This Privacy Policy explains how PlanSight AI ("PlanSight", "we", "us", "our"), operated by AI Solution Maven based in Queensland, Australia, collects, uses, shares, and protects your personal information when you use our website, web application, and related services (the "Service").
We are committed to handling your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
If you have questions about this Policy or your privacy, please contact us at the address at the bottom of this page.
1. Who this policy covers
This Policy applies to:
- Visitors to our marketing website;
- Users who upload project plans anonymously (without registering);
- Users with Free accounts;
- Users with Pro subscriptions;
- Stakeholders who view plans via a public share link.
Different parts of this Policy will apply depending on how you interact with us.
2. Information we collect
2.1 Information you provide directly
- Account information: When you register, we collect your email address and (optionally) name. For Pro subscriptions, billing details are collected directly by our payment processor — we do not store full payment card numbers.
- Customer Content: Project plan files you upload (such as
.mppfiles), the parsed task and schedule data, annotations, share link names, and any AI Analysis generated from your plans. - Communications: Messages you send us via email or support channels.
2.2 Information collected automatically
- Usage data: Pages visited, features used, actions taken in the app, time and date of access, plan upload events.
- Device and connection data: IP address, browser type and version, operating system, device identifiers, referring URLs.
- Cookies and similar technologies: We use essential cookies for authentication and session management, and Google Analytics 4 cookies to understand aggregate usage. We do not use advertising cookies. See Section 11 for details and opt-out options.
2.3 Information from third parties
- Payment processor (Stripe): We receive confirmation of successful payments, subscription status, and limited card metadata (last 4 digits, expiry, country) — never full card numbers.
- AI provider (Anthropic): Anthropic returns AI Analysis based on the plan content we send. Anthropic does not return personal data we did not first send.
3. How we use your information
We use your information to:
- Provide the Service — parse uploaded files, render visualisations, generate AI Analysis, deliver share views, and operate your account.
- Process payments — bill Pro subscriptions and manage your subscription status.
- Maintain and improve the Service — monitor performance, debug issues, develop new features, prevent abuse.
- Communicate with you — send service notifications, billing receipts, security alerts, and respond to support requests.
- Send product updates — only with your consent for marketing communications. You can opt out anytime.
- Comply with legal obligations — including tax, accounting, and lawful requests from authorities.
- Protect the Service — detect fraud, security threats, and abuse; enforce our Terms of Service.
We do not:
- Sell your personal information to third parties.
- Use Customer Content to train AI models.
- Share Customer Content with advertisers or marketers.
- Use the content of your project plans for any purpose other than providing the Service to you.
4. Legal bases for processing
Where Australian privacy law requires a basis for collection or processing, we rely on:
- Performance of contract — to deliver the Service you signed up for.
- Consent — for marketing emails and optional features.
- Legal obligation — for tax records, compliance with court orders.
- Legitimate interest — for service security, fraud prevention, and product improvement, balanced against your privacy rights.
5. Who we share information with
We share your personal information only as described below.
5.1 Service providers (sub-processors)
We use the following third-party services to operate PlanSight. Each is bound by confidentiality and data protection obligations.
| Sub-processor | Purpose | Data shared | Location |
|---|---|---|---|
| Vercel | Application hosting | All data passing through the app | United States |
| Supabase | Database and authentication | Account information, plan metadata, AI Analysis cache | United States |
| Anthropic | AI Analysis (Claude) | Parsed plan content sent to generate analysis | United States |
| Stripe | Payment processing | Billing details, payment status | Australia / United States |
| Render | .mpp file parsing service | Uploaded .mpp files (transient — deleted after parsing) | United States |
| Resend | Transactional email delivery | Email address, message content for contact/support replies and account notifications | United States |
| Google Analytics 4 | Aggregate usage analytics | Pageviews, anonymised event data, device/browser metadata, truncated IP | United States |
| UptimeRobot | Uptime monitoring | Service availability data only (no Customer Content) | United States |
Anthropic's data policy: Under Anthropic's commercial data policy, inputs sent to the Claude API are not used to train Anthropic's models.
5.2 People you choose to share with
When you create a public share link, anyone with that link can view the plan content you have chosen to share. You control share link creation and revocation.
5.3 Legal and protective disclosures
We may disclose information when required to:
- Comply with a law, court order, subpoena, or regulator request;
- Enforce our Terms of Service or investigate violations;
- Protect the rights, property, or safety of PlanSight, our users, or the public;
- Cooperate with law enforcement on suspected illegal activity.
