Clear safeguards before a customer uploads a BOM.
FoundryGraph is a decision-support diagnostic service. The MVP keeps customer file movement narrow, auditable, access controlled, and paired with a retention/deletion path.
Private upload path
Upload and operational pages require authenticated access when Supabase auth is configured.
Encrypted storage baseline
Customer diagnostic files are stored in a private Supabase Storage bucket with audit events around upload, review, export, and delivery.
Human review required
AI can draft and explain, but critical compliance flags remain decision support until reviewed by a human operator.
No-training posture
Customer data is not used for model training without explicit permission.
Deletion request path
Customers can request deletion, export, or retention clarification through the data request page.
MVP data policy
Files are accepted only after account access and agreement context are clear.
Uploaded BOM, AVL, supplier, RFQ, PO, spreadsheet, and PDF data is used to deliver the requested diagnostic.
Audit events track uploads, screenings, review decisions, report exports, deliveries, and monitoring requests.
FoundryGraph provides decision support and does not certify legal compliance.
Enterprise later
SSO
SOC 2 Type II
Customer-managed keys
ERP/PLM controls
Security packet