Privacy Policy — Worksite App

We may update this Privacy Policy from time to time by posting the updated version. If we make material changes, we will take reasonable steps to notify you — for example, in the App — and obtain consent where required by law.

Depending on your role (worker, supervisor, admin, or client), we may collect:

• Account and profile information — name, email address, phone number, role, and related profile fields.
• Content you upload or submit — photos, documents, notes, and metadata such as upload time and filenames.
• Communications — information you provide when contacting support.

• Precise location (GPS) — if granted, used for attendance and check-in features.
• Approximate location — may be derived from network or IP settings.
• Camera and photos — if granted, used to capture and upload images and documents.
• Microphone — if granted, used for voice and audio features.

You can disable permissions in your device settings, though some features may not work without them.

• Device and app information — model, OS version, app version, and language.
• Log and security data — diagnostic data and timestamps needed to keep the Services secure.

• Provide and operate the Services, including authentication and role-based access.
• Enable worksite and attendance features, including presence validation.
• Store and display uploaded content — documents, photos, and notes.
• Maintain security and prevent fraud or abuse.
• Improve reliability and troubleshoot performance issues.
• Comply with legal obligations and enforce our terms.

We share information only as necessary for the purposes described above.

We use Firebase (Google) for authentication and cloud data storage. These providers process information on our behalf under contractual obligations.

Uploaded content and attendance data may be accessible to authorized users such as administrators or supervisors, based on configured roles and permissions.

We may disclose information to comply with law, respond to lawful requests, protect rights and safety, or enforce our policies.

In a merger, acquisition, or asset sale, information may transfer as part of that transaction, subject to applicable law.

We do not share information with marketing partners for targeted advertising.

We retain personal information only as long as needed to provide the Services, meet operational and legal requirements, and maintain security. Retention periods vary by data type and account status.

Your information may be processed and stored in countries other than your own — for example, where our service providers operate. Where required, we apply appropriate safeguards for international transfers.

We use reasonable administrative, technical, and organizational measures to protect information. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Depending on your location and applicable law, including the GDPR, you may have the right to:

• Access your personal information
• Correct inaccurate information
• Request deletion (in some cases)
• Restrict or object to certain processing
• Request data portability (in some cases)

To exercise these rights, contact us using the details below. We may need to verify your identity and may deny requests where legally permitted.

You can also manage profile information in the App and device permissions in your device settings.

The Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13.

For questions or requests about this Privacy Policy: