Book a conversation

Legal

Security & data handling

How we protect your firm’s job data, homeowner information, and business records when we design and run custom AI agents for you.

Last updated: May 16, 2026

Our approach

BuilderMind is an AI deployment partner, not a consumer app. We connect agents to tools you already use (Buildertrend, QuickBooks, email, messaging) and process only the data you authorize for each workflow. Your data stays yours.

Infrastructure

We build and run agents on cloud infrastructure from providers that maintain SOC 2 Type II certification, including Amazon Web Services and Google Cloud. We apply the same control principles in how we design access, logging, and change management for client deployments.

BuilderMind itself is not independently SOC 2 certified today. When certification becomes relevant to your procurement process, contact us for current status.

Encryption

  • In transit: TLS 1.2+ for connections between systems, APIs, and our services.
  • At rest: AES-256 (or equivalent) for stored client configuration, logs, and job-related content we hold on your behalf.

Access controls

We use role-based access for our team and for each client environment. Agent actions that touch financial data, client messages, or schedules can require human approval before they execute, based on how we configure your deployment.

We maintain audit logs for agent runs and configuration changes so you can see what ran, when, and on which job.

AI and your data

We do not use your client or job data to train public foundation models. When we call third-party AI APIs (such as OpenAI or Anthropic), we configure those services for business use and limit what is sent to what each workflow needs.

We can discuss data residency, retention, and subprocessors during discovery or in your services agreement.

Integrations

Agents connect to your existing software using secure credentials (OAuth where supported). We follow each vendor’s recommended practices and scope access to the minimum needed for the agent’s job.

Incident response

If we become aware of a security incident that affects your data, we will notify you promptly and work with you on containment, investigation, and remediation in line with our agreement and applicable law.

Related policies

Website privacy practices are described in our Privacy Policy. Service terms are in our Terms of Service.

Questions

Security or data handling questions: hello@buildermind.ai