Privacy Policy

 

Effective Date: February 17, 2025
Last Updated: February 17, 2025
Review Frequency: Annually (or as required by regulatory updates)

At Equipt CRM, we prioritize your privacy and data security. This policy explains how we collect, use, store, and share your personal and business-related data, as well as your rights and choices regarding your information.

1. Information We Collect

We collect various types of information, including:

• Personal Information:
• Name, email, phone number, job title.
• Login credentials (e.g., usernames, passwords).
• Payment details (processed via third-party providers such as Stripe and PayPal).
• Business Information:
• Company name, industry, location, size.
• CRM-related project details (e.g., project scope, cost estimates, deadlines).
• Client and vendor contact information stored within the CRM.
• Device & Usage Data:
• IP address, browser type, operating system.
• Cookies, tracking pixels, and log files.
• User interactions within the CRM (e.g., pages viewed, time spent on platform).
• Communication Data:
• SMS messages, emails, and customer support interactions.
• Call logs when communicating with our support team.

How We Collect This Data:

• User registration and onboarding.
• Website forms and CRM usage.
• Automatically via cookies, tracking tools, and API integrations.
• Customer service interactions.

2. How We Use Your Information

We use your data for the following purposes:

• Providing CRM services: Managing leads, project tracking, and business automation.
• Enhancing security: Fraud prevention, unauthorized access detection.
• Improving user experience: Personalizing dashboard recommendations and CRM functionality.
• Transactional communications: Appointment reminders, service notifications, and billing updates.
• Analytics and research: To improve Equipt CRM’s features and usability.

3. Third-Party Integrations & Data Sharing

EquiptCRM does not sell, rent, or share personal information with third parties for marketing purposes. However, we may share limited data for service provision:

1. Service Providers

We partner with third-party vendors, including:

• Payment Processing: Stripe (Privacy Policy), PayPal (Privacy Policy).
• Cloud Hosting & Storage: AWS (Privacy Policy), Google Cloud (Privacy Policy).
• Communication & SMS Services: Ooma (Privacy Policy), Twilio (Privacy Policy).
• Analytics & Tracking: Google Analytics (Privacy Policy), Hotjar (Privacy Policy).

1. International Data Transfers

Data may be processed in the United States, European Union, and other jurisdictions. We use:

• Standard Contractual Clauses (SCCs) under GDPR compliance.
• Data Protection Agreements (DPAs) with third-party vendors.

4. Data Security Measures

We employ industry-standard security practices, including:

• Encryption: Data is encrypted using SSL/TLS in transit and AES-256 at rest.
• Access Controls: Role-based access, multi-factor authentication (MFA).
• Regular Security Audits: Penetration testing and risk assessments.
• Data Anonymization: Where possible, sensitive data is anonymized before analytics.

5. Data Retention Policy

• Active Accounts: Data is retained for as long as the account is active.
• Billing & Transaction Data: Retained for 7 years per financial regulations.
• Inactive Accounts: Deleted or anonymized after 12 months of inactivity.
• Post-Termination Handling: Upon account closure, data is permanently deleted within 30 days.

6. Cookies & Tracking Technologies

EquiptCRM uses cookies to enhance functionality.

• Types of Cookies We Use:
• Essential Cookies: Required for login, security, and authentication.
• Analytical Cookies: Helps us improve user experience (Google Analytics, Hotjar).
• Marketing Cookies: Used for targeted service announcements.
• Managing Cookie Preferences

Users can manage cookie preferences using our cookie consent banner, which allows them to:

• Accept all cookies.
• Select only necessary cookies.
• Opt out of non-essential tracking.

For more details, visit our Cookie Policy.

7. Legal Basis for Processing Data (GDPR & CCPA Compliance)

We process personal data based on:

• Legitimate interest (e.g., fraud prevention, CRM improvements).
• Contractual necessity (e.g., fulfilling CRM service agreements).
• Legal compliance (e.g., regulatory obligations).
• User consent (e.g., SMS opt-ins, marketing subscriptions).

If you are covered under GDPR or CCPA, you have the right to:

• Request access to your personal data.
• Request deletion of your data.
• Opt out of data sharing for marketing.

8. Automated Decision-Making & AI Features

EquiptCRM uses AI-driven automation for:

• Proposal generation based on user inputs.
• Lead scoring to prioritize client interactions.
• Predictive analytics to optimize workflow efficiency.

We do not make critical decisions solely based on AI, and all automated processes include human oversight.

9. SMS Messaging & Communication

By opting into SMS notifications, you agree to receive:

• Service-related messages, appointment reminders, and system updates.
• Transactional notifications, such as payment confirmations.
• Limited promotional offers related to Equipt CRM.
• Opt-Out Policy:
• Users can opt out at any time by replying STOP to any message.
• To request assistance, reply HELP or contact customer support.
• Message and data rates may apply based on your mobile carrier.

For more details, check with your mobile provider or visit our SMS Terms & Conditions.

10. Children’s Privacy

EquiptCRM is not intended for individuals under 18 years of age. We do not knowingly collect data from minors.

11. Updates to This Privacy Policy

We review and update this policy annually or as required by law. Any changes will be communicated via email and reflected on our website.

12. Contact Us

For questions or concerns regarding this Privacy Policy, contact us at:

📍 Equipt CRM
📧 [email protected]
📞 310-541-6831
🌐 www.equiptCRM.com