CONTENTS
SECTION 1
🛡OUR CORE SECURITY COMMITMENTS
ZERO DATA RETENTION
Your company name, facility details, products, process parameters, and any other information entered during document generation are never stored on our servers. Data exists only for the duration of the API call and is immediately discarded.
NO AI TRAINING ON YOUR DATA
Information you submit to generate SOPs and forms is never used to train, fine-tune, or improve any AI model — including the underlying language model. Your formulations, processes, and operational data remain exclusively yours.
ENCRYPTED IN TRANSIT
All data transmitted between your browser and our servers is protected by TLS 1.2 / 1.3 encryption via HTTPS. No data is transmitted over unencrypted connections.
NO THIRD-PARTY SHARING
Your operational data is never sold, rented, shared, or disclosed to any third party for any commercial purpose. We do not have data broker relationships.
CANADIAN-OWNED & OPERATED
SOP Command™ is owned and operated by Victory Hour Multimedia Inc., a company incorporated and operating in Windsor, Ontario, Canada. Subject to Canadian privacy law (PIPEDA).
BUILT FOR REGULATED INDUSTRIES
Our data handling practices are designed with the confidentiality requirements of GMP, pharmaceutical, food manufacturing, automotive, and medical device operators in mind — not general consumer software.
SECTION 2
🔄HOW YOUR DATA FLOWS
Understanding the complete data path helps you make informed decisions about what information you share. Here is the exact sequence of every document generation request:
1
Your browser — data entry
You enter company name, facility details, products, jurisdiction, and optional context. This data is held only in your browser's local memory (JavaScript variables). It is never written to browser storage, cookies, or localStorage by default.
DATA STAYS IN YOUR BROWSER UNTIL SUBMIT
2
HTTPS transmission to Cloudflare Worker proxy
When you click Generate, your data is sent over TLS-encrypted HTTPS to our Cloudflare Worker proxy (
TLS 1.3 ENCRYPTED · CLOUDFLARE EDGE · STATELESS
claude-proxy.victoryhourdream.workers.dev). This proxy runs at Cloudflare's edge — it does not log request bodies, does not write data to any database, and processes each request in an isolated, stateless execution environment.3
Forwarded to Anthropic API (encrypted)
The Worker forwards your prompt to Anthropic's Claude API over HTTPS. Anthropic's data usage policy for API customers explicitly states that data submitted via the API is not used to train models. See Anthropic's API usage policy at anthropic.com for their specific commitments.
ANTHROPIC API · NOT USED FOR TRAINING · HTTPS
4
Response returned to your browser
The generated SOP or form travels back over HTTPS to your browser. It is displayed on screen and held in browser memory. When you close the browser tab or session, the data is gone. We do not cache, log, or store the generated document.
RESPONSE IN BROWSER MEMORY ONLY · NOT LOGGED
5
Download to your device
When you download a document (.txt, .html, .docx, .pdf), it is generated locally in your browser and downloaded directly to your device using a local Blob URL. The file content never passes through our servers at download time.
LOCAL BLOB GENERATION · NO SERVER INVOLVEMENT AT DOWNLOAD
SECTION 3
🚫ZERO DATA RETENTION POLICY
SOP Command™ operates on a zero data retention architecture. This means:
Each document generation request is completely stateless — no session data, no request history, no document storage.
We operate no database that stores user inputs, generated documents, company names, facility details, or any other operational data you submit.
Our Cloudflare Worker proxy is a stateless edge function — it processes the request and immediately discards all associated data.
The Document Register and Form Register visible in the right sidebar are stored exclusively in your browser's session memory (JavaScript variables) — not in our infrastructure.
When you close or refresh the browser, all session data is permanently cleared — no record remains on our side.
What this means practically: If you entered your facility's proprietary chocolate formulation, your CFIA audit schedule, or your pharmaceutical batch parameters into SOP Command — that data does not exist on our systems the moment your browser session ends. We have nothing to disclose, share, or breach.
