Privacy Policy

Last Updated: March 27, 2026

1. Introduction and Scope

This Privacy Policy explains how Prose Engineering Technologies, LLC ("Prose," "we," "our") collects, uses, discloses, retains, and protects personal information when you use our website, desktop application, or related services (collectively, the "Services"). This Policy applies to all users, including individual account holders and members of organizational accounts.

The Application is installed and operates locally on your device. Engineering calculations are performed on your device, and project data is stored locally. Prose does not access, transmit, or store your project data. This Policy covers only the data that is transmitted to and maintained on Prose's servers, such as account information, organization data, and licensing records.

2. Definitions

  • Account – Your unique account for accessing the Services.
  • Application – The Prose desktop software installed on your Device.
  • Device – A computer or electronic system you own or control.
  • Project Data – Engineering project data stored locally on your Device. Prose does not access, transmit, or store Project Data.
  • Prose-Hosted Data – Data transmitted to and stored on Prose's servers, including account information, organization data, and licensing records.
  • Organization – A company, firm, or entity that maintains an organizational account and manages users.
  • Personal Data – Information that identifies or can reasonably identify you, including name, email, device identifiers, and usage information.
  • Usage Data – Technical data collected automatically when you interact with the Services.
  • Controller – Prose, as the entity that determines the purposes and means of processing your Personal Data.
  • Processor – A service provider that processes Personal Data on Prose's behalf under written agreement.
  • You – The individual or Organization using the Services.

Capitalized terms not defined in this Policy have the meanings given in our End-User License Agreement (prose-eng.com/eula).

3. Personal Data We Collect

3.1 Information You Provide

  • Full name and email address
  • Organization name
  • Profile photo (avatar)
  • Role and permissions within your Organization
  • And similar types of information
  • Diagnostic files: If you contact us for technical support, you may voluntarily send us your project file (.pros) or other diagnostic information to help us reproduce and resolve issues. These files may contain Project Data including engineering inputs and calculations. We use diagnostic files solely to troubleshoot the reported issue and delete them within 30 days of issue resolution, unless you consent otherwise.

3.2 Information Collected Automatically (Usage Data)

  • Access times and login timestamps
  • Feature usage and interaction logs
  • IP address, browser type and version, device type, operating system
  • Machine identifiers used for license enforcement (to prevent a single seat from being active on multiple devices simultaneously)
  • Error and diagnostic details, including stack traces and performance data (collected via Rollbar). Automated error reports may incidentally include limited technical context from your Device but do not include your engineering project files or calculation results.

3.3 Information We Do Not Collect

  • Project Data: All engineering project data, inputs, calculations, and Application Output remain on your Device. Prose does not intentionally access, transmit, or store Project Data.
  • Payment details: Credit card and billing information is collected and processed directly by Stripe. Prose does not store your payment card data.
  • Tracking or advertising cookies: We do not use cookies for advertising, analytics, or cross-site tracking. Our service providers (such as Cloudflare and Supabase) may set functional cookies necessary for security, authentication, and session management. We do not track you across third-party websites.

4. How We Use Your Personal Data

4.1 Providing the Services

  • Create and manage your Account and authenticate access
  • Enforce license terms, including verifying that a seat is not active on multiple Devices simultaneously
  • Process subscription payments through Stripe

4.2 Operating and Improving the Services

  • Monitor system performance and troubleshoot errors
  • Analyze anonymized Usage Data to identify trends and improve the Application
  • Develop new features and functionality

4.3 Communications

  • Send transactional emails related to your Account (e.g., password resets, subscription confirmations)
  • Notify you of service updates, security alerts, and required updates
  • Send feature announcements or product newsletters unless you opt out

You may opt out of non-essential communications at any time by using the unsubscribe link included in each email or by contacting [email protected]. Opting out does not affect transactional or service-related emails necessary to operate your Account.

4.4 Legal and Compliance

  • Comply with applicable laws, regulations, and legal processes
  • Enforce our EULA (prose-eng.com/eula) and protect our rights, property, and safety
  • Respond to lawful requests from public authorities

5. Disclosure of Your Personal Data

We do not sell your Personal Data. We share data only in the following circumstances:

5.1 Service Providers

We share data with third-party service providers who perform services on our behalf. These providers access Personal Data only as necessary to perform their designated function and are bound by confidentiality obligations.

  • Supabase – Authentication and data storage: Account information, organization data, licensing records
  • Cloudflare – Hosting and content delivery: IP address, access logs
  • Rollbar – Error tracking and diagnostics: Error logs, stack traces, device and browser information
  • Zeptomail – Transactional and notification emails: Name, email address
  • Stripe – Payment processing: Payment information (collected directly by Stripe)
  • Zoho Campaigns – Marketing and email campaigns: Name, email address, email engagement data (opens, clicks)

5.2 Business Transfers

If Prose is involved in a merger, acquisition, bankruptcy, or sale of all or substantially all of its assets, your Personal Data may be transferred to the successor entity. The successor will be bound by this Policy with respect to your data. We will notify you by email or prominent notice before your data is transferred or becomes subject to a different privacy policy.

