Contractors trust EstimAI Pro with their pricing, their clients, and their bid strategy. This page documents exactly how we protect that data, what AI providers we use, and what rights you have over your information.
All traffic to estimaipro.com uses TLS 1.2+. Customer data, uploaded documents, and Pricing DNA records are stored on AES-256-encrypted disks at our infrastructure providers.
Every estimate, client, document, and Pricing DNA record is scoped to a single user account at the database layer. Queries enforce ownership before returning rows — there is no cross-tenant data path.
Your uploaded documents, estimates, and pricing patterns are never used to train Anthropic, OpenAI, or any other AI model. Your Pricing DNA is private to your account, period.
Authentication is handled by NextAuth with industry-standard session tokens. Google OAuth is supported. Password credentials are hashed with bcrypt. Email verification is enforced on signup.
Application hosted on Vercel (SOC 2 Type II). Database on managed Postgres with daily backups. Redis (Upstash) handles rate limiting and abuse prevention. All US-based.
Sentry captures application errors with PII filtering. Anomalous request patterns trigger rate limits before they reach the database. Founder is paged on production incidents.
EstimAI Pro uses two AI providers. Each is listed below with what they do, what they don't do, and the contractual protection in place.
Claude (Sonnet and Haiku models) powers estimate generation, proposal drafting, blueprint analysis, photo analysis, document classification, and the meeting-recorder summary. Claude is the brain of every AI feature in the product.
Whisper is used only to transcribe voice memos and meeting recordings into text. The text is then sent to Claude for understanding. Whisper does not perform any reasoning, estimating, or content generation.
Security posture is what you measure, not what you claim. Here's what runs against every change we ship.
Every change runs through TypeScript type checking, ESLint, 113 unit tests, and 23 Playwright end-to-end tests before merge. A nightly evaluation harness scores live AI output against 7 golden fixtures (currently 7/7 passing, average 98/100).
Rate limiting on every public endpoint. Authorization checked on every database read. Stripe webhooks signature-verified. Admin endpoints behind a separate ADMIN_SECRET. PDF uploads validated by size, MIME type, and HEIC rejection.
No credentials in source code. All secrets sourced from environment variables and verified at startup. Production keys rotate on personnel changes. Local development uses isolated test keys.
Daily database backups with point-in-time recovery. Customers may export all of their estimates, clients, and Pricing DNA data at any time. On account cancellation, full export is available before deletion.
You own your data. The legal details live in the Privacy Policy. The short version: