Data Collection Protocol
Caddex operates on a "local-first, cloud-sync" model. We collect data essential for cross-team CAD collaboration and version integrity.
- REQ_01 Drawing Assets: Detail drawings and blocks uploaded to your company cloud library.
- REQ_02 Metadata: Creation dates, editor handles, and approval status logs.
- REQ_03 User Profiles: Managed by your organization for Role-Based Access Control (RBAC).
Regional Compliance
We adhere to global privacy frameworks to ensure your engineering data is handled legally across jurisdictions.
GDPR (EU/UK)
Under the General Data Protection Regulation, we act as a Data Processor for your organization. Users may request data erasure (Right to be Forgotten) through their organization administrator, who can initiate anonymization of the user's personal data while preserving company detail records.
CCPA/CPRA (USA)
California residents have the right to know what personal data is collected and to opt-out of the "sale" of information. Note: Caddex does not sell user data to third parties.
Security Architecture
Your details are protected by the same standards used in modern financial applications.
- SEC_01 Encryption in Transit: All data is transmitted over HTTPS using TLS 1.2/1.3.
- SEC_02 Isolation: Multi-tenant architecture ensures your company data is logically isolated from other firms.
- SEC_03 Auditing: Internal audit logs track detail creation, approval, deletion, and user management actions for operational integrity.
Data Retention
We retain your drawings and detail library as long as your subscription is active. Diagnostic logs are automatically purged after 2 days, sync logs after 90 days, and audit logs after 1 year. Upon termination, your data may be deleted from our production servers. We recommend exporting your detail library before canceling your subscription.