5.3 Legal Requirements

We may disclose Personal Data to comply with applicable laws, respond to valid legal processes (e.g., subpoenas, court orders), enforce our EULA (prose-eng.com/eula), or protect the rights, property, or safety of Prose, our users, or the public.

6. Data Retention

We retain Personal Data only as long as necessary to fulfill the purposes described in this Policy or as required by law.

  • Account data – Until you or your Organization requests deletion, or until your Account is terminated
  • Usage Data – 24 months from collection, then anonymized or deleted
  • Error and diagnostic logs – 30 days
  • Diagnostic files (.pros files) – Deleted within 30 days of issue resolution
  • Payment records – As required by applicable tax and financial reporting laws
  • Anonymized analytics – Retained indefinitely (no longer qualifies as Personal Data)
  • Marketing preferences – Until you opt out or request deletion

Prose-Hosted Data is stored on servers located in the United States. Our services are intended for users located in the United States. If you access our services from outside the United States, you do so at your own risk and are responsible for compliance with applicable local laws.

Upon termination of your Account, we will delete or anonymize your Prose-Hosted Data within 30 days, unless retention is required by law or to resolve an outstanding dispute. This does not affect Project Data, which remains on your Device and is not within Prose's control.

7. Security of Your Personal Data

We implement reasonable technical and organizational measures to protect your Prose-Hosted Data, including:

  • TLS encryption for all data in transit
  • Encrypted storage at rest via Supabase and Cloudflare
  • Limiting access to Personal Data to personnel who require it to operate and maintain the Services
  • Secure authentication mechanisms for your Account

No method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. If we become aware of a security breach affecting your Personal Data, we will notify you without unreasonable delay and in accordance with applicable law.

Your Responsibilities: Project Data is stored locally on your Device. You are solely responsible for securing, backing up, and protecting your Device and Project Data. Prose is not responsible for loss, corruption, or unauthorized access to data stored on your Device.

8. Your Privacy Rights

8.1 Your Rights

Depending on your location and applicable law, you may have some or all of the following rights regarding your Personal Data:

  • Access: Request a copy of the Personal Data we hold about you
  • Correction: Request that we correct inaccurate or incomplete Personal Data
  • Deletion: Request that we delete your Personal Data, subject to legal exceptions
  • Portability: Request your Personal Data in a commonly used, machine-readable format
  • Opt-out of marketing: Unsubscribe from non-essential communications at any time

The specific rights available to you depend on the laws of your state or jurisdiction. We will honor all rights required by applicable law.

8.2 How to Exercise Your Rights

To submit a request, contact us at [email protected]. We will verify your identity before processing your request and respond within 45 calendar days. If we need additional time, we will notify you of the reason and extension period. If we decline a request, we will explain the basis for our decision. You may appeal by contacting [email protected].

If your Account is managed by an Organization, certain requests (such as deletion) may need to be coordinated through your Organization Administrator.

8.3 Non-Discrimination

We will not discriminate against you for exercising any of your privacy rights. Exercising your rights will not affect your access to the Services or the terms of your subscription.

8.4 Additional Disclosures

We do not sell your Personal Data. We do not share Personal Data for cross-context behavioral advertising or profiling.

9. Do Not Track and Analytics

9.1 Do Not Track

Our Services do not respond to Do Not Track signals from browsers. We do not sell or share Personal Data, so Global Privacy Control (GPC) signals do not trigger any change in our data processing.

9.2 Analytics

We use anonymized Usage Data to analyze trends and usage patterns. We do not profile individual users, build advertising profiles, or share analytics with third parties.

10. Children's Privacy

Our Services are designed for qualified structural engineering professionals and are not directed at children. We do not knowingly collect Personal Data from children under 13 years of age. If we learn that we have collected Personal Data from a child under 13, we will delete that information promptly. If you believe a child under 13 has provided us with Personal Data, please contact us at [email protected].

11. Third-Party Links

Our Services may contain links to external websites or resources. We are not responsible for the content or privacy practices of third-party sites. We encourage you to review their privacy policies before providing any personal information.

12. Changes to This Policy

We may amend this Policy at any time, for any reason, with or without notice to you, and your continued use of the Application after the amended Policy is published will constitute your acknowledgment and agreement to the amended Policy. However, to the extent the amended Policy materially alters your rights or obligations in this Policy, the amended Policy will become effective upon the earlier of (a) your continued use of the Application with actual knowledge of the amended Policy, or (b) 30 days after the amended Policy is published.

13. Contact Us

If you have questions or concerns about this Privacy Policy, contact us at:

Prose Engineering Technologies, LLC
[email protected]
Missouri, USA

Organizational customers who require a Data Processing Agreement may contact us at [email protected].

Prose Logo © 2026 Prose Engineering™. All Rights Reserved.