1. Information We Collect

We collect information you provide directly, data generated by your use of our service, and information from third-party integrations.

1.1 Account & Profile Data

When you create an account or use our platform, we collect:

  • Full name, email address, and password (hashed)
  • Company name, business address, and phone number
  • Payment details (processed by Razorpay — we never store raw card numbers)
  • Profile photo (optional)

1.2 Project & Business Data

Data you input to manage your contracting business, including:

  • Project details, timelines, budgets, and documents
  • Subcontractor names, contact info, W-9s, and lien release records
  • Daily logs, photos, change orders, invoices, and estimates
  • Client names and contact information

1.3 Usage & Technical Data

Automatically collected when you use our services:

  • IP address, device type, browser, and operating system
  • Pages visited, clicks, and session duration
  • Error logs and crash reports
  • GPS coordinates (only when you explicitly use time-tracking features)

2. How We Use Your Data

We use the information we collect to:

  • Provide & improve our service — run the platform, fix bugs, develop new features
  • Process payments — handle subscriptions via Razorpay
  • Send transactional emails — account confirmations, password resets, daily reports to your clients
  • Generate AI-assisted content — compile daily logs into readable reports (your data is not used to train external AI models)
  • Customer support — respond to inquiries and troubleshoot issues
  • Legal compliance — comply with applicable laws and respond to lawful requests
  • Security — detect fraud, abuse, and unauthorized access

We do not sell your personal data to third parties. We do not use your project data for advertising.

3. Data Sharing

We share data only in these limited circumstances:

  • Service providers — vetted vendors who help operate our platform (see list below), bound by data processing agreements
  • Your clients — when you send daily reports or share a client portal link, that information is shared with the intended recipient
  • Legal requirements — when required by law, court order, or to protect rights and safety
  • Business transfer — in connection with a merger or acquisition (you will be notified)

Key Service Providers

CategoryPurposeData Involved
Payment ProcessorSecure payment and subscription handlingName, email, payment details
Email InfrastructureDelivery of transactional notifications and reportsEmail address, notification content
Cloud StorageSecure storage of project documents and photosUploaded assets, metadata
AI ProcessingAutomated generation of project insights and summariesAnonymized log data
Hosting & NetworkPlatform infrastructure and security monitoringIP address, session logs

4. Cookies & Tracking

We use minimal, essential cookies to operate the service:

  • Session cookies — keep you logged in during a browsing session
  • Preference cookies — remember your UI settings (e.g. theme, column order)

We do not use third-party advertising cookies or cross-site tracking pixels. You can disable cookies in your browser settings, though some features may not function correctly.

5. Data Retention

  • Active accounts — data retained for as long as your account is active
  • Cancelled accounts — data retained for 90 days after cancellation, then permanently deleted
  • Backup copies — may persist for up to 30 additional days in encrypted backup archives
  • Legal holds — data subject to a legal hold will be retained until the hold is released

You may request early deletion of your data at any time by contacting us.

6. Security

We implement industry-standard safeguards:

  • All data encrypted in transit via TLS 1.2+
  • Passwords hashed with bcrypt (never stored in plain text)
  • Database backups encrypted and stored in geographically redundant storage
  • Access to production systems restricted to authorized personnel via SSH key authentication
  • Regular security audits and dependency updates

No system is 100% secure. If you discover a security vulnerability, please email security@mycrewtracker.com responsibly.

7. Your Rights

Depending on your location, you may have the following rights:

  • Access — request a copy of the personal data we hold about you
  • Correction — request correction of inaccurate data
  • Deletion — request deletion of your personal data
  • Portability — receive your data in a structured, machine-readable format
  • Opt-out — opt out of non-essential communications
  • CCPA — California residents have additional rights under the CCPA, including the right to know and the right to non-discrimination

To exercise any right, email privacy@mycrewtracker.com. We will respond within 30 days.

8. Children's Privacy

MyCrewTracker is a business tool intended for adults 18 and older. We do not knowingly collect personal information from children under 13. If we learn we have collected such data, we will delete it immediately.

9. Policy Changes

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a prominent notice on our website at least 14 days before the change takes effect. Your continued use after the effective date constitutes acceptance of the updated policy.

10. Contact Us

Questions about this Privacy Policy or your personal data?

MyCrewTracker, Inc.
Privacy Team
Email: privacy@mycrewtracker.com
Website: mycrewtracker.com/contact