Last updated: 10 June 2026
Megawatt IQ ("we", "us") provides the data center due-diligence application at megawattiq.ai. The data controller is the individual proprietor of Megawatt IQ (a sole trader based in England, United Kingdom). For any privacy question or request, contact [email protected].
Megawatt IQ is local-first by design. Your projects, diligence answers, economic inputs, notes and any documents you upload are stored entirely in your browser (localStorage and IndexedDB) on your own device. This content is never transmitted to, processed by, or stored on our servers. We cannot see your pipeline, and we could not hand it over even if compelled. Backing it up is your responsibility (use the JSON export in Settings).
| Data | Why | Where |
|---|---|---|
| Your email address | To create your account, send one-time sign-in codes, and service emails (trial reminders, payment notices, feedback replies) | Cloudflare KV; Resend (email delivery) |
| Subscription & billing status | To grant the right plan and manage your subscription | Stripe (payments & merchant of record); a plan/status record in Cloudflare KV |
| Payment details | To take payment | Entered directly into Stripe — we never see or store card data |
| Messages you send us | Contact form, feedback widget and support chat | Cloudflare KV; emailed to us via Resend |
| Basic technical logs | Security, abuse prevention and reliability | Cloudflare (standard edge logs) |
We use a single, essential cookie — a signed session token that keeps you logged in after you enter your sign-in code. We do not use advertising or cross-site tracking cookies. If we measure traffic, we use privacy-respecting, cookieless analytics (Cloudflare Web Analytics) that does not fingerprint or profile you.
The optional AI document-analysis and research features are bring-your-own-key. When you use them, your browser sends the chosen document or text directly to Anthropic under your own key and their terms. We neither receive nor retain that content. If you never add a key, nothing is ever sent.
Where the UK/EU GDPR applies, we process your email and subscription data to perform our contract with you (providing the Service) and on the basis of our legitimate interests in securing and improving the Service. We keep account and billing records for as long as your account is active and as required for legal, tax and accounting purposes, then delete or anonymise them. Messages you send are kept while we handle and learn from them.
Our processors may handle data in countries outside your own, including the United States. Where required, transfers are covered by appropriate safeguards (such as Standard Contractual Clauses). Note that because your deal data stays in your browser, it does not cross borders through us at all.
Subject to applicable law, you may request access to, correction or deletion of the personal data we hold (your email, plan status and any messages), object to or restrict certain processing, and request a copy. Your deal data is already entirely in your hands — export it any time from Settings, and clear it from your browser to erase it. To exercise any right, email [email protected]; we respond within the timeframes the law requires. You may also complain to your local data-protection authority.
The Service is for business use by adults and is not directed at anyone under 18.
We may update this policy; material changes will be notified by email or on the Service, with the "last updated" date revised above.
Privacy questions or requests: [email protected].