Introduction
At UNIBIM, we are committed to protecting your privacy and ensuring the security of your data. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your personal data.
By using UNIBIM, you agree to the collection and use of information in accordance with this policy. We encourage you to read this document carefully to understand our practices.
Data We Collect
Authentication Data
- Email address - For authentication via Google OAuth
- Unique user identifier - Firebase UID for session management
Session Data
- Session tokens - Encrypted, stored locally for 30 days
- Login timestamps - To manage session expiration
Usage Data
- Classification activity - Element types and categories classified (anonymous)
- Technical data - Revit version, plugin version, operating system
- Interaction logs - Commands used, timestamps, success/failure status
Error Logs
- Debug information - Anonymous error logs for troubleshooting
- Performance metrics - Processing times, memory usage (aggregate only)
How We Use Your Data
Authentication
- Verify user identity via Google OAuth
- Maintain secure sessions
- Prevent unauthorized access
Authorization
- Enable classification features
- Manage feature access (free vs. premium)
- Track usage limits (future feature)
Product Improvement
- Aggregate usage metrics (anonymous)
- Machine learning model training (future)
- Performance optimization
Logging
- Record interactions in Firebase/Firestore
- Debug and troubleshooting
- Analytics and reporting
Communications
We may use your email address to send:
- Important product updates - Critical security patches, breaking changes
- Security notifications - Suspicious activity alerts
- Marketing communications - Only with explicit consent (opt-in required)
You can unsubscribe from marketing emails at any time using the link provided in each message.
Data Sharing
Third-Party Services
We use the following trusted third-party services to operate UNIBIM:
| Service | Purpose | Data Shared |
|---|---|---|
| Google Cloud Platform | Authentication, database, storage | Email, user ID, session tokens |
| Firebase/Firestore | User management, logging | User ID, classification logs |
| OpenAI (future) | AI-assisted classification | Element metadata only (no geometry) |
Our Guarantees
- ✓ All third-party providers follow security and confidentiality standards
- ✓ Data processing agreements (DPAs) are in place
- ✓ We never sell your data to third parties
- ✓ Data is only shared for service operation, not marketing
Data Retention
Storage Duration
| Data Type | Retention Period |
|---|---|
| Session data | 30 days (auto-refresh on activity) |
| Classification logs | 12 months |
| User accounts | Active until deletion request |
| Error logs | 90 days (anonymous) |
Deletion Process
Data is automatically anonymized or deleted after the retention period. You can request immediate deletion of your account and all associated data at any time.
You can request data deletion at any time by contacting privacy@unibim.com. We will process your request within 30 days and send confirmation when complete.
Security Measures
Our Security Measures
- End-to-end encryption for data transmission (TLS 1.3)
- Encrypted token storage (AES-256)
- Secure Firebase/Firestore configuration
- Regular security audits
- Access control and authentication
- Automatic session expiration
- Security monitoring and alerts
Your Responsibility
- Keep Google account credentials secure
- Use strong, unique passwords
- Log out on shared computers
- Report suspicious activity immediately
- Keep Revit and UNIBIM updated
- Review session activity regularly
International Data Transfers
UNIBIM uses Firebase (Google Cloud) infrastructure, which may store data in multiple regions to ensure reliability and performance. All data transfers comply with applicable data protection regulations.
EU Data Protection
- We use Standard Contractual Clauses (SCCs) approved by the European Commission
- Google Cloud complies with GDPR and international data protection frameworks
- Data centers meet international security standards (ISO 27001, SOC 2, SOC 3)
For more information about Google Cloud's data protection practices, visit: Google Cloud Privacy
Your Rights
Under GDPR and other data protection laws, you have the following rights:
Right to Access
Request a copy of your personal data
Right to Rectification
Correct inaccurate or incomplete data
Right to Erasure
Delete your account and associated data ("Right to be Forgotten")
Right to Data Portability
Receive your data in a structured, machine-readable format
Right to Object
Opt-out of certain data processing activities
Right to Lodge a Complaint
Contact your national data protection authority
How to Exercise Your Rights
To exercise any of these rights, contact us at:
- Email: privacy@unibim.com
- Response time: We respond within 14 business days
Policy Changes
We may update this Privacy Policy to reflect:
- Changes in legislation
- New features or services
- Security improvements
- User feedback
Notification Process
When we make significant changes, we will:
- Send email notification to registered users
- Display a prominent notice on the website
- Update the "Last Updated" date at the top of this policy
Previous versions of this policy are available upon request by contacting privacy@unibim.com.
Contact Information
UNIBIM Data Protection
Email: privacy@unibim.com
Support: support@unibim.io
Company: DynaTools
We respond to all privacy requests within 14 business days. For urgent security concerns, please mark your email as "URGENT - Security Issue".
Legal Disclaimer
This policy is governed by the laws of Portugal. By using UNIBIM, you consent to the collection and use of data as described herein. If you do not agree with this policy, please do not use UNIBIM.
UNIBIM is developed and maintained by DynaTools. For terms of service, please visit our Terms of Service page.