scopearchitect.com), in accordance with applicable laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) and the General Data Protection Regulation (GDPR).
Notice at Collection
We collect the following categories of personal information to provide our services and manage our business operations:
- Identifiers: Name, email address, IP address, and unique device identifiers.
- Account & Commercial Information: Team membership, subscription plan, billing history, and payment metadata. Card details are processed by Stripe and never stored on our servers.
- Project Content: Scopes, tasks, documents, context, comments, chat messages, and other content you or your connected agents create in your workspace.
- Internet Activity: Interaction with our website and application, such as pages visited and features used.
- Professional Information: Company or team name and role information you provide during signup, demo requests, or support conversations.
2. Sources of Information
We collect information from the following sources:
- Directly from you: When you create an account, use the application, submit a contact or demo form, or email us.
- From your use of the Platform: Content created in your workspace, including content written by AI agents you connect via MCP, API keys, or cloud sandboxes.
- Automatically: Through cookies and similar technologies needed for authentication, security, and analytics.
- From integrations you authorize: For example, GitHub account and repository metadata when you connect a repo.
3. Purpose of Processing
We process your data based on legitimate business interests (operating the Platform), contractual necessity (providing the service you signed up for), and compliance with legal obligations. We use your data to:
- Provide and operate the Platform, including scope generation, Architect Chat, agent handoff, and cloud sandboxes.
- Process payments and manage subscriptions through Stripe.
- Communicate about your account, product updates, and support requests.
- Analyze product and website performance to improve the experience.
- Enforce plan limits, prevent fraudulent activity, and maintain security.
AI processing: When you use AI features, relevant project content is sent to the model provider configured for your workspace (such as Google, Anthropic, OpenAI, xAI, or DeepSeek) to generate the response. If you bring your own API keys, requests are billed to your own provider account; your keys are encrypted at rest and never logged in plaintext. We do not use your project content to train AI models.
4. Selling and Sharing of Information
We do not "sell" personal information for monetary compensation.
Additionally, we do not "share" personal information with third parties for cross-context behavioral advertising purposes. We only disclose information to service providers who are contractually bound to use the data solely to help us deliver the service. These include our hosting and database providers (Vercel, Supabase), payment processor (Stripe), transactional email provider (Resend), and the AI model providers described above.
5. Your CCPA/CPRA Rights (California Residents)
If you are a California resident, you have specific rights regarding your personal information:
Right to Know
You can request a report of what categories and specific pieces of personal information we have collected about you.
Right to Delete
You can request that we delete the personal information we have collected from you, subject to certain legal exceptions.
Right to Correct
You can request that we rectify inaccurate personal information that we maintain about you.
Right to Non-Discrimination
We will not discriminate against you for exercising any of your privacy rights.
6. Security and Retention
We implement industry-standard administrative, technical, and physical security measures to protect your data. We retain personal information only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal requirements.
7. Contact for Rights Requests
To exercise your rights, please submit a request to:
support@scopearchitect.com
We will verify your request by matching the contact information provided with our records. You may also designate an authorized agent to make a request on your behalf.