Privacy Policy
Effective date: April 30, 2026 · Operated by Plexsoft Apps
Fixed Bid Solutions ("the App", "we", "us") is an AI-powered project estimator built and
operated by Plexsoft Apps for professional software developers. This policy explains what
data we collect, how it is used, and what choices you have.
📋 1. What Data We Collect
Account information — Your name, email address, hashed password, and role are stored
when your account is created.
Company and project data — Company name, billing rate, developer profile preferences, ticket titles and descriptions, estimate details, project configurations, and AI-generated build segments are stored in our database.
Usage data — An audit log records key actions (login, estimate generated, key saved) along with timestamps and IP addresses. This is used for security and debugging only.
Claude API key — If you choose to save your personal Anthropic API key, it is encrypted using AES-256 before storage and is never logged or exposed to the browser.
Company and project data — Company name, billing rate, developer profile preferences, ticket titles and descriptions, estimate details, project configurations, and AI-generated build segments are stored in our database.
Usage data — An audit log records key actions (login, estimate generated, key saved) along with timestamps and IP addresses. This is used for security and debugging only.
Claude API key — If you choose to save your personal Anthropic API key, it is encrypted using AES-256 before storage and is never logged or exposed to the browser.
🤖 2. How We Use Your Data
To operate the App — Ticket content (title, description, notes) is sent to
Anthropic's Claude API to generate project estimates and build segments. No other personal
information is included in those API calls.
To improve your experience — Developer profile settings are injected into AI prompts to produce output that matches your stack and workflow.
To secure your account — Passwords are hashed with bcrypt (never stored in plain text). Sessions use CSRF tokens and strict SameSite cookies.
We do not use your data for advertising, analytics platforms, or any purpose beyond operating the App.
To improve your experience — Developer profile settings are injected into AI prompts to produce output that matches your stack and workflow.
To secure your account — Passwords are hashed with bcrypt (never stored in plain text). Sessions use CSRF tokens and strict SameSite cookies.
We do not use your data for advertising, analytics platforms, or any purpose beyond operating the App.
🔗 3. Third-Party Services
Anthropic (Claude API) — Ticket content is transmitted to Anthropic's servers for
AI processing. Anthropic's
Privacy Policy
governs how they handle that data. As of the effective date of this policy, Anthropic does not
train their models on API inputs by default.
Stripe — If the App uses Stripe for billing, payment information is handled entirely by Stripe and is never stored on our servers.
Hosting — The App is hosted on Bluehost shared hosting. Database and file storage reside on Bluehost infrastructure in the United States.
No other third-party analytics, tracking, or advertising services are used.
Stripe — If the App uses Stripe for billing, payment information is handled entirely by Stripe and is never stored on our servers.
Hosting — The App is hosted on Bluehost shared hosting. Database and file storage reside on Bluehost infrastructure in the United States.
No other third-party analytics, tracking, or advertising services are used.
🔒 4. Data Security
We take reasonable measures to protect your data:
No security measure is 100% effective. In the event of a breach affecting your data, we will notify affected users promptly.
- Passwords hashed with bcrypt (cost factor 12)
- API keys encrypted with AES-256-CBC before storage
- Sessions protected with CSRF tokens and HttpOnly, SameSite=Strict cookies
- All production traffic served over HTTPS
- Database credentials never exposed in source code repositories
No security measure is 100% effective. In the event of a breach affecting your data, we will notify affected users promptly.
🚫 5. What We Do Not Do
- We do not sell your data to any third party.
- We do not use third-party advertising or tracking pixels.
- We do not store client contact information — ticket descriptions are project scoping notes only.
- We do not share your data with other users or companies on the platform.
🗑 6. Data Retention & Deletion
Your data is retained for as long as your account is active. You may request deletion of your
account and all associated data by contacting us at
support@fixedbidsolutions.com.
Audit log entries may be retained for up to 90 days after deletion for security purposes.
⚖️ 7. Your Rights
Depending on your jurisdiction, you may have rights to access, correct, export, or delete your
personal data. To exercise any of these rights, contact us at
support@fixedbidsolutions.com
and we will respond within 30 days.
📝 8. Changes to This Policy
We may update this policy from time to time. When we do, we will update the effective date at
the top of this page. Continued use of the App after changes constitutes acceptance of the
revised policy. For material changes, we will notify active users via email or an in-app notice.
✉️ 9. Contact
This policy applies to the Fixed Bid Solutions web application hosted at
fixedbidsolutions.com and operated by Plexsoft Apps. It does not cover any other
Plexsoft Apps products or websites.