Privacy Policy

Last updated: March 20, 2026

1. Introduction

ChiefOps HQ ("ChiefOps," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website (chiefopshq.com), mobile applications, and related services (collectively, the "Service").

2. Information We Collect

Personal Information

  • Name, email address, phone number
  • Company name and business information
  • Billing and payment information (processed securely via Stripe)
  • Employee data you enter (names, roles, pay rates, certifications)

Automatically Collected Information

  • Device information (browser type, operating system)
  • IP address and general location data
  • Usage data (pages visited, features used, time spent)
  • GPS location data (only when GPS clock-in is actively used, with your permission)

3. How We Use Your Information

  • To provide, maintain, and improve the Service
  • To process transactions and send billing notifications
  • To send service-related communications (bid updates, clock-in confirmations)
  • To provide customer support
  • To detect and prevent fraud or abuse
  • To comply with legal obligations

4. Data Storage & Security

Your data is stored securely using Supabase (hosted on AWS) with encryption at rest and in transit. We use industry-standard security measures including TLS/SSL encryption, row-level security policies, and regular security audits. Payment information is processed by Stripe and never stored on our servers.

5. Data Sharing

We do not sell your personal information. We may share data with:

  • Service providers: Stripe (payments), Supabase (database), Vercel (hosting), Resend (email), Twilio (SMS)
  • Business partners: Only when you explicitly use the collaboration features to share jobs or documents with partner companies
  • Legal requirements: When required by law, court order, or government regulation

6. GPS & Location Data

ChiefOps collects GPS location data only during active clock-in/clock-out events and only with explicit user permission. Location data is used solely to verify work site attendance. You can revoke location permissions at any time through your device settings.

7. AI-Assisted Features

ChiefOps uses artificial intelligence (powered by Anthropic Claude) to assist with generating Standard Operating Procedures (SOPs), checklists, inspection forms, and toolbox talks. When you use the SOP generator:

  • Your input (title, trade, key points, scope) is sent to the AI service to generate the document
  • We do not use your data to train AI models
  • AI-generated content is provided as a starting point and should always be reviewed for accuracy before use
  • ChiefOps is not liable for decisions made based on AI-generated content that has not been reviewed

8. Cookies & Local Storage

We use essential cookies and local storage for authentication, session management, and user preferences. We do not use advertising or third-party tracking cookies. For full details, see our Cookie Policy.

9. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Opt out of marketing communications
  • Revoke GPS/location permissions

10. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. Upon account deletion, we will delete your personal data within 30 days, except where retention is required by law (e.g., financial records for tax purposes).

11. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: You can request a copy of the personal information we have collected about you in the past 12 months
  • Right to Delete: You can request that we delete your personal information, subject to certain legal exceptions
  • Right to Opt Out: We do not sell your personal information to third parties. If this ever changes, we will provide a clear opt-out mechanism
  • Right to Non-Discrimination: We will not deny you service, charge different prices, or provide a different quality of service for exercising your CCPA rights

To exercise any of these rights, contact us at support@chiefopshq.com. We will respond to verified requests within 45 days.

12. Children's Privacy

ChiefOps is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

14. Contact Us

If you have questions about this Privacy Policy or your data, contact us at:

  • Email: support@chiefopshq.com
  • Website: chiefopshq.com/support