Privacy Policy — MoveKore

1. What We Collect

MoveKore collects information you provide when creating an account (name, email address, company name), information generated through use of the platform (project data, photos, daily logs, change orders, audit events), and device information when using the mobile app (device identifiers, GPS coordinates attached to photos with your permission).

2. How We Use Your Data

We use your data solely to provide the MoveKore service. We do not sell your data to third parties, use it for advertising, or share it with parties outside those required to operate the service (Supabase for database/storage, Dropbox Sign for e-signatures, QuickBooks for accounting integration if you connect it).

3. Data Storage and Security

All data is stored in Supabase (US East region, AWS us-east-1). Photos and documents are stored in Supabase Storage with per-organization isolation. All data in transit is encrypted via TLS. Row-level security policies prevent cross-organization data access at the database level.

4. GPS and Location Data

The MoveKore mobile app collects GPS coordinates when you capture photos, if you grant location permission. This data is stored with the photo record and is visible to your organization members. It is not used for tracking purposes beyond photo metadata.

5. Data Retention

Your data is retained for the life of your subscription plus 90 days. Upon cancellation, you may request a full data export within the 90-day window. After that, data is permanently deleted from all systems.

6. Sub-Processors

MoveKore uses the following sub-processors: Supabase (database and storage), Vercel (application hosting), Dropbox Sign (e-signature), Expo (push notifications), QuickBooks Online (accounting integration, optional).

7. Contact

For privacy questions or data deletion requests, contact privacy@movekore.com.