Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.conformly.ai/llms.txt

Use this file to discover all available pages before exploring further.

Where to find these settings

Click your avatar in the top-right corner of the app. The dropdown menu has three account-management entries:
  • Manage subscription — opens the Stripe Customer Portal
  • Privacy & data — GDPR data export and account deletion
  • Logout

Manage subscription (Stripe)

Clicking “Manage subscription” opens a one-time URL to the Stripe-hosted billing portal in a new tab. From there you can:
  • View invoices
  • Update your payment method
  • Change your plan (upgrade or downgrade)
  • Cancel your subscription
  • Download tax-compliant invoices
The portal is hosted by Stripe directly — Conformly never sees your card details. When you’re done, click “Return to Conformly.AI” in the portal and you land back on the Workspaces page. If you don’t have a Stripe customer record yet (i.e. you signed up but haven’t subscribed), the menu item shows a friendly toast: “No subscription found — subscribe to a plan first to manage billing here.” You’re not blocked from using the app — most features work without a paid subscription.

Privacy & data (GDPR)

Conformly takes data rights seriously. The Privacy & data dialog implements two GDPR requirements:

Right of access (Article 15) — Download your data

Click “Download data export” to receive a JSON file containing every record Conformly holds about you:
  • Your profile (name, email, organisation)
  • Your workspace memberships and roles
  • Every comment you’ve authored
  • Every activity you’ve performed (uploads, analyses, status changes, member additions)
  • Every workspace invitation you’ve sent
Note: workspace contents (documents, gaps, analyses) are not in this export unless you’re the sole owner of the workspace. Those belong to the workspace, not to you as an individual. To export a workspace’s contents, ask the workspace owner. The export downloads instantly as a single conformly-data-export-YYYY-MM-DD.json file. There’s no waiting period and no email-link flow — your data, in your hands, in seconds.

Right to erasure (Article 17) — Delete your account

Below the download section, the dialog has a destructive “Delete your account” action. Click “I want to delete my account,” type DELETE in the confirmation field, and click “Permanently delete account.” What happens:
  1. Your auth user is deleted from the identity provider
  2. Your profile is deleted
  3. Workspaces where you are the sole member (no other members) are deleted entirely, along with their documents, findings, comments, and analysis history
  4. Workspaces where you are the sole owner but other members exist are NOT deleted — instead, the request fails with a clear list of blocking workspaces and instructions: transfer ownership to another member or remove them, then retry. This protects shared workspaces from accidental destruction.
  5. Comments, activities, gap status changes, and other rows linked to your user are removed automatically by database cascade
  6. You’re signed out and redirected to the login page
This is irreversible. There is no soft-delete, no 30-day grace period, no recovery. If you change your mind after clicking, you’ll need to sign up again from scratch and your old data is gone.

Why deletion can be blocked

If you’re the sole owner of a workspace with other members, deletion is refused. The dialog shows you exactly which workspaces are blocking, how many other members each has, and what to do:
Cannot delete yet — sole owner of 2 workspaces
  • Volvo Powertrain Platform 2027 — 4 other members. Transfer ownership or remove them first.
  • BMS Test Program — 1 other member. Transfer ownership or remove them first.
To transfer ownership, open the Workspaces page, expand the row, find another member, change their role to “owner.” Now there are two owners and you’re free to delete your account (or step down to admin first).

Where your data actually lives

For full transparency:
  • Database: PostgreSQL on Supabase (EU or US region depending on the deployment your administrator chose). Encrypted at rest.
  • File storage: Supabase Storage. Encrypted at rest.
  • Embeddings: pgvector inside the same Postgres database.
  • AI inference: OpenAI API. Conformly does not train models on your data. OpenAI’s API terms apply.
  • Logs: server logs go to your Conformly administrator’s chosen log aggregator (CloudWatch by default for EC2 deployments).
If you need a Data Processing Agreement (DPA) for procurement, ask your administrator — Conformly’s DPA template is available on request.