Legal

Privacy Policy

Effective 2026-05-21. This policy describes what TuringDock collects, why, and what we do not do with it. Working draft; will be reviewed by counsel before commercial launch.

What we collect

The data TuringDock holds about your business falls into four buckets:

  • Account information: name, email, company name, role. Collected when you sign up and managed through our auth provider, Clerk.
  • Operational data you enter: inventory, BOMs, supplier records, purchase orders, production orders, schedules, FX preferences. This is what makes the product useful to you; we hold it so the product can show it back.
  • Payment metadata: when you initiate an international supplier payment, we record the PO reference, the amount, the parties, and the resulting transfer ID from our payments partner. We do not hold the underlying funds.
  • Product usage: which features you use, error logs, performance traces. Used to keep the product working and to prioritize what to build next.

What we do not collect

  • We do not collect or store payment-method details (cards, bank credentials). Those are handled by our processors.
  • We do not run third-party advertising trackers or analytics that sell your behavior to other parties.
  • We do not use your manufacturing data to train external AI models.

Subprocessors

TuringDock operates on top of a small set of providers. Each receives only what it needs to do its job:

  • Clerk: authentication and identity. Receives your sign-in details and session tokens.
  • Anthropic: Claude API for the Slack assistant, demand forecasting, supplier risk scoring, and trade finance underwriting. Receives the manufacturing context needed to answer the specific question or run the specific evaluation, scoped to your company.
  • Avvio: international payment routing. Receives the payment details (amount, currency, beneficiary bank info) when you initiate a transfer. Avvio holds the regulatory licenses and custodies the funds; TuringDock does not.
  • Slack: notification delivery to the channels you configure. Receives the message text.
  • Railway: managed infrastructure (database, deployment). Hosts the data described above.

Where your data lives

Your data is stored in Railway-managed PostgreSQL in North American regions. Backups are encrypted at rest. We do not transfer your data outside North America without your written instruction.

Your rights

You can export everything we hold about your business to CSV at any time using the built-in export. You can request deletion of all data associated with your account by emailing hello@turingdock.com; we will action the deletion within 30 days, except for records we are required by Canadian law to retain (e.g., payment records under FINTRAC obligations passed through Avvio).

Under BC's Personal Information Protection Act (PIPA) and Canada's PIPEDA, you have the right to access the personal information we hold about you, to correct it, and to withdraw consent. Email hello@turingdock.com to exercise any of these.

Children

TuringDock is a business product. We do not knowingly collect data from anyone under 18.

Changes to this policy

We will post any material changes here and email registered users at least 14 days before they take effect.

Contact

Privacy questions: hello@turingdock.com.