Legal

Privacy Policy

Last updated: March 24, 2026

1. Introduction

CrewSync Automation ("CrewSync," "we," "us," or "our") operates the CrewSync platform at app.crewsyncautomation.io. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

By using CrewSync, you agree to the collection and use of information in accordance with this policy. If you have questions, contact us at support@crewsyncautomation.io.

2. Information We Collect

Account Information

When you create an account, we collect:

  • Name and email address
  • Company name and role
  • Password (hashed; never stored in plain text)
  • Billing information (processed by Stripe; we do not store card numbers)

CRM Credentials

To sync with your CRM (e.g., Copilot CRM, Jobber), we collect API keys or OAuth tokens you provide. These credentials are encrypted at rest using AES-256 and are never transmitted in plain text. We use them only to execute the automations you configure.

Usage Data

We automatically collect certain information when you use the platform:

  • Log data (IP address, browser type, pages visited, timestamps)
  • Workflow execution logs (trigger events, action outcomes, error messages)
  • Feature usage and interaction patterns to improve the product

3. How We Use Your Information

  • To provide, operate, and maintain the CrewSync platform
  • To authenticate your identity and secure your account
  • To execute the automations and workflows you configure
  • To send transactional emails (account confirmation, billing receipts, error alerts)
  • To respond to support requests
  • To improve platform performance and develop new features
  • To comply with legal obligations

4. We Do Not Sell Your Data

CrewSync does not sell, rent, or trade your personal information to third parties for their marketing purposes. Full stop. Your data belongs to you.

5. Third-Party Services

We use the following third-party providers to operate CrewSync:

Supabase

Authentication, database storage, and row-level security. Your account data and workflow configurations are stored in Supabase. See their privacy policy.

Stripe

Payment processing for subscriptions. We never see or store your full card number. See their privacy policy.

Vercel

Application hosting and edge network. Vercel may collect basic request logs. See their privacy policy.

6. Cookies

We use cookies and similar technologies for the following purposes:

  • Session cookies: Required for authentication. We store a secure, HTTP-only session cookie to keep you logged in. These expire when you close your browser or log out.
  • Preference cookies: Optional. Store your UI preferences (e.g., dark mode, sidebar state).

We do not use third-party advertising or tracking cookies. You can disable cookies in your browser settings, but this will prevent you from logging in.

7. Data Retention

We retain your account data for as long as your account is active. If you cancel your subscription, we retain your data for 30 days to allow account recovery. After 30 days, your data is permanently deleted from our systems, except where we are required by law to retain it.

Workflow execution logs are retained for 90 days by default.

8. Data Security

We implement industry-standard security measures including:

  • TLS 1.3 encryption for all data in transit
  • AES-256 encryption for sensitive credentials at rest
  • Row-level security enforced at the database level
  • Regular security reviews and dependency updates

No method of transmission over the internet is 100% secure. We cannot guarantee absolute security, but we work hard to protect your information.

9. Your Rights (CCPA / GDPR)

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate data.
  • Deletion: Request deletion of your personal data ("right to be forgotten").
  • Portability: Request an export of your data in a machine-readable format.
  • Opt-out: Opt out of non-essential communications at any time.
  • Non-discrimination: We will never discriminate against you for exercising these rights.

To exercise any of these rights, email us at support@crewsyncautomation.io with subject line "Privacy Request."

10. Children's Privacy

CrewSync is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal data, contact us and we will delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top and notify you via email if the changes are material. Continued use of CrewSync after changes constitutes acceptance of the updated policy.

12. Contact Us

Questions about this Privacy Policy? Contact us at:

CrewSync Automation

Email: support@crewsyncautomation.io

Website: crewsyncautomation.io

Back to Home
Terms of ServiceContact