Skip to main content
TRADESTEERSign in

Privacy Policy

Effective April 17, 2026 (rev. 2)

This Privacy Policy explains how Trade Steer, operated by Daptify LLC (“we,” “us”), collects, uses, and shares information when you use our website and field-service-management platform (the “Service”). We are the controller of your personal information, except that when you use the Service as an employee or contractor of a customer organization, that organization is the controller and we process data on its behalf.

Daptify LLC · 971 US Highway 202N, Suite N · Branchburg, NJ 08876 · USA

1. Information we collect

Information you provide

  • Account information: name, email, password hash, role, organization.
  • Business information: customers, jobs, estimates, invoices, equipment records, photos, and related field-service data you upload.
  • Payment information: handled by our payment processor, Stripe. We never see or store full card numbers; we retain the last four digits and card brand for reference.
  • Communications: messages you send to support, survey responses, and feedback.

Information collected automatically

  • Device and log data: IP address, browser, operating system, device type, pages visited, timestamps.
  • Cookies and similar technologies for authentication, session state, and product analytics (PostHog).
  • Approximate location (derived from IP) for regionalized experiences. With your explicit browser permission, we may also use coarse GPS for weather and nearest-job features; GPS is rounded to approximately 1 km before leaving your device.
  • Technician GPS location (only when you are on-duty and your organization has enabled live tracking); you can stop sharing at any time.

Information from third parties

If you connect integrations (QuickBooks Online, Google Workspace, Microsoft 365, Stripe Connect), we receive data those providers are authorized to share under the scopes you approved.

2. How we use information

  • Provide, maintain, secure, and improve the Service.
  • Authenticate users and process payments.
  • Send transactional messages (receipts, invoices, password resets, invitation emails).
  • Provide AI-assisted features such as scheduling suggestions, upsell recommendations, and natural-language query. Prompts sent to our AI provider (OpenRouter) are processed under a zero-retention configuration; we do not permit third-party providers to train general models on your Customer Data.
  • Monitor performance, debug errors (Sentry), and analyze product usage in aggregate (PostHog).
  • Detect, investigate, and prevent fraud, abuse, or violations of our Terms.
  • Comply with legal obligations and enforce contractual rights.

3. How we share information

  • Service providers (sub-processors) who help us operate the Service: Supabase (hosted database), Vercel (hosting), Stripe (payments), Resend (email), Twilio (SMS), OpenRouter (AI inference), Sentry (error monitoring), PostHog (product analytics), and Mapbox (geocoding). Each is bound by a data-processing agreement. We also call Open-Meteo for public weather data; because only coarse ~1km coordinates (rounded to 2 decimals before leaving your device) are sent and no personal identifiers are included, Open-Meteo is not treated as a personal-data sub-processor.
  • Customer organizations: if you use the Service as a technician or dispatcher, your admin can see your activity relevant to your role.
  • Legal and safety: when required by law, subpoena, or to protect rights, property, or safety of us, our customers, or the public.
  • Business transfers: if we merge, are acquired, or sell assets, information may transfer as part of that transaction; you will be notified of any change in controller.

We do not sell personal information and do not share personal information for cross-context behavioral advertising. California residents: see Section 9 for your specific rights.

4. Retention

Customer Data is retained while your account is active. After termination we delete or anonymize Customer Data within 30 days, except where retention is required by law (e.g. tax records) or for legitimate business records (e.g. audit logs of security events).

5. Security

We use TLS in transit, encryption at rest, least-privilege access controls, row-level-security policies at the database layer, and audit logging. No system is perfectly secure; if you believe your account has been compromised, contact support@tradesteer.com immediately.

6. International transfers

Our primary infrastructure is in the United States. If you access the Service from outside the United States, your information may be transferred to, stored, and processed in the United States. Where required, we use Standard Contractual Clauses or equivalent safeguards for international transfers.

7. Your choices and rights

You may:

  • Access, correct, or delete your personal information from account settings or by emailing support@tradesteer.com.
  • Export your Customer Data via account export.
  • Opt out of non-transactional email at any time using the unsubscribe link in each message.
  • Disable technician GPS sharing from device settings or the in-app tracking switch.
  • Withdraw consent to browser geolocation from your browser settings at any time.

8. European and UK residents (GDPR / UK GDPR)

If you are in the EEA, the UK, or Switzerland, our lawful bases for processing are: performance of a contract (account, billing, core product features), legitimate interests (security, fraud prevention, product improvement), legal obligation (tax, compliance), and consent (optional features like browser geolocation, marketing emails). You have the rights of access, rectification, erasure, restriction, portability, and objection, plus the right to lodge a complaint with your supervisory authority.

9. California residents (CCPA / CPRA)

If you are a California resident, you have the rights to know, delete, correct, and limit use of sensitive personal information (we do not use sensitive information beyond what is necessary to provide the Service). We do not sell or share personal information for cross-context behavioral advertising. To exercise your rights, email support@tradesteer.com with “CCPA Request” in the subject line.

10. Children

The Service is not directed to children under 16 and we do not knowingly collect personal information from them. If you believe a child has provided us information, contact us and we will delete it.

11. Changes to this policy

We will post updates here and notify account holders of material changes by email or in-product banner at least 30 days before the effective date. Continued use after the effective date constitutes acceptance.

12. Contact

Privacy questions and requests: support@tradesteer.com, or by mail to Daptify LLC, 971 US Highway 202N, Suite N, Branchburg, NJ 08876, USA. For GDPR/UK-GDPR requests, please also include “Data Subject Request” in the subject line. New Jersey residents may contact the office of the New Jersey Attorney General if a complaint remains unresolved.