5.4 Business transfers
If PlanSight is involved in a merger, acquisition, restructure, or sale of assets, personal information may be transferred as part of the transaction. We will notify you and require any successor to honour this Policy or seek your consent for material changes.
6. International data transfers
Most of our sub-processors are based in the United States. By using the Service, you acknowledge that your personal information may be transferred to and processed in countries outside Australia.
When we transfer personal information overseas, we take reasonable steps to ensure the recipient handles it consistently with the Australian Privacy Principles, including through contractual safeguards with our sub-processors.
7. How long we keep your information
We retain personal information only as long as necessary for the purposes described in this Policy, or as required by law.
| Type of data | Retention period |
|---|---|
| Anonymous uploaded plans | 24 hours from upload, then automatically deleted |
| Free tier plans | Until you delete them or close your account |
| Pro tier plans | Until you delete them or close your account |
| Account information | Until you close your account, then deleted within 30 days |
| AI Analysis cache | Same retention as the underlying plan |
| Billing and tax records | 7 years from the end of the financial year (as required by the Australian Taxation Office) |
| Support correspondence | Up to 3 years from last contact |
| Server logs | Up to 90 days |
After cancellation, you have 30 days to export your data via the Excel export feature before deletion.
8. Your rights and choices
Under Australian privacy law, you have the right to:
- Access — request a copy of the personal information we hold about you.
- Correct — ask us to correct inaccurate or out-of-date information.
- Delete — request deletion of your account and associated personal information (subject to legal retention requirements).
- Withdraw consent — opt out of marketing emails and optional data uses at any time.
- Complain — lodge a complaint with us, or with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
To exercise these rights, email us at the address below. We will respond within 30 days.
You can manage many of these directly from your account:
- Export plans via the Excel export feature;
- Delete plans from your dashboard;
- Update your email and account details in settings;
- Cancel your subscription from your billing page;
- Unsubscribe from marketing emails via the link in each email.
9. Security
We implement reasonable technical and organisational measures to protect personal information, including:
- TLS encryption for all data in transit;
- Database access protected by Row-Level Security and service-role authentication;
- Cryptographically secure unguessable identifiers for share links;
- Input validation, file size and task count limits on uploads;
- Regular dependency updates and security review;
- Access controls and audit logs for production systems.
No security measure is perfect. If we become aware of a data breach affecting your personal information, we will notify you and the OAIC as required by the Notifiable Data Breaches scheme under the Privacy Act.
10. Children's privacy
PlanSight is intended for use by adults in business and project management contexts. We do not knowingly collect personal information from children under 18. If you believe a child has provided us personal information, please contact us and we will delete it.
11. Cookies
PlanSight uses two categories of cookies:
Essential cookies necessary for:
- Authentication (keeping you logged in);
- Session security;
- Remembering UI preferences (such as Gantt zoom level).
These cookies are required for the Service to function. Disabling them will break sign-in and saved preferences.
Analytics cookies (Google Analytics 4) to understand aggregate usage of the Service — which pages and features are most used, how the marketing site performs, and where users encounter friction. GA4 cookies are not used for advertising and are not joined with cross-site tracking profiles. We do not sell or share GA4 data with advertisers.
You can opt out of GA4 at any time via:
- The Google Analytics Opt-out Browser Add-on;
- Browser-level cookie blocking or "Do Not Track" settings;
- Disabling cookies for
aisolutionmaven.comin your browser settings.
We do not use advertising cookies, third-party tracking pixels, or cross-site advertising networks. You can configure your browser to block any cookies, but some Service features may not work without the essential cookies above.
12. Direct marketing
If you have a PlanSight account, we may send you transactional emails (receipts, security alerts, service notifications) — these are necessary for the Service and cannot be opted out of while your account is active.
We may also send occasional product updates and marketing emails. You can opt out at any time via the unsubscribe link in each email or by contacting us. We will not send marketing communications without your consent.
13. Changes to this Policy
We may update this Policy from time to time. For material changes, we will give at least 30 days' notice by email or in-app notification.
The "Last updated" date at the top reflects the latest revision.
14. Contact us
For privacy questions, requests, or complaints:
AI Solution Maven — Privacy Officer Queensland, Australia Email: [privacy@aisolutionmaven.com]
If you are not satisfied with our response, you may also contact the Office of the Australian Information Commissioner:
OAIC Website: oaic.gov.au Phone: 1300 363 992