Your data is yours. Full stop.
Plain-English commitments we will hold ourselves to. Not aspirations — the rules that govern every line of code we write and every service we contract.
What we do with your schedules.
You own them. Always.
The schedules you upload remain your intellectual property. You can export, copy, or delete them at any time. We will never claim a licence over your data as a condition of using LogicReader.
UK-hosted, encrypted, isolated.
During early access, your schedules live on a UK-hosted server behind authentication, with TLS in transit and encryption at rest. The server is operated under a UK GDPR-compliant Data Processing Agreement.
We do not look at them.
Operationally we do not access customer schedules. Engineering access is logged and limited to incident response with your prior consent.
What we never do with your schedules.
Six absolute commitments. No exceptions. No marketing caveats. These are not subject to change without giving every customer notice and an option to extract their data first.
We do not train AI on your data. Ever. Not LogicReader’s models, not any future model, not on aggregated data, not on “anonymised” data.
We do not sell, license, syndicate, or otherwise distribute your schedules to any third party. Not to data brokers, not to analytics partners, not to academic researchers, not to anyone.
We do not share your data with affiliates, business partners, marketing networks, or any company outside the named sub-processors listed below. Period.
We do not benchmark your schedules against other customers’. We do not produce industry reports drawn from customer data. We do not derive analytics or insights from your projects to sell back to the market.
We do not use your project content, screenshots, or data in our marketing without your explicit, separate, written permission. Case studies are opt-in only.
We do not build derived products from your data — no scraped methodology, no “learnings” baked into the next release. Your schedule shapes nothing but your own LogicReader view of it.
Sub-processors who can see schedule data — full list.
Honest disclosure. These are the only services that can ever touch your schedule data, and only under the conditions listed.
Hostinger (UK)
Provides the UK-located server LogicReader runs on. Cannot access database contents in normal operation. UK GDPR Data Processing Agreement signed 2026-05-10.
Anthropic (US)
Receives only the specific schedule slice required, only when YOU click an AI feature inside LogicReader. Anthropic does not train on API data per their published terms. Data Processing Agreement signed 2026-05-10. Standard contractual clauses on file for international transfer.
Nothing else. Email infrastructure (Microsoft 365) processes our outbound mail; it never receives schedule content. Google Analytics on the marketing site sees visitor behaviour on cosmospm.com; it never receives schedule content. No CRM, no support tool, no chat widget, no analytics service ever sees your schedules.
On deletion.
- You can delete any schedule at any time from inside LogicReader.
- On account closure, we permanently delete your schedules within 30 days; backups purged within 90 days per the documented disaster-recovery retention policy.
- On written request, we delete sooner — same-working-day in most cases.
- Backups exist for resilience only. No backup contents are ever used for any purpose other than restoring service to the customer who owns them.
Inside-firewall option.
For customers who cannot let schedule data leave their network — Tier-1 contractors, utility infrastructure, defence, regulated industries — the Enterprise tier delivers LogicReader as a Java application that runs entirely inside your perimeter. No data ever reaches CosmosPM. License validation is the only network call, and it can be relaxed for fully-air-gapped deployments under a separate agreement.
For this tier, our threat model assumes the Enterprise customer’s own infrastructure controls override ours. We harden the application so that even with full bytecode access, methodology IP remains protected — not so we can audit you, but so neither party has to trust the other beyond the licence agreement.
UK-rooted today. Building toward an EU/UK-sovereign, AI-enhanced scheduling stack.
CosmosPM is a British company. Our servers are UK-hosted. Our quality posture aligns with British and European industrial standards (working toward AS9100D + ISO 9001:2015). We’ve made every commercial decision so far with one rule: sovereignty key, but swappable. Never a blocker.
Where we are today.
Our AI provider is Anthropic (US-based), used only when you activate an AI feature inside LogicReader. Anthropic was chosen for capability and data-protection terms (no training on API data, signed DPA with Standard Contractual Clauses for international transfer). The full data flow is documented in the sub-processor list above. For customers who cannot send any data to a US provider — defence, utility, regulated infrastructure — the Enterprise inside-firewall tier bypasses cloud AI entirely; the application runs in your perimeter, no external network call for AI.
Where we’re going.
As UK and European frontier AI models reach capability parity with the US frontier — Mistral, Aleph Alpha, and the UK’s emerging AI ecosystem — LogicReader will offer a UK/EU-sovereign AI option selectable at the tenant level, with the same user experience and the same six commitments above carried unchanged. The product is engineered with this swap in mind: the AI layer is pluggable, not hard-wired. The methodology that makes LogicReader useful runs on our own infrastructure regardless of which model is in the loop — so the swap is a configuration change, not a rebuild.
What this means for you.
No permanent lock-in to US compute. If your procurement, your treaty obligations, or your risk register requires UK/EU sovereignty across the whole stack — today or eighteen months from now — we have a documented path to get you there. And we won’t pretend we’re already there when we’re not. The six absolute commitments above hold regardless of which AI model is in the loop, because they are about how we treat your data, not about which vendor we contract.
Our legal floor.
Read the full Privacy Policy for the formal legal text covering identity, lawful basis, retention, your rights under UK GDPR, and how to exercise them.
Questions about how we treat your data?
Email Evangelos directly. Read by a person. Answered within two working days.