Privacy Policy

Daily is operations software for landscaping companies, provided at dailywork.ai and on per-company subdomains by [LEGAL ENTITY NAME — Geared for Growing / Daily, Inc. TBD] (“Daily,” “we,” “us”), operating from Sonoma County, California.

This policy describes how we collect, use, and share personal information when you:

• visit our websites, including the dailywork.ai marketing site;
• sign up for or use the Daily service as a company (“customer company” or “tenant”) or as one of its staff or crew members; or
• interact with a company that uses Daily — for example, as its landscaping customer or employee.

We handle personal information in two different capacities, and your rights work differently in each:

(a) Data we control. For account registration data, billing contacts, the waitlist, website visits, and support correspondence, Daily decides how and why the data is used. For this data, contact us directly (Section 13).

(b) Data we process for our customer companies. The operational data a customer company puts into Daily — its customer and property records, schedules, crew time and payroll records, photos, invoices (“Tenant Data”) — belongs to that company. The company decides how and why it is used; Daily processes it on the company’s behalf as a service provider, under our Terms of Service. If you are an employee or a customer of a company that uses Daily, that company is responsible for this data — please direct questions and privacy requests to them. We support our customers in honoring such requests, and if you contact us directly we will forward your request to the relevant company.

We do not sell personal information, and we do not share it for cross-context behavioral advertising.

Account and contact information. When a company signs up, we collect company name and contact details, and the name and email address of the people who sign in. Office users sign in with Google; we receive basic profile information from Google (name, email address, profile photo). When you accept our Terms of Service, we record the version accepted and a timestamp.

Tenant Data (processed for your company). Customer companies store their operational data in Daily, which can include personal information about their own customers and employees: customer names, service addresses, phone numbers and emails; property notes and access details; schedules and routes; work orders and invoices; and the field-crew records described next.

Field crew data. For companies that use Daily’s crew features, the service records, on behalf of the employer:

• Clock-in and clock-out times for shifts and job-site stops;
• GPS location captured at clock events — when a crew member clocks in or out at a stop, the device’s location at that moment may be recorded. Daily does not continuously track location in the background;
• Job-site photos taken by crews, which may incidentally include people or property;
• PIN-based logins — crew members may sign in with a numeric PIN and may have no email address on file; in that case we hold only the identifiers the employer provides (typically a name, crew assignment, and pay-related settings).

The employer controls this data and is responsible for providing its workers any legally required notice about time tracking and location capture.

Communications. If SMS notifications are enabled, we process message content, phone numbers, and delivery status through Twilio. Transactional email (such as invites and notifications) is sent through Resend. We also keep support and sales correspondence, including waitlist signups from the marketing site (email address).

Payment information. Today, no payment is collected at signup. When paid subscriptions begin, payments will be processed by Stripe; we will receive limited billing details (such as name, last four card digits, and transaction status) but will not store full card numbers.

Usage, device, and log data. Like most services, we collect log and device data when you use Daily: IP address, browser and device type, pages and features used, and timestamps. Application errors are reported to Sentry (our error-monitoring service) and may include technical context about what went wrong.

Cookies. We use cookies that are necessary to run the service — chiefly session/authentication cookies that keep you signed in. We do not use third-party advertising or cross-site tracking cookies.

Your landscaper or employer uses Daily to run its business, and information about you lives in their tenant: your name, service address, and contact details (if you’re their customer), or your time records, clock-event locations, and job-site photos (if you’re on their crew).

That company controls this information. Daily processes it only to provide the service to them, as described in this policy and our agreement with them. To access, correct, or delete it, or to ask how it’s used, contact the company directly — we’ll help them respond.

We use personal information to:

• provide, operate, and secure the service, including authentication, tenant isolation, and fraud and abuse prevention;
• run the features customer companies use — scheduling, time tracking, invoicing, photos, notifications;
• operate integrations a company chooses to connect (Section 6);
• send transactional messages (invites, notifications, receipts) and respond to support requests;
• send waitlist and product updates to people who asked for them (with an opt-out in every message);
• monitor performance, fix errors, and improve the service;
• comply with law and enforce our Terms.

