Privacy Policy

1. What Data We Collect

Account information: Your email address and password (or authentication provider) when you create an account.

Receipt images and data: Photos of receipts you upload, and the data extracted from them (store names, items, prices, dates, payment methods).

Project and expense data: Project names, budgets, labor expenses, and other cost data you enter into the Service.

Invoice data: Client names, email addresses, and invoice details you create within the Service.

Usage data: We track which features you use and how often to improve the Service and enforce plan limits. This includes API call counts and approximate costs.

2. What We Do NOT Collect

We want to be explicitly clear about what we do NOT do:

• We do NOT access your bank accounts — we have no connection to your bank, credit card company, or any financial institution
• We do NOT store credit card numbers — all payment processing is handled by Stripe, a PCI-compliant payment processor. We never see your full card number
• We do NOT collect your Social Security number, tax ID, or government identification
• We do NOT access your phone contacts, camera roll, or other device data beyond what you explicitly share (e.g., taking a receipt photo). Location data is only accessed when you explicitly enable GPS features in Settings
• We do NOT track you across other websites or apps
• We do NOT collect your clients’ personal information beyond what you voluntarily enter into invoices (client name, email, address)

3. How We Use Your Data

Your data is used exclusively to provide and improve the Service:

• Receipt processing: Your receipt images are sent to our AI provider (Anthropic Claude) for data extraction. The AI processes the image and returns structured data. Your receipt data is not used to train AI models.
• Cost tracking: Your receipts, expenses, and project data are used to calculate budgets, margins, and reports — visible only to you
• Service improvement: We use aggregate, anonymized usage statistics to improve the Service. We never use individual financial data for this purpose

4. We Never Sell Your Data

We do not sell, rent, trade, or share your personal data or financial information with any third party for marketing, advertising, or any other commercial purpose. Period.

5. Data Security

We take the security of your data seriously:

• Encryption at rest: All data stored in our database is encrypted
• Encryption in transit: All data transmitted between your device and our servers uses TLS/HTTPS encryption
• Row-Level Security (RLS): Your data is isolated at the database level — our system enforces that each user can only access their own data. No other user can see your receipts, projects, or financial information
• Authentication: All API endpoints require authentication. Unauthorized requests are rejected
• Rate limiting: API endpoints are rate-limited to prevent abuse

6. Third-Party Services

We use the following third-party services to operate the Service. Each is bound by its own privacy policy and acts as a sub-processor of your data only for the specific purposes listed below.

• Supabase: Database, authentication, and encrypted file storage. Your account, receipts, and uploaded images are stored here.
• Anthropic (Claude AI): Receipt image processing and the in-app AI chat assistant. Receipt images and chat messages are sent to Claude for processing. Per Anthropic’s API policy, data sent via the API is not used to train models.
• Google (Gemini API): Used as a fallback or supplemental model for receipt image processing. Receipt images may be sent to Gemini for data extraction. Per Google’s API policy, data sent via the paid API is not used to train models.
• Vercel: Application hosting and edge delivery. Standard server logs (IP address, request path, user agent) are retained for security and abuse-prevention purposes.
• Stripe: Payment processing for paid subscriptions. Stripe collects your billing address, payment card details, and tax information. We never see your full card number. Stripe is PCI-DSS Level 1 certified.
• Sentry: Error monitoring and crash reporting. Collects stack traces, device/browser metadata, and (when an authenticated request errors) your user ID, so we can fix bugs. We do not send receipt content, project data, or financial figures to Sentry.
• PostHog: Product analytics. Records usage events (page views, feature usage, subscription tier, and aggregate invoice totals) tied to your user ID so we can see which features to improve. Receipt image content and individual receipt line items are not sent to PostHog. You can disable analytics in Settings.
• Resend: Transactional email delivery (welcome emails, password resets, billing receipts, invoice notifications). Resend processes the recipient email address and message content.
• Apple (Sign in with Apple): If you sign in using Apple, Apple relays a verified email (or a private relay address) and a unique identifier to us. Apple’s own privacy policy governs that relay.
• Google (Sign in with Google): If you sign in using Google, Google provides your verified email and basic profile to us. Google’s own privacy policy governs that exchange.

A current list of sub-processors is maintained on this page. We will update it before adding new sub-processors that materially affect how your data is processed.

7. Location Data

When you enable GPS features, we collect your device’s location to detect store visits and jobsite proximity. Location data is stored locally on your device and on our servers only when you explicitly enable tracking. You can disable this at any time in Settings > Privacy & Data.

Specifically, location data is used for:

• Store visit detection: We identify when you visit a hardware store, supply shop, or other relevant retailer so we can remind you to log receipts
• Jobsite proximity: If you have projects with GPS coordinates, we detect when you arrive at or leave a jobsite to automate clock-in/out
• Mileage tracking: Location data may be used to calculate distances for mileage deduction records

Location data is collected only while the app is active or running in the background with your explicit permission. We do not sell location data or share it with advertisers. You can clear your stored location history from Settings at any time.

