Privacy Notice

Bimrock Ltd. provides a software and AI based solution that assists architects, engineers and builders with creating, annotating and modifying Building designs through our plugin / platform. Our offices are located at Borochov St. 24, Jerusalem, Israel, and our registration number is 517102703.

If you have questions about our company or your privacy, or want to exercise your rights, you can contact us at contact@bimrock.ai.

Certain data protection laws, including the laws in the EU, differentiate between a party that determines why and how personal data is processed (called a "controller" or a "database controller" in Israeli law) and a party that processes personal data solely on the controller's behalf and according to the controller's instructions (called a "processor"). We are the controller/database controller in respect of the processing described in this Privacy Notice. That said, in respect of certain personal data, we serve as a processor. Please see the section Personal Data We Collect as a Processor below.

Certain jurisdictions only allow the processing of personal data where a legal basis has been established. Under the EU's General Data Protection Regulation ("GDPR"), the possible legal bases include (but are not limited to): your consent; the processing is necessary to perform a contract with you; the processing is necessary to fulfill our legal obligations; or a company has a legitimate business interest to process your personal data. Where we are a controller, we only collect and process data where we have established a legal basis. Below you can find more details about specific legal bases.

When you visit our site, we may collect the following types of data about you.

If you are a user of our plugin/platform, we collect the following information from and about you.

If you have provided your consent, we may use your contact details to send you informational newsletters [and other marketing material] about our products and services, as well as that of third parties. You may withdraw your consent at any time by emailing us at contact@bimrock.ai.

You can stop the delivery of all marketing emails by following the "unsubscribe" link in any messages we send you. Alternatively, you can contact us at contact@bimrock.ai to request to unsubscribe.

Note that if you are a registered user, we may need to contact you about administrative or service-related issues as part of the services we provide to you. This is not marketing communication and you will continue to receive these messages even if you opt-out of marketing emails.

We serve online ads based on the activity data we collect using cookies. You can change the way your browser manages cookies by adjusting the settings on your browser as explained below in the How to Adjust Your Preferences section.

If you are an individual using our services in connection with your engagement at a company that is our customer, then your employer may have access to information about your use of our services. For example, your employer may have an administrator account which would enable the company to see your data.

Below is a list of the types of service providers we use, the service each provides, and the types of data shared with each. All service providers have agreed to confidentiality restrictions and have undertaken to use your personal data solely as we direct.

If we are looking to sell our company, liquidate assets, or merge with another, we may share your personal data with other interested parties as part of negotiations toward that transaction. In such case, or where we do sell our company, your personal data shall continue to be subject to the provisions of this Privacy Notice.

We may share your personal data with government agencies or other relevant parties, such as a law office or independent auditor: (i) if we believe that such disclosure is appropriate to protect our rights, property or safety (including the enforcement of the Terms of Service and this Privacy Notice) or those of a third party; (ii) if required by law or court order; or (iii) as is necessary to comply with any legal and/or regulatory obligations, such as audit requirements.

If you are located in the EU, when we share your personal data with third parties based outside of the European Economic Area ("EEA"), we will ensure that they sign agreements that require them to comply with applicable law, keep your data secure at similar levels to the level described in this Privacy Notice, and make sure that your data protection rights are protected. We will also implement the following safeguards:

When we transfer your personal data to Israel or any other jurisdiction, as applicable, we rely on the decision by the European Commission that says that those countries are considered to provide an adequate level of data protection.

When we transfer your personal data to entities in the US that are covered under the Data Privacy Framework, we rely on the decision by the European Commission that says that these entities are considered to provide an adequate level of data protection.

Where we transfer your personal data to other countries, we (i) take additional security measures to protect the data and (ii) use specific contracts approved by the European Commission, known as the Standard Contractual Clauses, to give your personal data the same protection it has in the EEA.

Please contact us at contact@bimrock.ai if you would like further information on the specific mechanism used by us when transferring your Personal Data out of the EEA.

The electronic safeguards we employ to protect your personal data include secure servers, firewalls, and antivirus protections. We encrypt data in transit and at rest using secure protocols. Our infrastructure is hosted on Google Cloud Platform (GCP), which maintains industry-standard security certifications and employs advanced safeguards such as physical data center protections, network security, and continuous monitoring.

We limit access to your personal data only to authorized personnel who have a need to know, including account managers, customer support staff, and software developers. We review these permissions regularly and revoke an employee's access immediately after his/her termination.

We maintain and regularly review and update our privacy related and information security policies.

We require employees to sign non-disclosure agreements according to applicable law and industry customary practice.

You may have a right to know what personal data we collect about you. We may charge you with a fee to provide you with this information, if permitted by law. If we are unable to provide you with all the information you request, we will do our best to explain why. See Article 15 of the GDPR for more details, if your personal data is subject to GDPR.

You may request that we update, complete, correct or delete inaccurate, incomplete, or outdated Personal Data. See Article 16 of the GDPR for more details, if your personal data is subject to GDPR.

If you are located in the EU, you may have the right to request that we delete your personal data. Note that we cannot restore information once it has been deleted. Even after you ask us to delete your personal data, we may be allowed to keep certain data for specific purposes under applicable law. See Article 17 of the GDPR for more details, if your personal data is subject to GDPR.

If you are located in the EU, you may have the right to ask us to stop processing your personal data. See Article 18 of the GDPR for more details, if your personal data is subject to GDPR.

If you are located in the EU, you may have the right to request that we provide you with a copy of the personal data you provided to us in a structured, commonly-used, and machine-readable format. See Article 20 of the GDPR for more details, if your personal data is subject to GDPR.

If you are located in the EU, you may have the right object to certain processing activities. See Article 21 of the GDPR for more details, if your personal data is subject to GDPR.

If we are processing your data based on your consent, you are always free to withdraw your consent, however, this won't affect processing we have done from before you withdrew your consent.

If you are located in the EU, you have the right to submit a complaint to the relevant data protection authority if you have any concerns about how we are processing your personal data, though we ask that as a courtesy you please attempt to resolve any issues with us first.

If you are a resident of the State of California, depending on the applicability of certain laws and exemptions, you may have certain rights over your data, as detailed in Annex A to this Privacy Notice.

We retain your personal data as long as necessary to fulfill each of the purposes we described above.

When deciding how long to store personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized access, the purposes for which the personal data was collected, as well as applicable legal requirements. Please note that we may delete information from our systems without notifying you first. Retention by any of our service providers or subcontractors may vary in accordance with each business's retention policy.

In some circumstances, we may store your personal data even after we're finished using it if required to do so by law (e.g. to fulfill tax or audit requirements), or to keep accurate records of our interactions in case there is a prospect of litigation relating to your personal data. In such cases, we will maintain the same security measures as described above.

To speed up the processing of your requests, we may store the data you upload (e.g floor plan information) on our servers. All such data is deleted at most 60 days after the last relevant request has been completed.

Please contact us at contact@bimrock.ai if you would like details about the retention periods for each type of personal data we process.

A cookie is a small piece of text that is sent to your browser by a website you visit. This piece of text acts as a sort of tag, letting the website know that it's you (really, your device) that's visiting. There are other technologies that act similarly, like web beacons, pixel tags, and Device IDs for apps, but for simplicity's sake we'll refer to them all as "cookies".

Websites can place their own cookies (called "first-party cookies") but can also place cookies from other sites (called "third-party cookies"). If your browser holds both first and third-party cookies for a given website, both the website and the third party are notified when you visit the site. We may place both first and third-party cookies on our plugin/platform.

While the specific names and types of cookies we use may change from time to time, they generally fall into one of the categories listed below. We will not place any cookies on your browser that are not strictly necessary unless you have first consented to receive them.

Most web browsers are initially configured to accept cookies, but you can change the settings so your browser refuses all cookies or certain types of cookies. In addition, you are free to delete any existing cookies at any time. Please note that some features of the services may not function properly when cookies are disabled or removed. For example, if you delete cookies that store your account information or preferences, you will be required to input these each time you visit.

By changing your device settings, you can prevent your device's ad identifier being used for interest-based advertising, or you can reset your device's ad identifier. This means that you won't be shown ads that relate to your browsing activities. Typically, you can find the ad identifier settings under "privacy" or "ads" in your device's settings, although settings may vary from device to device. Adjusting your preferences does not mean you will no longer receive ads, it only means the ads that you do see can be less relevant to your interests.