Legal
Last updated: 11 June 2026
Draft — pending legal review. Not yet binding.
This Privacy Policy explains how Serenocollects, uses, and protects your personal data when you use our renovation-management service, in line with the EU General Data Protection Regulation (GDPR). We’ve written it to be readable, not just compliant.
The data controller is Frameless Design Ltd, registered at [registered address — placeholder], company number [company no. — placeholder]. For any privacy question or to exercise your rights, contact us at [privacy/DPO contact email — placeholder].
To generate proposals and answer your questions, we send relevant text and images you provide to our AI sub-processor (Anthropic), and, for image rendering, to Replicate. We do not sell your content and do not use it to train public AI models. AI output is advisory and applied only when you approve it — see our Terms of Service.
We use carefully chosen service providers to run Sereno. Each processes personal data only on our instructions and under appropriate data-protection terms:
| Provider | Purpose | Region |
|---|---|---|
| Supabase | Authentication, database & file storage (your account, project data and uploaded photos) | EU |
| Anthropic | AI processing of photos and text to generate proposals and answer questions | US / EU |
| Stripe | Payment processing and subscription billing | US / EU |
| Resend | Transactional & digest email delivery | US / EU |
| Replicate | AI image rendering (e.g. visualising renovation options) | US |
| Fly.io | Application hosting & infrastructure | EU region |
| Plausible | Cookieless, privacy-friendly usage analytics (aggregate only) | EU |
We do not sell your personal data or share it with advertisers.
We aim to keep data within the EU/EEA where practical. Some sub-processors may process data outside the EEA (e.g. in the US). Where they do, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses or an adequacy decision, so your data keeps an equivalent level of protection.
We keep your personal data for as long as your account is active and as needed to provide the Service. When you delete your account, we delete or anonymise your project content within a reasonable period, except where we must retain limited records to meet legal obligations (for example, billing and tax records held via Stripe).
Under the GDPR, you have the right to:
To exercise any right, use the in-app tools or contact us at [privacy/DPO contact email — placeholder]. We respond within the timeframes the GDPR requires.
We use technical and organisational measures appropriate to the risk — including encryption in transit, access controls, and reputable infrastructure providers — to protect your data. No system is perfectly secure, but we work to keep your information safe and to respond promptly to any incident.
Sereno is not intended for children. The Service is for adults (18+), and we do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will remove it.
We may update this Privacy Policy from time to time. We’ll change the “Last updated” date above and, for material changes, give reasonable notice (in-app or by email).
Frameless Design Ltd — [privacy/DPO contact email — placeholder], or by post at [registered address — placeholder]. See also our Cookies Policy for how we use cookies.