Privacy Policy

We collect the following categories of data:

• Account data: name, work email, role, organisation name, and the authentication credentials you create.
• Business data: product catalog, cost structure (landed cost, fulfilment cost, payment-processing rate, margin floor), supplier agreements and rebate rules, attachment definitions, approval decisions, and audit events generated by your use of the platform.
• Competitor observations: public-web prices and product information you have instructed MarginShield to monitor, plus any voice price-discovery transcripts you initiate.
• Usage data: authentication logs, application events, performance telemetry, and error reports used to operate and improve the service.

We do not knowingly collect sensitive personal information (health, biometric, political, religious, or trade-union data) and you agree not to upload it.

• Operate the MarginShield service, including the deterministic margin engine, Decision Desk, Scenarios Lab, rebate management, and the approvals queue.
• Compute true-margin recommendations and surface competitor-pressure context at the point of decision.
• Send the notifications, alerts and approval routing you configure.
• Maintain an immutable audit trail of margin-affecting decisions for your own compliance and governance use.
• Process billing through our payment processor (Stripe).
• Communicate with you about your account and the service.

We do not train AI models on your data. We do not sell or share your data, your competitor observations, or your supplier-funding terms with any third party.

Every row in every business-data table carries an org_id and every API query is tenant-scoped. Buying-group clean rooms compute aggregates server-side without materialising cross-member joins. Your catalog, costs, rebates, and decisions are visible only to your organisation and the users you grant access to.

We implement encryption in transit (TLS 1.2+) and at rest (AES-256), role-based access control, append-only audit logging, Argon2id password hashing, and incident response. Full posture published at /security.

We retain your data while your account is active. On termination, you may export data via the available export endpoints for 30 days, after which active-system data is permanently deleted within 90 days. Encrypted backups roll off within a further 90 days. Some records (billing, audit events tied to legal obligations) may be retained longer where required by law.

MarginShield uses a limited set of sub-processors to deliver the service: Railway (hosting), Neon (database, AU region), Stripe (billing), Anthropic (narrative AI only — never margin calculation), Sentry (error monitoring, PII-scrubbed), Resend (transactional email). Full list and regional details in the Data Processing Agreement.

Your primary database is hosted in the Australian region. Limited transfers occur to the United States via the sub-processors above, under contractual clauses substantially equivalent to the EU Standard Contractual Clauses where the GDPR applies.

You may access, correct, port, restrict, or delete the personal information we hold about you, and object to processing. You can export your business data from the dashboard at any time. To exercise rights, email privacy@marginshield.io and we will respond within 30 days. If you are unhappy with how we have handled your data, you may complain to the Office of the Australian Information Commissioner (OAIC).

We use first-party cookies for authentication and session management. We use anonymised analytics (PostHog) to understand product usage at an aggregate level — no personally identifying fields, no cross-site tracking. You can opt out via your browser settings.

MarginShield is a B2B platform not directed at children. We do not knowingly collect personal information from anyone under 18.

We may update this policy as the service evolves. Material changes will be notified by email to the registered admin and surfaced in-app at least 14 days before they take effect.

Privacy questions or requests: privacy@marginshield.io.
A2E Group Pty Ltd, Sydney, Australia.