01 Introduction
Studio B ("we", "us", "our") operates the AcuOps platform, the AcuDocs Capture Chrome extension, and related services. This policy describes how we collect, use, and protect information when you use our products.
We are committed to protecting your privacy and handling your data transparently. We collect only what is necessary to deliver our services and never sell your data to third parties.
02 Products Covered
This policy covers the following Studio B products and services:
- Extension AcuDocs Capture — Chrome extension for generating training documentation from screen recordings
- Platform AcuOps — ERP environment management, monitoring, and CI/CD for Acumatica
- Service Doc Generator — Backend service for AI-powered guide generation and knowledge base publishing
- Portal Enhancement Portal — Customer-facing portal for feature requests and training documentation
03 AcuDocs Capture — Chrome Extension
The AcuDocs Capture extension records browser actions during user-initiated recording sessions to generate training documentation. Below is a complete description of what data is collected and how it is used.
Data collected during active recording
| Data Type | Purpose |
|---|---|
| Screenshots | Visible tab screenshots captured at each user action to illustrate guide steps |
| Click coordinates | X/Y position of clicks to annotate screenshots with visual indicators |
| Element metadata | HTML tag, text label, aria-label, and CSS selector of interacted elements |
| Page URL | Current page URL to provide navigation context in guides |
| ERP context | Acumatica screen ID, field name, and grid column (when on Acumatica pages) |
Data NOT collected
- Passwords or authentication credentials (password fields are explicitly excluded)
- Data entered in form fields (only the field label and element metadata are captured, not values)
- Browsing history or activity outside of active recording sessions
- Personal identification information (name, email, address)
- Financial or payment information
- Health information
- Location data
When data is collected
Data is collected only during active recording sessions that the user explicitly starts and stops. When not recording, the extension does not observe, capture, or transmit any data. The content script listens for DOM events only while the recording flag is active.
Where data is sent
Captured data is transmitted via HTTPS to the AcuDocs processing service hosted on Railway (doc-generator-production.up.railway.app). Data is processed server-side by Claude AI to generate step-by-step documentation and is then published to the customer's HubSpot Knowledge Base.
Remote code
This extension does not load or execute any remotely hosted code. All JavaScript is bundled within the extension package. The extension communicates with the AcuDocs API exclusively via fetch() requests and receives JSON responses.
04 AcuOps Platform
The AcuOps platform connects to your Acumatica ERP instance via the Acumatica REST API to provide environment monitoring, schema drift detection, and CI/CD services.
- API credentials are stored encrypted in Railway environment variables, never in source code
- Read-only API access is used for monitoring and validation; write access is used only for CI/CD deployments with explicit authorization
- Schema snapshots are cached in Redis for drift comparison and automatically expire
- Health check data is retained for 30 days for trend analysis
05 Data Storage & Security
- All data is transmitted over HTTPS/TLS encrypted connections
- Backend services are hosted on Railway with infrastructure-level encryption at rest
- API credentials and secrets are stored in Railway environment variables, never committed to source control
- Redis-cached data (guide drafts, session state) expires automatically with configurable TTLs
- Vector embeddings in Qdrant are used for knowledge base search and do not contain raw user data
- We conduct periodic security audits including credential rotation and permission scoping
06 Third-Party Services
Our products integrate with the following third-party services to deliver functionality:
| Service | Purpose | Data Shared |
|---|---|---|
| Anthropic (Claude) | AI-powered guide generation | Screenshots and element metadata for documentation generation |
| HubSpot | Knowledge base publishing, CRM | Generated guide content and article metadata |
| Voyage AI | Vector embeddings for search | Guide text for embedding generation (no images) |
| Railway | Infrastructure hosting | Application logs and metrics |
| Slack | Notifications and video intake | Guide review messages and status notifications |
We do not sell, rent, or trade any user data to third parties. Data shared with the services above is used solely to deliver Studio B product functionality.
07 Data Retention
- Guide drafts pending review are stored in Redis for 7 days, then automatically deleted
- Published guides are retained in HubSpot Knowledge Base until the customer removes them
- Vector embeddings persist in Qdrant until the guide is deleted or the collection is cleared
- Temporary video files are deleted immediately after processing
- Application logs are retained for 30 days
08 Your Rights
You have the right to:
- Request access to any data we hold about you or your organization
- Request deletion of your data from our systems
- Opt out of data collection by uninstalling the Chrome extension or disconnecting API access
- Request a copy of your data in a portable format
To exercise any of these rights, contact us at kevin@b.studio.
09 Changes to This Policy
We may update this privacy policy from time to time. Material changes will be communicated via the Enhancement Portal or email. The effective date at the top of this page reflects the most recent revision.
For questions about this policy, contact kevin@b.studio.