Privacy Policy

Your data is your asset.

Last updated: April 21, 2026 · Effective: April 21, 2026

This Privacy Policy explains how Relivo, Inc. (“Tailor,” “we,” “us,” or “our”) collects, uses, discloses, and protects personal information when you use the Tailor platform, websites, APIs, and related services (the “Service”). Tailor is built for interior designers, architects, design firms, and pool builders. We take the privacy of your business, your team, and your clients seriously. Your data is your asset, not our fuel.

1. Who This Policy Applies To

This Policy applies to three categories of people whose information may be processed through the Service:

  • Users: people who create a Tailor account or access the Service as part of an organization (for example, a firm’s designers, admins, or accountants).
  • Clients and recipients: people a User invites to view presentations, spec books, or client portals, or whose contact details a User adds to a project.
  • Website visitors: anyone who visits our public websites.

When a User loads client information, product data, or other content into Tailor to provide services to their clients, the User is the controller of that data and Tailor acts as a processor. This Policy describes our practices; our Users have their own privacy obligations to their clients.

2. Information We Collect

2.1 Information you provide

  • Account information: name, email, password (hashed), profile photo, role, firm/organization name, time zone.
  • Business information: company name, billing address, currency preferences, tax information where required.
  • Project content: project and room details, floor plans you upload or draw, finishes, budgets, product selections, mood boards, presentations, spec books, agreements, invoices, purchase orders, time entries, and task boards.
  • Client records: client names, email addresses, and any contact or project information you choose to associate with a client.
  • AI inputs: product images, floor plans, camera/lighting settings, prompts, and reference images you submit to our AI features.
  • Communications: messages to support, feedback, survey responses, and in-product chat content.

2.2 Information collected automatically

  • Device and log data: browser type, operating system, device identifiers, IP address, access times, and referring URLs.
  • Usage data: pages viewed, features used, render and credit consumption, errors, and interaction events that help us understand what’s working and what isn’t.
  • Cookies and similar technologies: see our Cookie Policy for details.

2.3 Information from third parties

  • Single sign-on: if you sign in with a third-party provider (for example, Google), we receive your name, email, and profile photo from that provider.
  • Payment processor: we receive billing status and confirmation details; we do not store full payment card numbers on our servers.
  • Product imports: when you import products from retailer or manufacturer websites, we retrieve publicly available product information (images, descriptions, prices, specifications) on your behalf.
  • Optional integrations: if you connect an optional third-party service (for example, to import inspiration), we receive the data you authorize from that service.

3. How We Use Information

  • Provide the Service: create accounts, authenticate users, host projects, render visualizations, generate spec books, send invoices, share presentations, and support collaboration.
  • Run AI features: use your Inputs to produce Outputs in response to your requests (see Section 4).
  • Billing: process subscriptions, meter credit usage, and issue receipts.
  • Support and communications: respond to requests, send service-related notices, and (where permitted) product updates.
  • Quality and reliability: monitor performance, investigate errors, and detect fraud or abuse.
  • Improve the Service: use aggregated and de-identified usage data to evaluate features, tune performance, and prioritize product work.
  • Legal compliance: meet tax, accounting, and other legal obligations.

4. AI Features and Your Data

Tailor’s visualization and analysis features are powered by a combination of proprietary techniques and machine-learning models. We consider the specific technology stack, model selection, and orchestration to be our confidential trade secrets and do not disclose them. In plain terms, here is how your data flows through those features:

  • Inputs are sent to inference infrastructure only to produce the Output you requested. Transit is encrypted end-to-end (HTTPS/TLS).
  • Outputs are returned to you and stored in your project on your behalf.
  • We do not use your confidential project content to train foundation models available outside your organization, except with your explicit permission. “Confidential project content” includes your client information, floor plans, private product data, and the Inputs and Outputs of your renders.
  • We may use aggregated and de-identified signals (for example, error rates, timing, prompt templates, anonymized usage patterns) to evaluate reliability, tune our prompts and orchestration, and improve quality for all customers.
  • Inference providers. Where we use third-party inference infrastructure to generate Outputs, those providers act as subprocessors under contractual restrictions that prohibit them from using your content to train their models. We select providers that commit to zero-retention or short-retention terms for API traffic; we do not publish which providers are used because that is part of our confidential stack.
  • Opt-in programs. If we offer an optional program that uses your content to train or fine-tune models, participation will always be opt-in, clearly disclosed, and revocable.

