Legal
This policy covers both the CEMP mobile app and the CEMP IT web platform. Last updated: May 2026.
Effective date: 19 May 2026 | CEMP, Delaware, United States
CEMP IT Ltd ("we", "our", "us") operates two products under the CEMP brand: the CEMP mobile app (Android) and the CEMP IT web business suite at cempit.com. This Privacy Policy explains what data each product collects, how it is used, and your rights.
Because these products are fundamentally different in nature, their data practices differ. Please read the relevant sections carefully.
Key principle: We collect only what is necessary to deliver the service to you. We never sell your data to third parties and we never use it for advertising.
Section 1: CEMP AI App
The CEMP app does not require you to create an account. We do not collect your name, email address, or any identifying information. There is no user profile stored on our servers.
Many features use your device's camera, microphone, motion sensors, or barometric sensor. This data is processed in real time to produce a result (a scan result, a health reading, a recipe) and then discarded immediately. We do not retain sensor data, images, audio recordings, or any raw input beyond the instant needed to generate your result.
Some features send a minimal, anonymised payload to AWS Lambda for AI processing using Anthropic Claude via AWS Bedrock. This processing is transient. Neither AWS nor Anthropic retains your data after the response is returned to your device. No personally identifiable information is included in these requests.
When Crash Safety detects an impact event, the app may send an SMS or initiate an emergency call using phone numbers you have pre-configured on your own device. We do not receive, store, or process those numbers on our servers.
Any payments are processed entirely through Google Play. CEMP never sees, receives, or stores your payment card details. Please refer to Google's own privacy policy for information on payment data handling.
The CEMP app contains no advertising. We do not use third-party analytics SDKs that track user behaviour across apps or websites.
Section 2: CEMP IT Business Suite
To use CEMP IT you must create an account. We collect and store your name, email address, and a securely hashed password. This information is required to identify you, authenticate you, and associate your business data with your account.
CEMP IT is a business productivity suite. By design, it stores the data you create: database tables (Loom), task boards (Deck), uploaded files (Vault), calendar entries (Tempo), and retail records (Retail). This storage is the core purpose of the product. Without it, the suite could not function.
Files you upload to Vault are stored in encrypted object storage. They are accessible only to you (and other team members you explicitly grant access to). File contents may be processed transiently by Anthropic Claude via AWS Bedrock when you use the AI document analysis feature. File content is not retained by the AI provider.
The AI Agent queries only the data belonging to your account. It does not have access to any other tenant's data. Queries are processed via Anthropic Claude on AWS Bedrock. Query content is transient and not retained by the AI provider beyond the response.
CEMP IT uses JWT (JSON Web Token) authentication. Tokens are signed with a secret key and expire on a rolling basis. Passwords are stored using strong one-way hashing. We do not store plain-text passwords.
We may send transactional emails (account confirmation, password reset, billing receipts). We do not send marketing emails unless you have explicitly opted in.
Subscription payments are processed by a third-party payment processor. We do not store card numbers or bank details on our servers.
Both products run on AWS infrastructure in the EU region. AWS is SOC 2 and ISO 27001 certified. Data stored in CEMP IT is subject to AWS's data processing agreements in compliance with applicable data protection laws.
AI features across both products use Anthropic Claude, accessed through AWS Bedrock. All AI processing is transient. Anthropic does not train its models on your data when accessed through the Bedrock API.
Our infrastructure is based in the EU. Where data is processed by third-party sub-processors in other jurisdictions, we rely on appropriate safeguards including standard contractual clauses as required by applicable data protection laws.
Depending on your location, you may have the following rights regarding your personal data:
To exercise any of these rights, contact us at privacy@cempit.com.
CEMP App users: Because we do not collect personally identifiable information from the app, we have nothing to retrieve, correct, or delete. Your data is never in our possession.
No user data is retained on our servers. Sensor data, images, and audio are discarded immediately after processing.
Account data and business data are retained for as long as your account is active. Upon account deletion, your data is permanently deleted within 30 days, except where we are required to retain it by law.
The CEMP mobile app does not use cookies.
The CEMP IT web platform uses strictly necessary cookies to maintain your authenticated session. We do not use tracking cookies, advertising cookies, or third-party analytics cookies.
Neither product is directed at children under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us at privacy@cempit.com and we will delete it promptly.
We may update this Privacy Policy from time to time. When we make material changes, we will update the effective date at the top of this page. For CEMP IT users, we will also notify you by email. Continued use of our products after changes constitutes acceptance of the updated policy.
For privacy-related enquiries, please contact:
Email: privacy@cempit.com
Company: CEMP
Jurisdiction: Delaware, United States