Logo

Privacy Policy

Effective Date: [Insert Date]

1. Information We Collect:

  • Email Addresses: We collect email addresses to send you toolbox talks, service notifications, and for account management.
  • Account Information: We store usernames, encrypted passwords, and account creation dates.
  • Stripe Customer IDs: For subscribers, we store Stripe customer identifiers to manage subscriptions.
  • Other Personal Information: Payment information is handled by Stripe, and usage data by Google Analytics. We do not store additional personal information beyond what is necessary for service delivery.

2. How We Use Your Information:

  • Service Delivery: We use your email to deliver weekly toolbox talks, access to documents, and forms based on your subscription level.
  • Account Management: To manage your account, process payments, and provide customer support.
  • No Marketing: We do not use your data for marketing or share it for any purposes unrelated to our service provision.

3. Data Storage:

  • Document Storage: Your documents are stored in AWS S3 in the us-west-2 region.
  • Email Services: Emails are sent through AWS SES (Simple Email Service) in the us-west-2 region.
  • Service Data: Other necessary service data is stored in our SQLite database.
  • Third-Party Storage: Payment data with Stripe, analytics with Google Analytics. We do not use additional subcontractors for data storage.

4. Security:

We use encryption and secure servers to protect your data. In case of a data breach, we commit to notifying affected users via email.

5. Your Rights:

  • Access and Control: While your subscription is active, you can view, modify, or request the deletion of your data.
  • Post-Cancellation: You have a reasonable period after cancellation to retrieve your data, after which you can request data deletion.

6. Cookies and Tracking:

  • Session Management: We use Django for session management to maintain your login state. Sessions are secured using HTTPS and secure cookie flags in production.
  • Analytics: Google Analytics is used to understand service usage patterns.
  • Security Measures: Our cookies are protected by security headers including XSS filters, HSTS, and content type restrictions.

7. Data Transfer:

All data processing occurs within the United States; we do not transfer data internationally.

8. Children's Privacy:

Our service is not directed to or intended for use by minors. It is specifically for professionals in the construction industry.

9. Changes to This Privacy Policy:

We may update this policy from time to time. Changes will be reflected here, and for significant updates, we might notify you via email.

10. Contact Us:

For questions or to exercise your data rights, please contact us at support@structuredsafety.com.

Acknowledgment

By using our service, you acknowledge you have read and understood this Privacy Policy.