Who we are

Solve is operated by Solve Apps Ltd. We provide an AI-powered continuous improvement coaching platform for engineering and manufacturing organisations. This policy explains what personal data we collect, why we collect it, and your rights under UK GDPR.

What data we collect

• Account information: your name, email address, and a securely hashed password. We never store your password in plain text.
• Session data: the problem descriptions, coaching conversations, and structured documents you create inside Solve. This data belongs to your organisation.
• Usage logs: server-side logs including IP address, browser type, and timestamps. These are kept for 30 days and used solely for security and debugging.
• Uploaded documents: any documents, specifications, or SOPs your organisation uploads to the knowledge base.

How we use your data

• To provide the Solve coaching service — processing your problem descriptions and returning AI coaching responses.
• To send you password reset emails and, if enabled, notification emails about problems assigned to you.
• To allow your organisation's administrators to manage users, view problem status, and export reports.
• To maintain platform security and diagnose technical issues.

We do not use your data for advertising. We do not sell your data to third parties.

Who we share data with

• Anthropic (Claude API): Your coaching messages are sent to Anthropic's Claude API to generate AI responses. Anthropic processes this data under its own privacy policy and does not train its models on your data by default.
• ElevenLabs (voice only): If you use voice mode, coach responses are converted to speech via the ElevenLabs API. Text is sent to ElevenLabs for this purpose only.
• DigitalOcean: Our servers are hosted on DigitalOcean's London data centre. Data is stored in the UK.

How long we keep your data

• Account and session data is kept for as long as your organisation has an active account with Solve.
• When an account is closed, we delete all associated personal data within 30 days.
• Daily database backups are retained for 30 days and then permanently deleted.
• Server logs are retained for 30 days.

Security

All data is transmitted over HTTPS. Passwords are hashed using PBKDF2-SHA256 with 310,000 iterations. Access to your organisation's data is restricted by role — engineers can only see their own problems, managers can see their team, and no user can see another organisation's data.

Your rights

Under UK GDPR you have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Request deletion of your data
• Object to or restrict how we process your data
• Export your data in a portable format

To exercise any of these rights, contact us at the address below. We will respond within 30 days.

Cookies

Solve uses a single session cookie to keep you logged in. It is marked HttpOnly and Secure, and is not used for tracking or advertising. No third-party tracking cookies are set.