Privacy policy

Last updated: 2026-04-28

Data controller

ManPro Group AB (reg. no. [organisation number]), contact: [email protected]. Registered in Sweden.

What personal data do we process

• Account data: email address, organisation name, IP address at registration.
• Scan data: the domain you scan, findings, scan timestamps.
• Uploaded documents (RAG add-on): your policies are temporarily indexed in a vector database. Deleted within 30 days of report delivery.
• Payment details: handled by Stripe — we only store session IDs and receipt references, never card numbers.

Legal basis

• Contract (Art. 6.1.b GDPR): account data and scan data are necessary to deliver the service you purchased.
• Legitimate interest (Art. 6.1.f): rate-limit logs and security monitoring to protect the service.
• Legal obligation (Art. 6.1.c): bookkeeping of transactions under Swedish law (7 years).

Where is data stored

• Server: Sweden (Hetzner / Tailscale, EU host).
• Stripe: USA (Privacy Shield replacement with SCCs).
• JuiceFactory (LLM provider): EU region where possible.
• Cloudflare (CDN/Tunnel): EU region prioritised.

Your data does not leave the EU for core processing. External sub-processors (Stripe, AI providers) are listed in the DPA.

How long is data retained

• Account + scan reports: as long as you have an account + 12 months thereafter (for support and dispute resolution).
• Uploaded policy documents: max 30 days after the report is delivered.
• Payment data (for bookkeeping): 7 years under Swedish law.
• Rate-limit logs: 90 days.

Your rights

• Access + portability: export all your data via GET /api/v1/me/export (ZIP archive with JSON + uploaded files).
• Erasure ("right to be forgotten"): DELETE /api/v1/me deletes your account, all orders, all findings and all uploaded documents within 30 days.
• Rectification: contact us to correct inaccurate data.
• Complaint: to IMY (Swedish Authority for Privacy Protection).

Security measures

• TLS 1.2+ for all external traffic (Cloudflare).
• Encrypted backups, daily retention 7+4.
• Magic-link authentication (no password storage for new accounts).
• Per-org isolation in Qdrant (separate collections).
• JWT tokens with 24-hour lifetime.

Questions? Write to [email protected].