Profit Sentinel

Privacy Policy

Last updated: January 2026

Our Commitment to Your Privacy

Profit Sentinel is built with privacy as a core principle. We process your POS data to detect profit leaks, then delete uploaded source files within 24 hours. For signed-in users, analysis history is retained for 90 days by default, and users can extend or delete it at any time. We also retain anonymized, aggregated statistics to improve our service. We never sell your data. We share limited data with third-party services only as necessary to operate the platform (see Third-Party Services below).

What Data We Collect

Uploaded Files

  • POS export files (CSV, Excel) that you upload for analysis
  • Files are processed in-memory and stored temporarily in encrypted S3 storage
  • Automatically deleted within 24 hours of processing

Email Address (Optional)

  • Only collected if you opt-in to receive the full detailed report
  • Used solely to send your complete analysis report with specific SKUs
  • You can unsubscribe at any time

Technical Information

  • IP address - used for security, rate limiting, and fraud prevention
  • User agent (browser/device info) - used for compatibility and debugging
  • This data is retained for 7 days for security purposes, then deleted

Anonymized Analytics

  • Aggregate statistics (leak counts, averages) with no PII
  • Used to improve detection algorithms
  • Cannot be linked back to your business

Preview vs. Full Report

We provide two levels of analysis results so you can verify findings before opting in:

Preview Report (On-Screen)

  • Shows your real SKU names and product details so you can verify findings against your actual data
  • Displays leak categories, severity levels, and estimated dollar impact
  • Top items shown per leak type (not the full inventory)
  • No email required
  • Preview results are processed on our servers and returned to your browser; guest previews are not saved to account history

Full Report (Email Delivery)

  • Complete analysis across all SKUs with full product names
  • Specific actionable recommendations per leak type
  • Detailed breakdown by category with financial impact
  • Delivered as a PDF attachment to your email
  • Requires email opt-in with GDPR consent
  • Source files deleted within 24 hours

The on-screen preview shows real SKU names so you can verify the analysis is accurate. The full report via email includes the complete inventory analysis across all flagged items. Source files are deleted within 24 hours. Signed-in users get 90-day default history retention and can extend or delete history at any time.

What We Do NOT Collect

  • Customer names, addresses, or contact information from your files
  • Payment or credit card information
  • Social security numbers or government IDs
  • Any data you don't explicitly upload

How We Protect Your Data

Encryption in Transit

All data transferred via HTTPS/TLS 1.2+. Your files are encrypted from your browser to our servers.

Encryption at Rest

Files stored with AES-256 server-side encryption in AWS S3. Even if accessed, data is unreadable.

Auto-Deletion

Raw files are automatically deleted within 24 hours of analysis. No manual intervention needed.

PII Stripping

Anonymized analytics are stored without customer-level personal information. Signed-in users may also store full analysis results in account history for product features.

Your Rights (GDPR/CCPA)

Under GDPR (EU) and CCPA (California), you have the following rights:

  • Right to Access: Request a copy of any data we hold about you
  • Right to Deletion: Request deletion of your data at any time
  • Right to Opt-Out: Decline email communications at any time
  • Right to Portability: Receive your data in a machine-readable format
  • Right to Correction: Request correction of inaccurate data

To exercise any of these rights, contact us at privacy@profitsentinel.com

Email Communications

We follow CAN-SPAM, GDPR, and CCPA requirements for email:

  • We only send emails if you explicitly opt-in
  • Every email contains an unsubscribe link
  • We honor unsubscribe requests within 24 hours
  • We never sell or share your email with third parties

Third-Party Services

We use the following services to operate Profit Sentinel:

Amazon Web Services (AWS)

Secure file storage and computing infrastructure

Supabase

Authentication, account data, and saved analysis history for signed-in users

Resend / SendGrid

Email delivery for analysis reports (if opted-in)

Vercel

Website hosting and deployment

Anthropic

AI-powered column mapping to identify data fields in your uploads (receives column headers and a small data sample — no full inventory data)

Cookies & Tracking

We use minimal, essential cookies only:

  • Session cookies: Keep you logged in during your visit
  • Preference cookies: Remember your theme preference (dark/light)

We do NOT use advertising cookies or third-party tracking pixels.

Data Retention

Data TypeRetention Period
Uploaded filesDeleted within 24 hours of processing (typically within minutes)
Email address (if opted-in)Until you unsubscribe or request deletion
Anonymized analyticsIndefinitely (no PII)
Signed-in analysis history90 days by default (extend or delete any time)
Session data24 hours
Preview/teaser report dataProcessed server-side and returned to browser; guest previews are not saved to account history

Contact Us

For privacy-related questions or to exercise your rights:

Email: privacy@profitsentinel.com

Response Time: Within 48 hours

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

Back to Diagnostic