Privacy Policy

Our role

When your organization uses Solutioner.ai, your organization is the controller of the content it places in the platform, and Gadoci is the processor acting on its instructions. For our marketing site and for personal information we collect about you directly (for example, when you sign up or contact support), Gadoci is the controller.

Information we collect

We collect three categories of information. The first is account and profile information you give us directly: your name, email address, a hashed password if you sign up with credentials, and basic organization details such as name and slug. The second is content you place into the platform: solution briefs, comments, file uploads, activity logs, conversations with the Sully AI assistant, and similar materials. The third is technical and usage information generated as you use the platform, including device and browser metadata, IP address, log entries, error reports, and product analytics about which features you use.

If you connect a third-party identity provider such as Google or Microsoft, we receive the basic profile data needed to create or link your account. If you connect external systems through MCP, we receive only the scopes you authorize.

How we use information

We use information to operate the platform, authenticate users, render and store the content you create, generate AI output you request, send transactional notifications (invitations, password resets, activity digests), provide customer support, secure the service against abuse, and improve features in ways that do not identify your organization. We do not sell personal information, and we do not use Customer Content to train foundation models.

AI processing

When you ask the platform to generate, summarize, refine, or retrieve content, we send the relevant inputs to one or more AI providers (today, Anthropic for Claude, optionally OpenAI for alternative models, and Voyage AI for vector embeddings used in semantic search). Those providers process the input on our behalf under data processing agreements that prohibit them from using your content to train their general models. AI output is stored in your organization’s workspace alongside the rest of your content.

Sharing and subprocessors

We share information only as needed to run the service, with vendors who are bound by confidentiality and data protection obligations. The current subprocessors are: MongoDB Atlas (primary database), Cloudflare R2 (file storage), Heroku (application hosting and Redis-backed job queues), Anthropic and optionally OpenAI (large language models), Voyage AI (vector embeddings), Pusher (real-time notifications), and our transactional email provider, currently SendGrid or Resend depending on configuration. We also use Google and Microsoft when you choose to sign in through their identity services. We will keep this list current as the stack evolves.

We may also disclose information when required by law, to enforce our terms, or to protect the rights, property, or safety of customers, the public, or Gadoci. If Gadoci is involved in a merger, acquisition, or sale of assets, we will give notice before personal information is transferred and becomes subject to a different policy.

Retention

We retain Customer Content for as long as your organization maintains an active account, plus a short window after termination to allow for export or recovery. Account and authentication records are retained while your account is active and for a reasonable period afterward to satisfy legal, accounting, and security obligations. You can ask us to delete content sooner, subject to legal holds and ongoing security needs.

Security

We use industry-standard practices to protect information, including encryption in transit, hashed passwords, scoped access controls across organizations, audit logging of significant actions, and environment isolation between development and production. No system is perfectly secure. If we learn of a breach affecting your information, we will notify you in line with applicable law.

Where we operate

Solutioner.ai is operated from the United States, and we serve customers in the United States. Our subprocessors may process data in the United States and, in some cases, in other countries where they maintain infrastructure. We do not currently target customers in the European Union or United Kingdom. If that changes, we will update this policy and put appropriate transfer mechanisms in place.

Your rights

Depending on where you live, you may have the right to access, correct, delete, or receive a copy of your personal information, to restrict or object to certain processing, and to lodge a complaint with your local data protection authority. If your organization administers your account, the most direct path is usually through them. You can also reach us at legal@gadociconsulting.com and we will respond within the timeframes required by law.

For California residents: we do not sell or share personal information for cross-context behavioral advertising as those terms are defined under the CCPA.

Cookies and analytics

Solutioner.ai uses cookies and similar browser storage only for essential functions such as keeping you signed in and remembering your interface preferences. We do not use third-party analytics, advertising, or session replay tools. Any usage measurement we do is built into the platform itself and tied to your organization’s workspace, not shared with outside vendors.

You can control cookies through your browser, but disabling them will break authentication and other core features.

Children

Solutioner.ai is built for business use and is not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us so we can delete it.

Changes to this policy

We may update this policy as the platform changes. If a change is material, we will give reasonable advance notice through the platform or by email to your account’s primary contact. The effective date at the top of the page indicates when the latest version took effect.

Contact

Questions about this policy or your data can be sent to legal@gadociconsulting.com or by mail to Gadoci Consulting, LLC, 2507 Custer Pkwy, Richardson, TX 75080.