SECTION 4
🧠NO AI TRAINING ON YOUR DATA
This is one of the most important commitments we make to regulated industry operators. We know your concern: "Will my facility's proprietary data be used to train an AI model that my competitors could benefit from?"
The answer is no. Here is why:
We do not use your data to train SOP Command's AI. The underlying AI model is accessed via API — we are a customer of the API, not a model trainer.
Anthropic's API policy explicitly prohibits using API customer data for model training without express consent. You can review Anthropic's usage policy at anthropic.com/legal/privacy for their specific commitments as the model provider.
We have no mechanism to feed your data into any training pipeline. We do not operate ML infrastructure. We are a software platform, not an AI research company.
Your formulations, process parameters, batch conditions, and supplier information are never extracted for any secondary purpose — commercial, research, or otherwise.
SECTION 5
🔐ENCRYPTION & TRANSIT SECURITY
HTTPS enforced everywhere. All connections to SOP Command™ are served exclusively over HTTPS. HTTP connections are automatically redirected to HTTPS. There is no unencrypted path to our application.
TLS 1.2 / TLS 1.3. Cloudflare Pages and Cloudflare Workers both enforce modern TLS protocols. Older, insecure protocol versions (SSL, TLS 1.0, TLS 1.1) are rejected.
HSTS (HTTP Strict Transport Security). The sopcommand.com domain enforces HSTS, preventing protocol downgrade attacks that could expose your data.
Valid SSL certificate. Our SSL/TLS certificate is issued and managed by Cloudflare, a globally trusted Certificate Authority partner. Certificate validity and renewal are automated.
API communications encrypted. All communication between our Cloudflare Worker proxy and Anthropic's API is also conducted over TLS-encrypted HTTPS connections.
SECTION 6
☁️INFRASTRUCTURE SECURITY
SOP Command™ is hosted on Cloudflare Pages and uses Cloudflare Workers as a serverless proxy layer. Cloudflare is one of the world's largest and most trusted network infrastructure providers, serving millions of websites and enterprise applications globally.
Cloudflare's global edge network — your requests are served from the Cloudflare data center closest to your location, reducing latency and ensuring consistent availability.
DDoS protection — Cloudflare provides automatic, always-on DDoS mitigation at network, transport, and application layers.
Web Application Firewall (WAF) — Cloudflare's WAF protects against common web application vulnerabilities including OWASP Top 10 threats.
Cloudflare Workers are isolated execution environments — each request runs in a V8 isolate, meaning one request cannot access another request's memory or data.
No persistent server-side storage — our application has no databases, no file systems, no persistent storage layers that could retain your operational data.
You can review Cloudflare's full security and compliance documentation, including their SOC 2 Type II certification and ISO 27001 compliance, at cloudflare.com/trust-hub.
SECTION 7
💊SPECIFIC GUIDANCE FOR GMP & PHARMACEUTICAL BUYERS
💊 GMP OPERATIONS & PHARMACEUTICAL SUPPORT
We understand that pharmaceutical and GMP-regulated operators have heightened data sensitivity requirements. Your batch formulations, active pharmaceutical ingredient (API) concentrations, process validation parameters, and supplier qualification data represent significant commercial and regulatory assets.
Our specific commitments for GMP users:
Formulation data never persisted. Any API names, concentrations, excipient details, or manufacturing parameters you enter are never written to any storage medium on our infrastructure.
Batch records not stored. Generated batch documentation records, deviation reports, and CAPA forms exist only in your browser session and on your local device after download.
Supplier qualification data confidential. Approved supplier lists, supplier audit findings, and qualification data entered during form generation are not retained.
QA review requirement enforced in the product. Every GMP document generated includes a mandatory QA/QP review notice — we do not position generated documents as validated outputs requiring no human oversight.
Custom MSA available. For Enterprise customers requiring a Master Service Agreement with specific confidentiality and data handling provisions, please contact info@victoryhourmedia.com.
