PIER

Privacy Policy

Last updated: May 22, 2026

Pier is a secure file transfer service operated by Milestone Acrylic LLC, a New York limited liability company. This policy explains what data we collect, why we collect it, and what control you have over it.

What we collect

  • Account information: your email, name, organization name, and a hashed password. For team members, we also store the inviter and the role they assigned you.
  • Files you upload: stored encrypted until they expire, hit their download limit, are revoked, or are removed by your organization's retention policy.
  • Activity logs: who sent or received each transfer, when it was opened or downloaded, the IP address that accessed it, and the browser used. This is the audit trail your organization sees on its dashboard.
  • Sessions and devices: device type, OS, and browser captured at sign-in for the "Active sessions" feature.
  • IP addresses: recorded on every API call for abuse prevention, IP allowlist enforcement, and the audit trail.

How we use it

  • To run the service — authenticate you, deliver transfers, render dashboards, send notification emails.
  • To keep the service safe — detect abuse, enforce IP allowlists, honor domain restrictions, watermarks, expiry rules, and password protection.
  • To produce audit trails so you can prove who saw what and when, for your own compliance or your customers' compliance teams.
  • To bill you, once paid plans are live. We will update this policy before any billing change goes into effect.

Who we share it with

We do not sell your data, share it with advertisers, or provide it to data brokers. We may share data with:

  • Service providers who help us operate Pier, bound by contractual confidentiality obligations.
  • Law enforcement if compelled by valid legal process, or where we have a good-faith belief that disclosure is necessary to prevent imminent harm.

Data retention

Files are deleted automatically when any of the following occurs:

  • The transfer expires (based on time or download limit, whichever comes first).
  • The sender revokes the transfer.
  • The recipient downloads the file (for "after download" expiry).
  • Your organization's retention policy triggers removal (30, 60, 90, 180, or 365 days from creation, configurable in Settings).

After files are deleted, only audit trail metadata is retained — sender, recipient, timestamps, IP addresses, and activity events. This metadata supports compliance requirements and is removed according to the same retention policy if "Delete files and records" is selected.

We do not maintain separate backups of customer files.

Your rights

You can:

  • Access your data — Owners and Admins can download a CSV audit log from the dashboard.
  • Correct your data — edit organization, dock, and user details directly in Settings.
  • Delete your data — an Owner can delete the entire organization (and all its files, transfers, and team members) from Settings → Danger zone. We honor erasure requests within 30 days.
  • Export your data — Owners and Admins can export the full audit log as CSV from the dashboard. For structured exports of other data (e.g. user lists), email legal@pierlabs.pro.

These rights extend to all users, including those covered by the GDPR (European users) and CCPA (California residents).

Cookies

We use a small amount of essential browser storage so you can stay signed in. See our Cookie Policy for details. We do not use advertising or analytics cookies.

Security

  • Files are encrypted at rest using server-side encryption.
  • All traffic is encrypted in transit over TLS.
  • Access is gated by identity, optional two-factor authentication, organization-level IP allowlists, and role-based controls.
  • Every meaningful action against the system is logged.

Changes to this policy

If we make a material change, we will notify organization Owners and Admins by email at least 30 days before it takes effect. Minor edits (typos, clarifications) may go up without notice; the "Last updated" date at the top always reflects the current version.

Contact

Questions about this policy, or want to exercise your rights? Email contact@pierlabs.pro for general questions or legal@pierlabs.pro for privacy and compliance matters specifically.