Architecture Firm Data Protection & Privacy Policy

Last Updated: 2025

​Protecting your personal information is of utmost importance to us. Our Privacy Policy outlines how we collect, use, and safeguard your data when you visit our website. We encourage you to read it thoroughly to understand our practices and your rights regarding your personal information.​

Key Points of Our Privacy Policy:

  1. Information Collection: We collect personal data such as your name, email address, and browsing behaviour to enhance your experience on our site. ​

  2. Use of Information: Your information helps us personalize content, respond to inquiries, and improve our services. ​

  3. Data Sharing: We do not sell your personal information. However, we may share data with trusted third-party service providers to assist in operating our website and conducting our business, provided they agree to keep this information confidential.

  4. Data Security: We implement a variety of security measures to maintain the safety of your personal information.

  5. Your Rights: You have the right to access, correct, or delete your personal information. Please contact us if you wish to exercise these rights. ​

1. Scope

AOBE Architectural design studio ("we," "us," or "our") is committed to protecting the privacy and security of your personal data.

This policy outlines how we collect, use, store, and protect your information when you interact with our website, services, or communications.

By using our services, you consent to the practices described in this policy.

This policy applies to:

  • Client property data (floor plans, site surveys, CAD files)

  • Employee/contractor records

  • Vendor/subcontractor agreements

  • Public-facing projects (portfolio images, marketing materials)

2. Types of Data Collected

CategoryExamplesPurposeClient DataProperty addresses, blueprints, contact details, contract termsProject execution, billing,

permitsDesign FilesCAD drawings, BIM models, 3D renderings, material specsCollaboration, revisions, approvalsEmployee/ContractorLicenses,

certifications, payroll, NDAsHR management, legal complianceFinancialInvoices, payment records, tax IDsAccounting, auditsWebsite/VisitorsIP addresses,

cookies, contact form submissionsAnalytics, client outreach

3. Industry-Specific Protections

A. Intellectual Property (IP) & Sensitive Designs

  • Encryption: CAD/BIM files stored with AES-256 encryption.

  • Access Controls: Role-based permissions (e.g., junior architects vs. project leads).

  • Watermarking: Draft designs shared externally include digital ownership tags.

B. Client Confidentiality

  • NDAs: Required for all staff/subcontractors handling client property data.

  • Secure Sharing: Use password-protected portals (e.g., Autodesk BIM 360) for file transfers.

C. Regulatory Compliance

  • AIA Ethics: Prohibit misuse of client data for personal gain (AIA Code of Conduct §2.3).

  • Building Codes: Ensure site plans comply with local privacy laws (e.g., masking resident names in public submissions).

4. Data Retention & Deletion

  • Active Projects: Retained for 7 years (typical statute of limitations for construction disputes).

  • Inactive Clients: Anonymized after 10 years; raw designs deleted upon request.

  • Employee Records: Kept for 5 years post-termination (labor law requirements).

5. Third-Party Sharing

We disclose data only to:

  • Engineering/Construction Partners (under strict confidentiality agreements).

  • Government Agencies (for permitting/zoning compliance).

  • Cloud Storage Providers (e.g., AWS, Autodesk) with GDPR-compliant BAAs.

Never sold to advertisers or data brokers.

6. Security Measures

  • Physical: Locked cabinets for paper blueprints; keycard access to server rooms.

  • Digital: VPNs for remote work; multi-factor authentication (MFA) on all design software.

  • Training: Annual cybersecurity workshops for staff (phishing/scam prevention).

7. Client & Employee Rights

  • Access/Correction: Request copies of your property plans or HR files.

  • Deletion: Ask to remove non-essential data (e.g., unused concept sketches).

  • Portability: Export design files in .DWG or .RVT formats.

Submit requests to: [Privacy Officer Email/Phone]

8. Incident Response

  • Breach Notification: Clients alerted within 72 hours if designs/exposed.

  • Recovery Plan: Regular backups of BIM models (tested quarterly).

9. Policy Updates

Revised versions posted on our website; major changes notified via email to active clients.

Contact:
AOBE Architectural Design Studio
Management
info@aobearchitecturaldesignstudio.co.uk

Why This Matters for Architects

  • Reputation: Clients trust firms with sensitive property data.

  • Legal Risks: Unauthorized design leaks = breach of contract + copyright violations.

  • Global Projects: GDPR applies to EU client data; CCPA for California homeowners.