Privacy Policy

Last updated: March 28, 2026

1. Introduction

MEP Suite ("we," "us," or "our") operates the website mepsuite.app and its associated applications. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services. By accessing or using MEP Suite, you agree to this Privacy Policy. If you do not agree, please discontinue use of our services.

2. Information We Collect

We collect the following types of information:

Personal Information

  • Name and email address (provided during account registration)
  • Authentication credentials via Google OAuth, Microsoft OAuth, or email/password through Supabase
  • Billing information (processed securely by Stripe — we never store your credit card numbers)

Usage and Application Data

  • Calculation data and results generated within MEP Calc Engine
  • Documents and files you upload (specifications, drawings, reports)
  • Project data, submittals, RFIs, and punch list entries
  • Usage analytics (pages visited, features used, session duration)
  • Device information (browser type, operating system, IP address)

3. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve our services
  • Process transactions and manage your subscription
  • Authenticate your identity and secure your account
  • Send service-related communications (billing confirmations, security alerts, product updates)
  • Analyze usage patterns to improve our products
  • Respond to customer support inquiries
  • Comply with legal obligations

4. Data Storage and Security

Your data is stored on Supabase, which is hosted on Amazon Web Services (AWS) infrastructure. We implement industry-standard security measures including encryption in transit (TLS/SSL) and at rest. Payment processing is handled entirely by Stripe, a PCI DSS Level 1 certified payment processor. We never have access to or store your full credit card numbers.

5. Data Sharing and Third Parties

We do not sell, rent, or trade your personal information to third parties. We may share your information only with:

  • Service providers: Supabase (database hosting), Stripe (payment processing), and authentication providers (Google, Microsoft) — only as necessary to operate our services
  • Legal requirements: When required by law, regulation, or legal process
  • Business transfers: In connection with a merger, acquisition, or sale of assets, with prior notice to users

6. Cookies

We use session cookies strictly for authentication purposes — to keep you logged in and maintain your session state. We do not use advertising cookies, tracking cookies, or third-party marketing cookies. Your browser settings allow you to control cookie behavior, but disabling cookies may prevent you from using our services.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data and account
  • Portability: Request your data in a portable format
  • Opt-out: Opt out of non-essential communications

To exercise any of these rights, please email us at mepsuite@outlook.com. We will respond to your request within 30 days.

8. GDPR Compliance (EEA Users)

If you are located in the European Economic Area (EEA), we process your personal data under the following legal bases: (a) your consent, (b) the performance of a contract with you, (c) compliance with legal obligations, or (d) our legitimate interests, provided they do not override your rights. You have the right to lodge a complaint with your local data protection authority. We will honor requests to access, rectify, or erase your data in accordance with the General Data Protection Regulation (GDPR).

9. CCPA Compliance (California Users)

If you are a California resident, you have the right to: (a) know what personal information we collect and how it is used, (b) request deletion of your personal information, (c) opt out of the sale of your personal information — though we do not sell personal information, and (d) not be discriminated against for exercising your privacy rights. To submit a request, contact us at mepsuite@outlook.com.

10. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with our services. If you request account deletion, we will delete your personal data within 30 days, except where we are required to retain it for legal or compliance purposes. Anonymized, aggregated data may be retained indefinitely for analytical purposes.

11. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 18, we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of our services after changes are posted constitutes acceptance of the revised policy.

13. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

MEP Suite
Email: mepsuite@outlook.com
Website: mepsuite.app