← Back to Home
Privacy Policy
Last Updated: October 18, 2024
1. Introduction
Welcome to the Portable Buildings Dealer Portal ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web application and services.
Our application helps portable building dealers manage their inventory and automatically post new buildings to their Facebook Pages and Google Business Profiles.
2. Information We Collect
2.1 Information You Provide
- Account Information: Email address, business name, and password when you create an account
- Business Information: Your business name, contact information, and website customization preferences
- Inventory Credentials: Your GPB Sales portal username and password (encrypted) to sync your inventory
- Building Inventory Data: Information about your portable buildings including serial numbers, prices, sizes, images, and availability status
2.2 Information from Third-Party Services
- Facebook: When you connect your Facebook Page, we collect your Page ID, Page access token, and Page name to enable automated posting
- Google Business Profile: When you connect your Google Business Profile, we collect your account ID, location ID, access token, refresh token, and business location information to enable automated posting
- GPB Sales Portal: Building inventory data including serial numbers, pricing, and availability from your supplier portal
2.3 Automatically Collected Information
- Usage Data: Log data including your IP address, browser type, and pages visited
- Cookies: We use authentication cookies to maintain your login session
3. How We Use Your Information
We use the information we collect to:
- Provide and maintain our service
- Sync your inventory from the GPB Sales portal to your account
- Automatically post new buildings to your Facebook Page and Google Business Profile based on your schedule settings
- Generate and display your inventory on your custom website
- Send you important service notifications and updates
- Improve our application and develop new features
- Provide customer support
- Ensure security and prevent fraud
4. How We Share Your Information
4.1 Third-Party Services
We share information with third-party services only as necessary to provide our services:
- Facebook: We post your building information (text, images, pricing) to your Facebook Page using the Facebook Graph API
- Google Business Profile: We post your building information to your Google Business Profile using the Google Business Profile API
- Vercel: Our hosting provider that processes and stores data in accordance with their privacy policy
- Neon Database: Our database provider that stores your encrypted data
4.2 We Do NOT Sell Your Data
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
5. Data Storage and Security
- Encryption: Sensitive data including passwords and API tokens are encrypted at rest
- Secure Transmission: All data transmission uses HTTPS/SSL encryption
- Access Controls: We implement strict access controls to limit who can access your data
- Regular Backups: Your data is regularly backed up to prevent loss
However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.
6. Your Data Rights
You have the right to:
- Access: Request a copy of your personal data
- Correction: Update or correct your information through your account settings
- Deletion: Request deletion of your account and associated data
- Revoke Access: Disconnect your Facebook Page or Google Business Profile at any time through the admin panel
- Data Portability: Request an export of your building inventory data
7. Third-Party OAuth Permissions
7.1 Facebook Permissions
When you connect your Facebook Page, you grant us permission to:
- Read your Facebook Page information (name, ID)
- Publish posts and photos to your Facebook Page
- Access is limited to your selected Page only
You can revoke these permissions at any time by:
- Clicking "Disconnect Facebook" in your admin panel, OR
- Removing the app from your Facebook Settings → Business Integrations
7.2 Google Business Profile Permissions
When you connect your Google Business Profile, you grant us permission to:
- Read your Google Business Profile information (business name, location, address)
- Create posts on your Google Business Profile
We request the https://www.googleapis.com/auth/business.manage scope to enable posting functionality.
You can revoke these permissions at any time by:
8. Data Retention
- Account Data: Retained while your account is active
- Inventory Data: Retained until you delete specific buildings or your account
- OAuth Tokens: Stored until you disconnect the integration or delete your account
- Logs: Retained for up to 90 days for debugging and security purposes
When you delete your account, we will delete your personal information within 30 days, except where we are required to retain it for legal or compliance purposes.
9. Children's Privacy
Our service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you become aware that a child has provided us with personal information, please contact us, and we will take steps to delete such information.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes.
11. Contact Us
12. Compliance
We are committed to complying with applicable data protection laws and regulations. This Privacy Policy is designed to comply with:
- California Consumer Privacy Act (CCPA)
- General Data Protection Regulation (GDPR) where applicable
- Facebook Platform Policy
- Google API Services User Data Policy