SECTION 8
🩺SPECIFIC GUIDANCE FOR MEDICAL DEVICE BUYERS
🩺 MEDICAL DEVICE OPERATIONS — ISO 13485 / FDA 21 CFR PART 820
Medical device manufacturers and their supply chains have specific requirements around data confidentiality, design history file protection, and complaint handling records. SOP Command™ is positioned as a support operations tool, not a Design History File (DHF) or Technical File system.
Device specifications not retained. Any device specifications, risk management outputs, or design data you reference in context fields are not stored.
Patient data — never enter it. SOP Command is not a clinical data system. Do not enter patient-identifiable information, clinical trial data, or adverse event details. Our system is not HIPAA-compliant for clinical data processing.
Complaint data confidential. Complaint handling form content generated is not stored or accessible by us after generation.
Not a 21 CFR Part 11 system. SOP Command does not provide electronic signature functionality meeting FDA 21 CFR Part 11 requirements. Physical signatures are required for regulatory compliance.
SECTION 9
🤝THIRD-PARTY SERVICES
SOP Command™ uses the following third-party services. This is a complete and transparent list:
Cloudflare Inc.
Hosting (Pages), serverless proxy (Workers), CDN, DDoS protection, SSL/TLS. US-based company with global edge infrastructure.
Role: Infrastructure provider. Does not access document content.
Role: Infrastructure provider. Does not access document content.
Anthropic PBC
AI language model API (Claude). San Francisco, CA, USA. API usage policy prohibits using API customer data for model training without consent.
Role: Document generation. Does not store your operational data.
Role: Document generation. Does not store your operational data.
Google Fonts
Typography (Bebas Neue, Barlow Condensed, Barlow). Loaded from Google's CDN. Standard font delivery service.
Role: Visual display only. No access to your data.
Role: Visual display only. No access to your data.
jsDelivr / CDN Libraries
Open-source JS libraries (docx.js for Word generation, pdf-lib for PDF generation, Mammoth.js for DOCX reading). Standard CDN delivery.
Role: Client-side processing only. No data transmitted to CDN.
Role: Client-side processing only. No data transmitted to CDN.
We do not use: Google Analytics, Facebook Pixel, advertising networks, marketing tracking, session recording, or any behavioral analytics tools. We do not share data with data brokers, marketing companies, or industry databases.
SECTION 10
🚨INCIDENT RESPONSE
In the event of a security incident affecting SOP Command™ infrastructure:
Notification within 72 hours. We will notify affected users within 72 hours of discovering a security incident that may have affected their data, consistent with PIPEDA breach reporting requirements.
Zero-retention limits breach impact. Because we retain no operational data, the impact of any infrastructure breach is inherently limited. There is no database of facility formulations, batch records, or SOP content to expose.
Cloudflare incident response. Cloudflare maintains its own incident response procedures and will notify us of any infrastructure-level incidents. Their status page is available at cloudflarestatus.com.
To report a suspected security vulnerability in SOP Command™, contact us immediately at info@victoryhourmedia.com with subject line "SECURITY — VULNERABILITY REPORT." We investigate all reports within 48 hours.
SECTION 11
👤YOUR RESPONSIBILITIES
Security is a shared responsibility. As a user of SOP Command™, you are responsible for:
Do not enter patient-identifiable information (PHI/PII) into SOP Command. This includes patient names, health card numbers, clinical trial identifiers, or any data that identifies individuals.
Do not enter trade secrets requiring export control compliance (ITAR, EAR) into the system without verifying that cloud-based processing is permitted under your specific regulatory framework.
Securing downloaded documents. Once you download an SOP or form, it is on your device and network. Apply your facility's document control procedures — access controls, naming conventions, version tracking.
QA review before implementation. Never implement an AI-generated SOP or form without QA Manager review and sign-off. The review process is your regulatory responsibility, not ours.
SECURITY & PRIVACY QUESTIONS
Have questions about our data handling, need a security review for enterprise procurement, or want to discuss a custom MSA? Our team responds within 1 business day.
info@victoryhourmedia.com