Last updated: December 2, 2024
Privacy Policy
1. Introduction
Geldac LLC ("we," "us," or "our") operates ROW Engine, a cloud-based right-of-way project management platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
By using ROW Engine, you consent to the data practices described in this policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.
2. Information We Collect
2.1 Account Information
When you create an account, we collect:
- Email address
- Name
- Organization/company name
- Password (stored in encrypted form)
- Role and job title
2.2 Project Data
When you use the Service, you may upload or create:
- Project information and descriptions
- Parcel data and property information
- Property owner contact information (names, addresses, phone numbers)
- Documents and files
- Task assignments and workflow data
- Approval records and audit logs
- Communication logs and diary entries
2.3 Usage Data
We automatically collect certain information when you use the Service:
- IP address
- Browser type and version
- Device information
- Pages visited and features used
- Time and date of access
- Referring URLs
2.4 Payment Information
When you subscribe to a paid plan, payment processing is handled by Stripe. We do not directly collect or store your credit card numbers. Stripe may share with us your billing address, payment method type, and the last four digits of your card for verification purposes.
3. How We Use Information
We use the information we collect to:
- Provide the Service: Operate, maintain, and improve ROW Engine
- Process Transactions: Handle subscriptions and billing
- Communicate: Send service-related emails (account verification, password resets, important updates)
- Support: Respond to your inquiries and provide customer support
- Analytics: Understand how users interact with the Service to improve functionality and user experience
- Security: Detect, prevent, and address technical issues and security threats
- Legal Compliance: Comply with applicable laws and regulations
We do NOT sell your personal information.
We use analytics data solely for internal purposes to improve the platform. Your data is never sold to third parties for marketing or advertising purposes.
4. Data Sharing & Third Parties
4.1 Service Providers
We use the following third-party services to operate ROW Engine:
| Provider | Purpose | Data Shared |
|---|---|---|
| Firebase (Google) | Authentication, database, file storage, hosting | All account and project data |
| Stripe | Payment processing | Billing information, subscription status |
| Resend | Transactional email delivery | Email addresses, email content |
| Sentry | Error monitoring and debugging | Error logs, browser info, anonymized user context |
| Google Analytics | Usage analytics | Anonymized usage patterns, page views |
4.2 Legal Requirements
We may disclose your information if required by law, such as in response to a subpoena, court order, or government request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
4.3 Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any such change and your choices regarding your information.
5. Data Security
We implement multiple layers of security to protect your data:
- Encryption in Transit: All data transmitted to and from our servers is encrypted using TLS/HTTPS
- Encryption at Rest: Data stored in our databases is encrypted using industry-standard encryption
- Multi-Tenant Isolation: Each organization's data is logically separated and cannot be accessed by other organizations
- Role-Based Access Control: Users only have access to the data and features appropriate for their role
- PII Masking: Sensitive personal information can be masked based on user permissions
- Audit Logging: All sensitive operations are logged for security monitoring
- Secure Authentication: Passwords are hashed and salted; we support secure session management
While we strive to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.
6. Data Retention
6.1 Active Accounts
We retain your account information and project data for as long as your account remains active.
6.2 Account Closure
When you close your account or cancel your subscription, we provide a grace period during which you can export your data. After this period, your data will be permanently deleted from our active systems.
6.3 Backup Systems
Data may persist in our backup systems for a limited time after deletion from active systems as part of our disaster recovery procedures.
6.4 Legal Retention
We may retain certain data for longer periods as required by law, including for tax records, audit requirements, or legal dispute resolution.
7. Your Rights
You have the following rights regarding your personal information:
- Access: Request a copy of the personal information we hold about you
- Correction: Request correction of inaccurate personal information
- Deletion: Request deletion of your personal information (subject to legal requirements)
- Export: Export your data in a portable format
- Opt-Out: Opt out of marketing communications (if any)
To exercise these rights, please contact us using the information provided at the end of this policy.
8. Children's Privacy
ROW Engine is intended for users who are at least 18 years of age. We do not knowingly collect personal information from anyone under the age of 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.
9. California Privacy Rights (CCPA)
If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):
- Right to Know: Request information about the categories and specific pieces of personal information we have collected
- Right to Delete: Request deletion of your personal information
- Right to Opt-Out: Opt out of the sale of your personal information
- Right to Non-Discrimination: Not be discriminated against for exercising your privacy rights
We do not sell personal information. Therefore, we do not offer an opt-out of sales.
To exercise your CCPA rights, please contact us using the information at the end of this policy.
10. International Users
ROW Engine is operated from the United States. If you are accessing the Service from outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States.
By using the Service, you consent to the transfer of your information to the United States, which may have different data protection laws than your country of residence.
If you are located in the European Economic Area (EEA), we will take appropriate measures to ensure your personal data receives an adequate level of protection when transferred outside the EEA.
12. Changes to Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For significant changes, we may also notify you via email.
Your continued use of the Service after any changes constitutes acceptance of the updated Privacy Policy.
13. Contact Information
If you have any questions about this Privacy Policy or our data practices, please contact us:
Geldac LLC
Address:
Phone:
Email: