Privacy Policy
Last updated: July 2, 2026
1. Information We Collect
We collect information you provide and information generated as you use Crewmatic on the web and in the mobile app:
- Account information from Sign in with Apple, Google, or email sign-up (name, email address, and a profile photo where provided). Sign in with Apple may relay a private, Apple-generated email address instead of your real one.
- Company information you enter (company name, address, phone number)
- Job and customer information you enter — property addresses, loss and damage details, insurance carrier and claim information, and the names and contact details of the property owners and customers you serve
- Photos and scanned documents you capture or upload for documentation and AI scoping. Photos may include embedded location (GPS) metadata identifying where they were taken.
- Precise location (GPS)— when you grant permission, we stamp job photos and readings with your device's location so adjusters can verify they were captured at the loss site, and we geocode job addresses to place them on a map
- Voice and audio — when you use voice notes or dictation we access your microphone. Speech is converted to text to create job documentation; on supported devices this transcription happens on-device.
- Moisture readings, equipment logs, floor plans, and notes you record on a job
- Device and usage data (device type, app version, session activity, and diagnostic data needed to operate and secure the service)
We also use Face ID / biometrics, when you enable it, only to unlock your saved sign-in on your device — this data never leaves your device and is not sent to us.
2. How We Use Your Information
- To provide the Crewmatic service and generate AI-powered scope data
- To transcribe voice notes and dictation into job documentation
- To stamp and verify the capture location of photos and readings
- To improve AI accuracy through aggregated, anonymized training data
- To build your company knowledge store (equipment preferences, common codes)
- To send service-related communications
- To detect and prevent fraud or abuse
3. Data Storage and Security
Your data is stored in Supabase (PostgreSQL) with row-level security policies enforcing company-level isolation. Photos are stored in private storage buckets accessible only via time-limited signed URLs. All data is encrypted in transit (TLS) and at rest (AES-256). We never see or store the password behind Sign in with Apple or Google; email/password credentials are hashed and managed by our authentication provider.
4. Data Sharing
We do not sell your personal data. We share data only with:
- Infrastructure providers (Supabase, Vercel, Railway) as necessary to operate the Service
- Authentication providers (Apple, Google, Supabase) to sign you in and secure your account
- AI providers (Anthropic) for processing photo scope and estimate requests
- Carriers and adjusters you choose, when you export or send a report at your direction
- Law enforcement when required by valid legal process
Photos sent to AI providers are processed and not retained by them beyond the request lifecycle.
5. Multi-Tenancy
Each company workspace is fully isolated. Users in one company cannot access another company's jobs, photos, or scope data. Row-level security policies are enforced at the database level.
6. Your Rights
- Access and export all your data at any time
- Request deletion of your account and all associated data
- Opt out of AI model training (your data will still be processed for scope generation)
- Correct inaccurate personal information
7. Data Retention
Active account data is retained for the duration of your subscription. Upon account deletion, all data is permanently removed within 30 days. Anonymized, aggregated data used for AI model improvement is retained indefinitely.
8. Contact
For privacy inquiries, contact us at privacy@crewmatic.ai.