We may use aggregated or de-identified information that no longer identifies any person or company for analytics, benchmarking, and product improvement.

We share personal information only with: (a) the service providers below, which process it on our instructions; (b) third-party services a customer company chooses to connect to its own tenant; (c) professional advisors, authorities, or other parties when required by law or to protect rights and safety; and (d) a successor in a merger, acquisition, or sale of assets, with notice. We do not sell personal information and have not done so; we do not share it for cross-context behavioral advertising.

Our service providers (subprocessors):

Connected per-tenant, only when a customer company links its own account:

Google user data. Daily’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Location. GPS coordinates are captured at crew clock-in/out events to tie time records to job sites. Location is not collected continuously and is not used to build movement profiles; it is visible to the crew member’s employer as part of their time records. Precise geolocation is treated as sensitive information: we use it only to provide the service, never for advertising or profiling.

SMS. SMS notifications are sent only where the customer company has enabled them and is responsible for recipient consent. Reply STOP to any Daily-originated SMS to stop receiving messages; message and data rates may apply.

• Active accounts: we keep Tenant Data for as long as the company’s account is active.
• After termination: Tenant Data is retained for 30 days so the company can request an export; after that window we delete or de-identify it from active systems, and residual copies cycle out of backups in the ordinary course.
• Account, billing, and log data: kept as long as needed for the purposes above, then deleted or de-identified; some records are kept longer where the law requires (for example, tax and accounting records).
• Waitlist: kept until you ask to be removed or the list is retired.

We take security seriously and apply practices appropriate to the data we handle:

• encryption in transit (TLS) for all connections, and encryption at rest provided by our infrastructure providers;
• per-tenant data isolation enforced at the database layer, so one company’s data is not visible to another;
• role-based access controls within each tenant (office staff vs. field crew vs. owner views), and authentication on every request;
• least-privilege access for Daily staff, limited to what’s needed to operate and support the service;
• audit logging of sensitive changes (such as time-record edits) and continuous error monitoring.

No method of transmission or storage is 100% secure, but we work to protect your information and will notify affected customers of a data breach as required by law.

California residents have the following rights regarding personal information we control (see Section 2 — for Tenant Data, direct requests to the company that uses Daily, and we will help them respond):

• Right to know/access — what personal information we collect, use, and disclose, and a copy of it;
• Right to delete — subject to legal exceptions;
• Right to correct — inaccurate personal information;
• Right to portability — receive your data in a usable format;
• Right to opt out of sale or sharing — not applicable in practice: we do not sell personal information or share it for cross-context behavioral advertising, and have not in the preceding 12 months;
• Right to limit use of sensitive personal information — we use sensitive information (such as precise geolocation at clock events) only to provide the service, which is a permitted purpose;
• Right to non-discrimination for exercising any of these rights.

The categories of personal information we collect are described in Section 3; in CCPA terms they include identifiers, commercial information, professional/employment information, precise geolocation (at clock events), audio/visual information (job-site photos), and internet activity.

To exercise these rights, email legal@dailywork.ai with “Privacy request” in the subject. We will verify your request (typically by confirming control of the email associated with the data) and respond within the time required by law. You may use an authorized agent; we will ask the agent for proof of authorization.

Daily is a business tool. It is not directed to children, and we do not knowingly collect personal information from anyone under 16. We do not sell or share the personal information of consumers under 16. If you believe a child has provided us personal information, contact us and we will delete it.

Daily is operated from the United States and data is processed and stored in the United States. If you access the service from outside the U.S., you understand your information will be processed in the U.S.

We may update this policy. For material changes we will post the updated policy with a new “last updated” date and notify customer companies by email or in the app before the changes take effect.

[LEGAL ENTITY NAME — Geared for Growing / Daily, Inc. TBD]
Sonoma County, California
[MAILING ADDRESS — TBD]
Email: legal@dailywork.ai