Privacy Policy

Last updated: March 6, 2026

Fireside (“we,” “our,” or “us”) operates the Fireside mobile application (the “App”), a field reporting and construction management tool for the South Peak project. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the App. Please read it carefully.

1. Information We Collect

1.1 Account and Profile Information

When your account is created by your project administrator, we store:

  • Name (first and last)
  • Email address
  • Phone number
  • Role (e.g., Owner, Project Manager, Subcontractor, Designer, Developer)
  • Trade (if you are a subcontractor; e.g., Plumbing, Electrical, Framing)

This information is used to identify you within the project, display you in the Contacts list, allow ticket assignments, and control access to features (e.g., approval workflows for owners).

1.2 Content You Create

When you use the App, we store:

  • Tickets you create or are assigned: building element, priority, notes, location/floor, unit, and any photos you attach
  • Comments on tickets
  • Ticket photos are uploaded to our secure cloud storage and linked to tickets

1.3 Device and Technical Information

  • Push notification token (Expo/Apple Push Notification service): so we can send you notifications (e.g., new ticket, ticket assigned, approval requests). We store this token in your profile.
  • Device and app usage: We may receive generic technical data (e.g., app version, device type) necessary to operate and improve the App. We do not track your activity across other apps or websites.

1.4 Information We Do Not Collect

We do not collect or store:

  • Your device contacts list (we do not access your address book)
  • Your precise or continuous location (we do not track location)
  • Browsing history or behavior outside the App

2. How We Use Your Information

We use the information we collect to:

  • Provide the App — Manage units, tickets, assignments, comments, and notifications
  • Authenticate you — Sign-in and session management
  • Send push notifications — Alerts about tickets and approvals (with your permission)
  • Display you to the project team — Name, role, trade, and phone in Contacts so others can reach you
  • Enforce access control — Roles and permissions (e.g., only owners can approve users)
  • Improve and secure the App — Debugging, security, and compliance with our terms

We do not sell your personal information. We do not use your data for advertising or third-party marketing.

3. Legal Bases for Processing (EEA/UK)

If you are in the European Economic Area or the United Kingdom:

  • Contract — Processing is necessary to provide the App and perform our contract with you or your organization.
  • Legitimate interests — We have a legitimate interest in operating a secure, functional construction management tool (e.g., storing tickets, sending notifications, showing contacts).
  • Consent — Where required (e.g., push notifications, optional features), we rely on your consent. You may withdraw consent (e.g., disable notifications in device settings) without affecting other use of the App.

4. Sharing and Disclosure

We share your information only as follows:

  • Within your project — Other users on the same project can see your name, role, trade, and phone (as in the Contacts tab) and tickets/comments you create or are assigned, as needed for the project.
  • Service providers — We use:
    • Supabase (database, authentication, file storage) — data is stored in the United States (or region chosen by the project). Supabase’s privacy practices apply to their processing.
    • Expo / Apple Push Notification service — to deliver push notifications.
    • Twilio (if SMS notifications are enabled) — to send SMS; Twilio’s privacy policy applies.

We do not share your personal information with advertisers or data brokers. We may disclose information if required by law (e.g., subpoena, court order) or to protect our or others’ rights, safety, or property.

5. Data Retention

  • Account and profile data — Retained while your account is active and as needed for the project. When an account is removed, we may retain data as required for legal, security, or operational reasons.
  • Tickets, comments, and photos — Retained for the duration of the project and as needed for records.
  • Push token — Removed or updated when you sign out or reinstall the App.

Specific retention periods may be set by your project administrator or organization.

6. Security

We use industry-standard measures to protect your data, including:

  • Encrypted connections (HTTPS/TLS) for data in transit
  • Secure authentication and session management
  • Access controls and role-based permissions so users see only what they need for the project
  • Secure cloud infrastructure (Supabase) for database and file storage

You are responsible for keeping your sign-in credentials confidential.

7. Your Rights and Choices

Depending on where you live, you may have the right to:

  • Access — Request a copy of the personal data we hold about you
  • Correction — Request correction of inaccurate or incomplete data (you can update some profile details in the App)
  • Deletion — Request deletion of your personal data, subject to legal or contractual exceptions
  • Restriction / Objection — Request restriction of processing or object to certain processing
  • Portability — Request a copy of your data in a structured, machine-readable format
  • Withdraw consent — Where we rely on consent (e.g., push notifications), withdraw it via app or device settings
  • Complaint — Lodge a complaint with a supervisory authority (e.g., in the EEA/UK)

To exercise these rights, contact us using the details in Section 10. We will respond within the time required by applicable law (e.g., one month under GDPR).

California residents: We do not sell personal information. We may disclose certain categories of personal information to service providers for business purposes; see Sections 1–4 for what we collect and share. You may have the right to know, delete, and correct personal information and to non-discrimination.

8. Children’s Privacy

The App is not directed at children under 13 (or the applicable age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.

9. International Transfers

Your data may be processed and stored in the United States or other countries where our service providers operate. If you are in the EEA, UK, or another region with strict transfer rules, we rely on appropriate safeguards (e.g., Standard Contractual Clauses, adequacy decisions) where required by law.

10. Contact Us

For privacy-related questions, to exercise your rights, or to report a concern:

Email: duke@watersidegroup.com

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the revised policy in the App or on our website and update the “Last updated” date. For material changes, we may notify you via the App or by email. Continued use of the App after the effective date constitutes acceptance of the updated policy.

This privacy policy is intended for use with the Fireside app on the Apple App Store and should be reviewed by a qualified legal professional for your specific jurisdiction and practices.