AI Outputs are generated by probabilistic systems. They may contain inaccuracies and are intended for design exploration and client communication. Not construction documents or professional advice.

5. How We Share Information

We do not sell personal information. We share information only as described below:

  • With your organization and collaborators. Content you create in an organization is visible to that organization’s members according to their role and access. Removing a member does not delete their past contributions.
  • With your clients and recipients. When you share a presentation, spec book, mood board, or client-portal link, the recipients of that link can view and interact with the content you shared.
  • With service providers (subprocessors). We use vetted vendors to operate the Service, including for cloud hosting and storage, database and authentication, email delivery, payment processing, customer support, analytics, error monitoring, and AI inference. Each is bound by confidentiality and data-protection obligations. We maintain an up-to-date list of major subprocessors and will provide it on request.
  • For legal and safety reasons. We may disclose information when required by law, subpoena, or court order, or to protect the rights, property, safety, or security of Tailor, our users, or the public.
  • In a business transfer. If Relivo, Inc. is involved in a merger, acquisition, financing, reorganization, or sale of assets, personal information may be transferred, subject to this Policy or equivalent protections.

6. International Transfers

We operate primarily from the United States and may process information in the U.S. and other countries where we or our subprocessors operate. When we transfer personal information from the European Economic Area, the United Kingdom, or Switzerland, we rely on appropriate safeguards such as Standard Contractual Clauses and supplementary measures as required.

7. Data Retention

  • We retain account and project content while your account is active and as needed to provide the Service.
  • After account deletion, we delete or de-identify personal information within 30 days, except for items we are required to retain for legal, tax, security, or audit purposes.
  • Backups are purged on a rolling schedule, typically within 90 days of deletion.
  • Aggregated and de-identified data that cannot be re-associated with you may be retained indefinitely to improve the Service.

8. Security

We design Tailor with security in mind:

  • Encryption of data in transit (TLS) and at rest for databases and object storage.
  • Row-level access control so each organization’s data is isolated at the database layer.
  • Scoped service-role access used only by narrow server-side code paths.
  • Least-privilege access for staff, with audit logging and reviews.
  • Routine dependency monitoring, security testing, and incident response procedures.

No system is perfectly secure. If we learn of a security incident that materially affects your personal information, we will notify you as required by law.

9. Your Rights and Choices

Depending on where you live, you may have rights to:

  • Access a copy of your personal information.
  • Correct information that is inaccurate.
  • Delete your personal information, subject to legal exceptions.
  • Port your information in a structured, machine-readable format.
  • Object to or restrict certain processing.
  • Withdraw consent for processing based on consent.

You can exercise most of these rights directly in your account settings. For anything else, contact privacy@tailor.design. We will respond within the timeframe required by applicable law. You have the right to lodge a complaint with your data protection authority; we would appreciate the chance to address your concern first.

9.1 California residents (CCPA/CPRA)

California residents have the rights above, plus the right to know the categories of personal information collected, sources, purposes, and categories of third parties with whom it is shared. We do not “sell” or “share” personal information for cross-context behavioral advertising as those terms are defined by the CCPA/CPRA. We do not knowingly collect sensitive personal information for purposes that would trigger a right to limit use.

9.2 EEA/UK residents (GDPR)

Our lawful bases for processing are (a) performance of a contract with you, (b) our legitimate interests in operating and improving the Service, (c) compliance with legal obligations, and (d) your consent where required (for example, certain cookies or optional integrations). Where we act as a processor for our Users, we process personal data according to the User’s instructions under a data processing agreement.

10. Cookies and Tracking

We use cookies and similar technologies to authenticate sessions, remember preferences, measure performance, and prevent abuse. You can control cookies through your browser settings. Disabling essential cookies will break sign-in and core features. See our Cookie Policy for details.

11. Children

The Service is not directed to children under 18. We do not knowingly collect personal information from children. If you believe a child has provided personal information, contact us and we will delete it.

12. Automated Decision-Making

Tailor does not use automated decision-making to produce legal or similarly significant effects on you. AI features produce Outputs in response to your requests; a human (you) decides whether and how to use them.

13. Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will notify you by posting an in-product notice or by email at least 30 days before the changes take effect. The “Last updated” and “Effective” dates at the top reflect the current version.

14. Contact

Tailor is owned and operated by Relivo, Inc. For privacy questions, contact privacy@tailor.design. For data-subject requests, use the same address and include enough information for us to verify your identity. For security issues, email security@tailor.design.

© 2026 Relivo, Inc. Tailor is a trademark of Relivo, Inc. All rights reserved.