Privacy

What we collect

From website visitors: name (optional), email address, phone (optional), the message you write, and basic analytics events (page views, button clicks, source attribution).

From clients and prospects using our quizzes and calculators (style discovery, cost calculator, triangle guide): your inputs, the report generated for you, and the share token used to revisit it.

From clients on a live project: project documents you upload (drawings, photos, approvals), email and WhatsApp correspondence with the team, invoice and payment data, and any portal account details.

From vendors and contractors: company details, certifications, photos uploaded from site, and message history with the studio.

How we use it

To deliver the resource you requested, run our design and construction-administration workflow, communicate with you across the channels you've chosen (email, WhatsApp, portal), maintain financial and contractual records, and improve the studio's services over time.

We do not sell your data. We do not share it with advertisers. We do use a defined set of processors — listed below — to operate the studio.

Third-party services that process your data

The following processors handle data on our behalf. Each is named so you can find their own privacy policy and verify how they treat your information.

• Heroku (Salesforce) & Coolify (self-hosted, Hetzner) — application hosting and the database that stores your records.
• Amazon Web Services (S3) — storage for uploaded files (drawings, photos, attachments, exports).
• Backblaze B2 — encrypted off-site database backups.
• Postmark — transactional email delivery (invitations, approvals, notifications).
• Anthropic (Claude) — large-language-model processing for our AI assistants, summaries, and suggested actions. See the AI Disclosure below.
• OpenAI (Whisper) — transcription of voice notes and recordings, where used.
• Zoho Books — invoicing, payments, and accounting records for clients and vendors.
• WhatsApp / Telegram (via OpenClaw bridge) — message capture for projects where these channels are bound.
• Sentry — error monitoring and diagnostic events from our application.
• Cloudflare — DNS, edge security, and (where enabled) CDN for our marketing site.

We only send these processors the data they need to perform their function, and we do not use any of them for advertising profiling.

Where your data lives

The primary application database is hosted in the EU (Hetzner, Falkenstein) for staging and in the US (Heroku, AWS us-east) for production. File uploads sit in AWS S3 (eu-central-1). Backups go to Backblaze B2 (US). If you'd prefer different residency for a specific engagement, talk to us — we can structure sensitive deliverables differently.

How long we keep it

Project records are retained for the life of the engagement and for seven years afterwards, to satisfy professional, financial, and tax obligations. Marketing-form submissions are kept until you ask us to remove them. Backups are rotated on a 30-day cycle.

Your choices

You can request a copy of the data we hold about you, correction of anything inaccurate, or deletion of your records (subject to legal retention). Email hello@truebuild.ae and we'll respond within fourteen days.

Changes to this policy

We update this page when the services we use change in a meaningful way. Material changes will be flagged on the homepage and emailed to active clients. This version was last reviewed on 1 June 2026.