Privacy Policy
Effective Date: April 12, 2026
SiteNote AI ("we," "our," or "us") operates the SiteNote AI mobile application and web platform (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Service.
1. Information We Collect
1.1 Account Information
When you create an account, we collect your email address, name, and authentication credentials. If you sign in via a third-party provider (e.g., Google, Apple), we receive the profile information you authorize.
1.2 Inspection Data
You may upload photos, annotations, floor plans, issue descriptions, and project details. This content is stored in your account and is not shared with other users unless you explicitly generate and share a report.
1.3 Photos and Camera Access
The mobile app requests camera and photo library access to capture and attach inspection photos. Photos are stored locally on your device and synced to our cloud storage when connectivity is available. We do not access your photo library beyond the images you explicitly select or capture within the app.
1.4 AI Processing
When you use the AI Issue Draft feature, photos and contextual metadata (area, project name, site type) are sent to our server, which may forward them to a third-party AI provider (OpenAI) for analysis. We send only the minimum data necessary to generate the draft. The AI provider processes this data under their own privacy policy and does not retain your images for model training.
1.5 Device and Usage Data
We collect anonymized analytics data including device type, operating system version, app version, and general usage patterns (e.g., feature usage frequency). We do not collect advertising identifiers, and we do not engage in cross-app tracking.
1.6 Payment Information
Subscription payments are processed by Apple (App Store), Google (Play Store), or Stripe (web). We do not store credit card numbers. We receive only transaction identifiers and subscription status from these providers.
2. How We Use Your Information
- To provide, maintain, and improve the Service
- To authenticate your identity and manage your account
- To process AI analysis of inspection photos at your request
- To generate PDF inspection reports
- To sync your data across devices
- To process subscription payments and entitlements
- To send transactional emails (e.g., password resets, billing receipts)
- To detect and prevent fraud, abuse, or security incidents
3. Data Storage and Security
Your data is stored on Supabase-hosted infrastructure with PostgreSQL databases and encrypted cloud storage. All data in transit is encrypted via TLS 1.2+. Data at rest is encrypted using AES-256. Database access is controlled via Row Level Security (RLS) policies ensuring users can only access their own data.
4. Offline Data
The mobile app stores inspection data locally on your device for offline use. This data is encrypted at the application level and synced to the cloud when a network connection is available. You can delete local data at any time by clearing app data or uninstalling the app.
5. Data Sharing
We do not sell your personal information. We share data only in these circumstances:
- AI Processing: Photo and context data is sent to OpenAI for AI-powered features. See Section 1.4.
- Payment Providers: Transaction data is shared with Apple, Google, or Stripe to process payments.
- Legal Requirements: We may disclose data if required by law, court order, or governmental regulation.
- Reports You Share: When you generate and share a PDF report, the contents of that report are accessible to anyone with the link.
6. Data Retention
We retain your account and inspection data for as long as your account is active. You may request deletion of your account and all associated data at any time by contacting us at privacy@sitenoteai.com. We will process deletion requests within 30 days.
7. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your data
- Export your data in a portable format
- Withdraw consent for optional processing
- Lodge a complaint with a data protection authority
To exercise any of these rights, contact us at privacy@sitenoteai.com.
8. Children's Privacy
The Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us data, contact us and we will delete it promptly.
9. Third-Party Services
| Service | Purpose | Data Shared |
|---|---|---|
| Supabase | Authentication, database, storage | Account info, inspection data, photos |
| OpenAI | AI-powered issue drafts | Photos, area/project context |
| Apple / Google / Stripe | Payment processing | Transaction identifiers |
10. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Continued use of the Service after changes constitutes acceptance of the updated policy.
11. Contact Us
If you have questions about this Privacy Policy, contact us at:
privacy@sitenoteai.com