Security and Privacy Overview (beta stage)

1) Summary

LCA Compass is (1) a plugin for Autodesk Revit 2025/2026 and (2) a web SaaS application. During the current beta we designed data handling to be as minimal as possible. All BIM models and geometry data remain on the user’s machine. The basic account and project listing information is stored in our cloud, hosted in the EU. Users can decide whether to keep material lists and calculation results local on their machine or send it to their online Project in order to view results through a web browser. Any temporary data that the plugin holds locally exists only for the duration of the current Revit session and is discarded automatically when Revit is closed. When a user maps a material, the plugin writes two parameters into that material inside the Revit file (an PQID and an PQMaterialActive flag); these remain inside the user’s Revit file.

2) Data We Do Not Collect or Store

Local data on the user’s machine (ephemeral)

• The plugin may keep working data in memory or temporary storage only during the active Revit session; it is deleted when Revit closes.

• When a user maps a material, the plugin writes two parameters to that material within the Revit file: PQID (identifier) and PQMaterialActive (boolean). These persist only inside the user-controlled .rvt file to support mapping behavior and are not uploaded.

• Material takeoffs and LCA results can remain local. They are calculated based on the parameters in Revit. The user can opt to save the material takeoff and results to their web project.

3) Data We Do Collect and Store

We do not ingest any BIM models or geometry.

4) Hosting & Data Location

• Primary application database and storage are hosted in the EU‑North region.

• No intentional cross‑border transfers occur for profile or project listing data.

5) Sub‑processors

We use a small number of vendors to operate the service:

We do not share personal data with advertising networks. No BIM content is stored or sent to any vendor.

6) Data Retention & Deletion

• Profile & Project listing data are retained while the account is active.

• Upon a verified deletion request, we remove these records from the active database, and they roll off scheduled backups after the retention window noted above.

• Analytics data follows the retention period configured in GA4 (default 14 months unless configured otherwise).

• Local temporary data (on the user’s machine) exists only for the current Revit session and is cleared automatically when Revit closes.

• Material mapping parameters in the Revit file (PQID, PQMaterialActive) remain within the .rvt file until the user removes or overwrites them in Revit; they are not synchronized to our servers.

7) Cookies

We use only what’s necessary for authentication and optional analytics.

Controls: Users will be able to decline analytics cookies; service continues to function.

8) Compliance & Privacy

• GDPR: We act as a Data Controller for profile/project listing data entered by users. Users may exercise access, correction, or deletion rights via support.

• Legal basis: performance of a contract (providing the service) and legitimate interests (service operation & security).

• DPA: A standard Data Processing Agreement is available on request.

• Incident response: If we become aware of a personal‑data breach likely to result in risk to individuals, we will notify customers without undue delay and, where applicable, within GDPR timelines.

9) Privacy and GDPR Contact

• Security/Privacy contact: [email protected]

• Responsible entity: Empyria Soft Ltd., Sofia, Bulgaria

10) Local Installation Footprint (Revit Plugin Files)

During beta, the plugin installs only a small set of files through a .msi installer. No background services, drivers, or kernel components are installed. Total size: ~1.2mb

Technology stack: The plugin is built in C# on .NET 8.0 and embeds a webView2 to render and interact with our web-based UI.

Locations:

C:/Program Files/LCACompass

%programdata%/Autodesk/Revit/Addins/2025/LCACompass.addin

%programdata%/LCA Compass (Browser cache)

%programdata%/LCA Compass.txt (list of shared parameters names)

Behavior:

• These files enable the add‑in UI and logic; no additional executables or services are installed.

• Removing these files (or uninstalling the add‑in) disables the plugin. No BIM data is left behind.

• No temporary files are persisted beyond the current Revit session.

11) About Us (Company & Team)

We’re a small, cross‑disciplinary team of architects, engineers and software developers with deep experience building specialized tools for the AEC industry. Our work spans production‑ready plug‑ins for Revit, Archicad, Allplan, Civil 3D and AutoCAD 3D; web‑based project management platforms; automation utilities and scripting to streamline repetitive tasks; and interactive desktop applications built with game engines such as Unity. We prioritize pragmatic, reliable engineering and fit‑for‑workflow design. We ship tools that integrate cleanly with existing practices and respect security and privacy by design.

Legal entity: Empyria Soft Ltd. Jurisdiction of incorporation: Sofia, Bulgaria Company registration number: 207521890