Privacy

Privacy Policy

Last updated 2026-06-09

Summary

Terrave is a B2B platform for construction product environmental declarations. We collect personal data only as needed to operate the platform, support customers, and comply with regulations. We do not sell customer data. EU/UK and California residents have additional rights described below.

Data we collect

  • Account data: name, email, employer, role — captured at sign-up via Clerk.
  • Product data: BOMs, plant data, supplier declarations, and EPD evidence files uploaded by your organisation. Stored under organisation-level isolation.
  • Usage data: server logs, API access timestamps, and aggregated analytics. No third-party advertising trackers.
  • Billing data: handled by our payment processor (Stripe). We never store full card numbers.

How we use it

To operate the platform (generate EPDs, host DPPs, run verifier workflows), to provide support, to communicate service updates, and to meet legal and verifier-audit obligations. We do not sell personal data and do not share it with third parties for advertising.

Sub-processors

We use the following service providers: Clerk (authentication), Neon (Postgres database), Vercel (hosting/edge), Cloudflare R2 (evidence file storage), Stripe (billing), Resend (transactional email), Anthropic (AI features). Each is bound by a data processing agreement.

Your rights

EU/UK GDPR and California CCPA residents may request access, correction, export, or deletion of their personal data. Send requests to privacy@terrave.ai.

Contact

Privacy questions: privacy@terrave.ai. General contact: greg@terrave.ai.

This page is a working summary of how Terrave handles personal data. For a binding agreement, your contract or DPA governs. Material changes will be announced via email at least 30 days before they take effect.