TerawattIQTerawattIQ
Legal

Privacy Policy

Last updated: May 6, 2026

This Privacy Policy explains what data TerawattIQ collects, how we use it, and the choices you have. We aim to collect only what we need to operate and improve the platform.

What we collect

  • Account data: name, email, company, role, and authentication credentials.
  • Customer Data: sites, coordinates, parcel identifiers, notes, and exports you create.
  • Usage data: aggregated request paths and response status codes used for service operations and capacity planning.
  • Billing data: handled by Stripe; we never see or store your card number. We retain only the Stripe customer/subscription identifiers.

How we use it

  • To provide and improve the Service.
  • To send service emails (verification, password reset, billing receipts, security notices).
  • To respond to support and sales inquiries you initiate.
  • To detect and prevent abuse.

We do not sell or rent personal data to third parties. We do not use Customer Data to train third-party ML models.

Cookies and analytics

We use a small number of cookies to keep you signed in. We also offer optional analytics cookies (Google Analytics, with IP anonymization enabled) so we can understand which features are useful. Analytics cookies are off by default — they only load after you click “Accept all” in the consent banner shown on your first visit. You can change your choice anytime via the Cookie preferences link in the footer.

Subprocessors

We use a small set of well-known infrastructure subprocessors:

  • AWS / GCP — application hosting and storage.
  • Cloudflare — edge network, TLS termination, DDoS protection.
  • Stripe — payments and billing.
  • Resend — transactional email delivery.
  • Google Analytics — aggregate marketing metrics, only after explicit consent.

Retention

Account data is retained while your account is active. Customer Data is retained according to your plan; default retention is unlimited while subscribed, 30 days after cancellation, then archived. Billing records are retained for 7 years to meet tax and audit requirements.

Your rights

You can export, correct, or delete your data at any time from your account settings, or by emailing [email protected]. EU/UK and California residents have the rights provided by GDPR / CCPA respectively.

Security

Encryption in transit (TLS 1.3) and at rest (AES-256). Role-based access control, audit logging, least-privilege internal access. See the Security page for full architecture details.

Contact

Privacy questions: [email protected].