Legal

Privacy Policy

Last updated: Draft v0 — awaiting publish date

This document is a v0 draft published for transparency while counsel review is in progress. The version posted here is the version we operate by; we will note any material change.

Effective date: to be set on publish

Monumize, LLC ("Monumize", "we", "us", "our") provides an AI-assisted marketplace for adding inscriptions to existing headstones. This Privacy Policy explains what personal information we collect, how we use it, who we share it with, and how you can exercise the rights you have over it.

1. Information we collect

You provide directly:

Account information: full name, email address, role (caretaker, dealer, cemetery, admin), optional phone number, optional avatar URL.
Organization information (dealers and cemeteries only): legal business name, business email, phone, address, monument-dealer license number and issuing state, optional EIN.
Headstone photos: the image you upload of the existing stone, and any optional reference object visible in the frame.
Inscription details: the inscription text you intend to add, type of inscription (second date, epitaph, etc.).
Approval signature: when you approve a proof, the legal name you type, the timestamp, and the IP address of the signing device.
Completion photo (dealers only): a photograph of the finished stone.
Payment information: Stripe collects card details directly. We receive only a payment-method identifier, last-four, and the result of the charge — we never see your card number.

Collected automatically:

Usage logs: IP address, browser user agent, request timing, error references. Used for security and debugging.
Cookies: a Supabase authentication session cookie. We do not run third-party analytics in the MVP.

From third parties:

Stripe: payment status, charge identifiers, dispute notifications.
Anthropic and fal.ai: AI inference results (font, dimensions, generated preview image). Inputs sent are limited to the photo URL and the inscription text you provide.
Resend: email delivery, open, and bounce events.

2. How we use your information

Purpose	Lawful basis (GDPR)
Provide the inscription marketplace	Contract performance
Process payments via Stripe	Contract performance
Generate proofs and analyze stones with AI	Contract performance
Enforce row-level data isolation between users	Legitimate interest in security
Detect fraud, abuse, and breached passwords	Legitimate interest in security
Send transactional email (proof, completion)	Contract performance
Comply with FTC, IRS, and state requirements	Legal obligation

We do not use personal information for advertising or sell it to third-party data brokers.

3. Who we share information with

Monument dealers assigned to your job receive your inscription text, the stone photo (via short-lived signed URL), the AI-detected metadata, and the resulting cut files. They do not see your home address, phone number, or payment details.
Cemeteries that referred your job (where applicable) see job status updates and receive a referral fee on completion. They do not see your card details or unrelated job data.

Subprocessors that operate parts of the platform on our behalf:

Subprocessor	Purpose	Region
Supabase, Inc.	Database, auth, file storage	US
Vercel, Inc.	Hosting and CDN	US
Stripe, Inc.	Payment processing	US
Anthropic PBC	AI vision (stone analysis)	US
fal.ai	AI image generation (preview)	US
Resend, Inc.	Transactional email	US
Fly.io / Railway	Vector-export microservice (Python)	US

Law enforcement or regulators, only when legally compelled and only to the extent required.

We do not sell your personal information.

4. Where data is stored

All production data is processed in the United States. We do not intentionally transfer personal information outside the US in the MVP. If we add EU customers later, we will rely on Standard Contractual Clauses (SCCs) or an equivalent transfer mechanism.

5. How long we keep it

Data type	Retention
Account and profile data	While your account exists, plus 1 year
Job records and proofs (signed)	7 years (financial-record retention)
Audit logs (`job_events`, admin)	7 years
Stone photos	5 years from job completion or 90 days after cancellation
Completion photos	5 years from job completion
Payment records (held by Stripe)	Per Stripe's retention policy
Email opt-out registry	Indefinitely (must be retained to honor opt-outs)

Cancelled-job artifacts are pruned on a quarterly basis.

6. Your rights

Depending on your location you may have rights to:

Access the personal information we hold about you
Correct inaccurate information
Request deletion ("right to be forgotten")
Restrict or object to certain processing
Receive your data in a portable format
Lodge a complaint with a supervisory authority

To exercise any of these rights, email privacy@monumize.com. We will respond within 30 days.

For Californians: you have rights under the CCPA/CPRA including the right to know, delete, and opt out of sale (we do not sell). For Virginia, Colorado, Connecticut, Utah, and other state-law residents: your equivalent rights are honored.

7. Security

Every database table uses Postgres Row Level Security so a user can only see their own data.
All connections use TLS.
Strict Content Security Policy and Strict-Transport-Security headers are set in production.
Service-role database keys are never exposed to the browser.
Stripe handles card data; we are PCI DSS SAQ A scope.
Passwords are hashed by Supabase (bcrypt) and screened against the Have I Been Pwned breached-passwords corpus on signup.
Admin reads of another user's data are recorded in an audit log visible to the subject.

No system is perfectly secure. If you become aware of a vulnerability, please email security@monumize.com.

8. Children

Monumize is not intended for users under 18. If you believe a minor has created an account, email us and we will delete it.

9. Changes

We will post material changes here and notify active users by email. Continued use of Monumize after a change constitutes acceptance of the new policy.

10. Contact

Monumize, LLC [address to be added on entity formation] privacy@monumize.com