FieldStackFieldStack

Privacy Policy

Effective Date: February 24, 2025 · Last Updated: February 24, 2025

FieldStack, Inc. ("FieldStack," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use the FieldStack platform and related services (the "Service"). By using the Service, you consent to the practices described in this policy.

1. Information We Collect

1.1 Information You Provide

  • Account Information: When you create an account, we collect your name, email address, and authentication credentials (managed by our authentication provider, Clerk).
  • Organization Data: Business name, address, phone number, and business settings you configure during onboarding and throughout your use of the Service.
  • Customer and Job Data: Information about your customers, properties, jobs, estimates, invoices, and other business records you create within the Service.
  • Payment Information: When you subscribe to a paid plan, payment details are collected and processed directly by Stripe, Inc. We do not store your full credit card number on our servers.
  • Communications: When you contact support or provide feedback, we collect the content of those communications.

1.2 Information Collected Automatically

  • Usage Data: We collect information about how you interact with the Service, including pages visited, features used, actions taken, and the date and time of your activities.
  • Device Information: Browser type, operating system, device type, screen resolution, and language preferences.
  • Log Data: IP addresses, access times, referring URLs, and error logs.
  • Cookies and Similar Technologies: We use cookies and similar tracking technologies to maintain sessions, remember preferences, and analyze usage patterns. See Section 6 for more details.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service, including processing your business data and enabling core functionality.
  • Process transactions, send related information including purchase confirmations, invoices, and billing notices.
  • Send administrative communications such as service announcements, security alerts, and support messages.
  • Respond to your requests, comments, and questions and provide customer support.
  • Monitor and analyze usage trends to improve the Service and develop new features.
  • Detect, investigate, and prevent fraudulent transactions, unauthorized access, and other illegal activities.
  • Comply with legal obligations and enforce our Terms of Service.

3. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

  • Service Providers: We share information with third-party vendors who perform services on our behalf, such as hosting, payment processing, email delivery, and analytics. These providers are contractually obligated to use your data only as necessary to provide their services to us.
  • Legal Requirements: We may disclose your information if required by law, court order, or governmental request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any such change.
  • With Your Consent: We may share your information with third parties when you explicitly consent to such sharing.

4. Third-Party Services

The Service integrates with the following third-party services that have their own privacy policies:

  • Clerk — Authentication and user management. Clerk processes your login credentials and session data. Clerk Privacy Policy
  • Stripe — Payment processing and billing. Stripe processes your payment card information and transaction data. Stripe Privacy Policy
  • Amazon Web Services (AWS) — Cloud hosting and infrastructure. Your data is stored on AWS servers located in the United States. AWS Privacy Policy
  • Sentry — Error tracking and application monitoring. Sentry may receive technical data about errors that occur during your use of the Service. Sentry Privacy Policy

5. Data Storage and Security

Your data is stored on secure servers hosted by Amazon Web Services in the United States. We implement commercially reasonable technical and organizational measures to protect your information, including:

  • Encryption of data in transit using TLS/SSL.
  • Encryption of data at rest.
  • Regular security assessments and vulnerability monitoring.
  • Access controls limiting employee access to user data.
  • Automated backups and disaster recovery procedures.

While we strive to use commercially acceptable means to protect your information, no method of electronic storage or transmission over the Internet is 100% secure. We cannot guarantee absolute security.

6. Cookies and Tracking Technologies

We use cookies and similar technologies for the following purposes:

  • Essential Cookies: Required for the Service to function, including session management and authentication.
  • Analytics Cookies: Help us understand how you use the Service so we can improve it.
  • Preference Cookies: Remember your settings and preferences for a better experience.

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of the Service.

7. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request correction of inaccurate or incomplete personal information.
  • Deletion: Request deletion of your personal information, subject to certain legal exceptions.
  • Data Portability: Request an export of your data in a structured, commonly used, machine-readable format.
  • Opt-Out: Opt out of receiving marketing communications from us by following the unsubscribe instructions in those messages.
  • Restriction: Request that we restrict processing of your personal information in certain circumstances.

To exercise any of these rights, please contact us at privacy@fieldstack.io. We will respond to your request within 30 days.

8. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. When you delete your account, we will delete or anonymize your personal information within 90 days, except where we are required to retain it for legal, tax, or regulatory purposes.

Business data you create within the Service (customers, jobs, invoices, etc.) will be deleted along with your account unless you export it beforehand.

9. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under 18, we will take steps to delete that information promptly. If you believe we have collected information from a child, please contact us at privacy@fieldstack.io.

10. International Data Transfers

The Service is operated from the United States. If you are accessing the Service from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States. By using the Service, you consent to the transfer of your information to the United States, which may have different data protection laws than your country of residence.

11. California Privacy Rights (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with additional rights regarding your personal information:

  • The right to know what personal information we collect, use, disclose, and sell.
  • The right to request deletion of your personal information.
  • The right to opt out of the sale of personal information. Note: We do not sell personal information.
  • The right to non-discrimination for exercising your privacy rights.

To exercise your CCPA rights, contact us at privacy@fieldstack.io.

12. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

  • Legal Basis: We process your personal information based on: (a) your consent; (b) the necessity to perform our contract with you; (c) our legitimate business interests; or (d) compliance with legal obligations.
  • Right to Object: You have the right to object to processing based on legitimate interests.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with your local data protection authority.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through the Service at least 30 days before the changes take effect. We encourage you to review this Privacy Policy periodically for the latest information on our privacy practices.

14. Contact Information

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

FieldStack, Inc.
Email: privacy@fieldstack.io
Support: support@fieldstack.io

By using FieldStack, you agree to this Privacy Policy and our Terms of Service.