Your Plans Are Protected
Flikt.AI is built from the ground up with institutional-grade security. Your construction documents are encrypted, isolated, and protected.
Document Protection
Every plan set uploaded to Flikt.AI is protected with multiple layers of security from the moment it leaves your device until it is processed and stored.
Your documents are yours. Flikt.AI never sells or shares your plan sets with third parties. Your documents are processed solely to deliver your conflict analysis. Under Anthropic’s API terms, your data is not used by Anthropic to train AI models. See our Privacy Policy.
Encryption In Transit
All data transfers use TLS 1.2/1.3 encryption. Your documents are fully encrypted between your browser and our servers.
Encryption At Rest
Documents stored in our cloud infrastructure are encrypted using AES-256, the same standard trusted by financial institutions and government agencies.
Tenant Isolation
Every client's data is logically isolated. Your documents are stored in dedicated, access-controlled environments that no other user or organization can reach.
Access Controls
Role-based authentication ensures only authorized members of your team can access your projects. Every action is logged and auditable.
AI Processing Safeguards
When our AI analyzes your plan sets for conflicts, your documents are processed in isolated, ephemeral environments. Analysis data is processed in secure, ephemeral compute instances that are terminated after each run. Your documents and results are retained only for the duration needed to deliver your reports and maintain your account history, and are used to deliver your analysis and to improve our internal conflict-detection accuracy through prompt tuning, reference-library expansion, and benchmarking. We do not share customer plan content with any third party for training or any other purpose.
Flikt.AI's conflict detection engine extracts only the technical elements necessary for analysis: dimensions, specifications, spatial relationships, and coordination references. The AI does not share or redistribute any content from your drawings to third parties.
Infrastructure & Hosting
Flikt.AI runs entirely on Amazon Web Services (AWS), one of the most trusted cloud platforms in the world. Our infrastructure is deployed in U.S.-based data centers with enterprise-grade physical and network security.
All infrastructure is hosted in AWS US-East (Virginia) with redundant storage, automated backups, and 24/7 monitoring.
Key infrastructure protections include encrypted database connections, automated daily backups with point-in-time recovery, network-level firewalls and intrusion detection, and continuous uptime monitoring.
Authentication & Payments
User authentication is powered by an industry-leading identity platform with enterprise-grade session management and RS256 JWT tokens. We never store passwords on our servers.
Payment processing is handled entirely by Stripe, a PCI DSS Level 1 certified processor. Flikt.AI never sees, stores, or has access to your credit card numbers or banking details.
Data Retention & Deletion
You maintain full control over your data at all times. You can request deletion of your documents and project data at any point, and we will permanently remove all associated files from our systems within 30 days of your request.
For active subscriptions, your project data is retained only for the duration needed to deliver your reports and maintain your account history. We do not archive or retain data beyond what is necessary for service delivery.
Sub-Processors
Flikt.AI engages a small number of sub-processors to deliver the Service. The list below mirrors the disclosure in our Data Processing Agreement (Annex III) and follows the regional-processing format used by enterprise SaaS providers.
Updated May 2, 2026.
| Sub-Processor | Nature of Processing | Customer Data Processed | Country of Processing — US Zone | Country of Processing — EU Zone |
|---|---|---|---|---|
| Amazon Web Services, Inc. | Cloud infrastructure: object storage, databases, and compute used to store and process customer plan sets. | Authorized user identifiers; uploaded plan-set documents; project metadata; conflict-analysis outputs. | United States (default). Available to be used in additional regions, based on enterprise account configuration: Canada, Brazil, Australia, Japan, Singapore, South Korea, India. |
Available on enterprise request: Ireland (eu-west-1), Frankfurt (eu-central-1), Paris (eu-west-3), London (eu-west-2), Stockholm (eu-north-1). |
| Anthropic, PBC | AI analysis services. Customer Data is not used for model training per the provider’s API terms. | Text and images extracted from customer plan sets, processed in-memory for the duration of each analysis call. | United States. | United States or European Union, based on the regional API endpoint selected for the enterprise customer. |
| Stripe, Inc. | Payment processing (PCI DSS Level 1). Stripe receives billing and payment-method data only; no plan-set content. | Billing contact, invoice metadata, payment-method tokens. Card numbers and bank details are never seen or stored by Flikt.AI. | United States. | Ireland (Stripe Payments Europe Ltd.) for EU-resident customers. |
For sub-processor change notifications or to request EU data residency for an enterprise contract, contact legal@flikt.ai. The complete contractual disclosure, including transfer mechanisms (Standard Contractual Clauses, UK Addendum, Swiss FDPIC), is in Annex III of our Data Processing Agreement.
Frequently Asked Questions
Can other users see my uploaded plans?
No. Every client's data is completely isolated. There is no cross-tenant access. Your documents are only accessible to authenticated members of your organization.
Are my plans used to train AI models?
Two separate answers:
Third parties: No. Anthropic’s commercial API terms prohibit using customer data for AI model training, and Anthropic is the only AI provider in our analysis path.
Flikt.AI (internal): Yes — we use customer plan sets internally to improve our own conflict-detection accuracy. This includes tuning detection prompts, expanding our internal reference library of construction patterns and conflict types, and benchmarking detection quality on real plan sets. We never publish, sell, or share customer plans with anyone outside Flikt.AI.
Where is my data stored?
All data is stored on Amazon Web Services (AWS) infrastructure in U.S.-based data centers with enterprise-grade encryption and access controls.
Can I delete my data?
Yes. You can request full deletion of your documents and project data at any time by contacting us at info@flikt.ai. All data will be permanently removed within 30 days.
Is Flikt.AI suitable for institutional clients?
Yes. Our security architecture is designed to meet the expectations of banks, lenders, investors, and their consultants. We provide encrypted storage, isolated environments, and full audit capabilities.
Do you have a privacy policy?
Yes. Our full privacy policy is available at flikt.ai/privacy-policy.
Ready to Get Started?
Upload your plans with confidence. Enterprise-grade security comes standard with every Flikt.AI subscription.
Upload Plans Securely