8. Employee Location Tracking

If you use the team management feature, GPS tracking of team members requires their informed consent. Employers are responsible for ensuring all team members are aware of and consent to location monitoring during work hours.

When employee location tracking is enabled:

• Team members’ GPS coordinates are collected only to detect arrival at and departure from designated jobsites
• Location data is used solely for automatic clock-in/out functionality
• Employers can see when team members clocked in/out and at which jobsite, but do not have access to continuous location tracking or location history between jobsites
• Team members receive visible on-screen indicators when GPS tracking is active

This feature complies with applicable state and federal employment laws. If you are subject to specific state biometric or location privacy laws (such as the Illinois BIPA, Texas CUBI, or California CCPA), you must ensure your own compliance with notice and consent requirements for your employees.

9. Data Retention & Deletion

We retain your data for as long as your account is active. If you cancel your subscription, your data remains accessible (read-only on the free plan). If you request account deletion, all data is permanently removed within 30 days.

Regarding specific data types:

• Receipt images: Stored in encrypted cloud storage (Supabase Storage). Deleted when you delete the receipt or your account
• Location history: Stored locally on your device and can be cleared from Settings at any time. Server-side location records (clock-in/out events) are deleted with your account
• AI processing data: Receipt images are sent to our AI provider (Anthropic Claude) for real-time data extraction. Per Anthropic’s API policy, this data is not used to train AI models and is retained by the provider only briefly, in line with its standard data-retention policy

You can request deletion of all your data at any time by visiting our account deletion page or by emailing chris@jobcostpro.online.

10. Your Rights

You have the right to:

• Access all data we store about you — all your data is visible to you within the app at all times
• Export your data at any time using the built-in export features (CSV, spreadsheets, ZIP)
• Request deletion of your data — you can archive and permanently delete individual receipts, expenses, and projects. To delete your entire account and all associated data, use the Delete Account page at jobcostpro.online/delete-account
• Opt out of non-essential data collection — use the Privacy & Data settings to disable location tracking, analytics, and email communications
• Disable GPS tracking at any time — go to Settings > Privacy & Data to turn off all location features immediately
• Withdraw consent for any data processing — you can change your privacy preferences at any time in Settings, and the changes take effect immediately
• Correct your data — you can edit project names, expense details, and other information

11. Cookies

We use essential cookies only — for authentication and session management. We do not use tracking cookies, advertising cookies, or analytics cookies from third parties.

12. Children’s Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect data from minors.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email. The “Last updated” date at the top reflects the most recent revision.

SMS / Text Messaging

When you provide a phone number for yourself, a worker (when you invite a teammate to your jobsite), or a client (when you set up a project), Job Cost Pro may send transactional SMS messages to that number through our messaging carrier (Twilio).

We send SMS for the following purposes only — never for marketing or promotion:

• Worker invites — a one-time message containing a sign-in link when you invite a worker to a jobsite.
• Payment reminders to clients — a text alert when an invoice you have sent becomes overdue, sent only if you have opted into client SMS in Settings → Billing.
• Account and billing alerts to you — AI-spend threshold alerts, login codes, and other security notices to your account phone number.

Frequency: transactional messages only — typically fewer than five (5) messages per month per recipient. There are no scheduled or recurring promotional sends.

Opt-in / consent: when you enter a phone number for a worker or a client, you confirm that you have that person’s consent to receive these messages. We do not auto-collect phone numbers from contacts or third-party sources.

Opt-out: every message includes "Reply STOP to opt out." Replying STOP unsubscribes that number permanently from all Job Cost Pro SMS. Replying HELP returns our support contact (chris@jobcostpro.online).

Carrier rates: Msg & data rates may apply, charged by your carrier — we do not charge for SMS itself.

Privacy of phone numbers: mobile information will not be shared with third parties or affiliates for marketing or promotional purposes. Mobile phone numbers and SMS opt-in data will never be shared, sold, rented, or transferred to third parties or lead generators for any purpose. All other categories exclude text-messaging originator opt-in data and consent — this information will not be shared with any third parties. Phone numbers are used only to deliver the message types described above and are stored encrypted at rest in our database.

How consent is captured (Call to Action)

Below is the exact wording shown to an account holder inside Job Cost Pro at every point we collect a phone number. The account holder must check the consent box before the form will save the number — it is impossible to enter a phone number without the explicit attestation. Reviewers and customers can verify this flow in real time by signing up for a free account at jobcostpro.online and visiting Team → Add member, or Projects → New project.

14. Contact & Data Controller

Salvation Home Remodeling LLC, doing business as Job Cost Pro, is the data controller for any personal information you provide. For privacy questions, data access, correction, or deletion requests, contact us at:

To delete your account and all associated data without contacting us first, visit our account deletion page. We respond to verified requests within 30 days.