This Privacy Policy explains what information GIG (“we”, “us”) collects, why we collect it, how we use and share it, and the rights available to users regarding their personal information. This Policy applies to our website, mobile apps, and related services (collectively “Services”).

1. Summary of key points

• Data we collect: account info, contact details, job details (location, employer info, wages), device & usage data, analytics, and optionally payment information.
  
  
• Why we collect it: to provide and improve the Services, send reminders/notifications, process payments, comply with legal obligations, and for safety/security.
  
  
• User rights: access, correction, deletion, portability, objection/complaint (GDPR); opt-out of sale/sharing (CCPA/CPRA) where applicable.
  
  
• Third parties: we share data with service providers, payment processors, analytics vendors, and legal authorities when required.

2. What information we collect

We collect the following categories of information:

1. Information you provide

• Account registration: name, email, phone number, password.
  
  
• Profile: display name, photo (optional).
  
  
• Job tracking fields: job title/description, employer contact info, location of job (address / GPS if you allow location), date/time, wages, notes, invoices you upload.
  
  
• Communications: support requests, feedback, messages to other users (if applicable).

1. Automatically collected information

• Device identifiers, IP address, device model, operating system, app usage logs, crash reports, analytics events.
  
  
• Location data if you enable GPS/location services (for job location and mapping features).

1. Payment & billing information

• If you use paid features, we may collect payment tokens, transaction records, billing address (payments processed via PCI-compliant third parties).

1. Sensitive data

• We do not ask for medical or highly sensitive categories. If we process sensitive categories (e.g., certain wage/financial details that laws treat as sensitive), we will request explicit consent where required.

3. How we use your information

We use personal data to:

• Provide, operate, maintain and improve the Services (account management, task tracking, reminders).
  
  
• Process payments and invoices.
  
  
• Send transactional messages and reminders you opt in to receive.
  
  
• Provide customer support.
  
  
• Prevent fraud and abuse; secure our Services.
  
  
• Comply with legal obligations.

Legal bases (for EEA/GDPR users): processing is based on performance of contract (to provide Services), consent (for optional features like push notifications), and our legitimate interests (security, fraud prevention, analytics), as outlined in GDPR guidance.

4. Sharing and disclosure

We may share personal data with:

• Service providers: hosting, analytics, email, push notifications, payment processors. These vendors process data on our behalf under contracts that require confidentiality and security.
  
  
• Business transfers: in connection with mergers, acquisitions, or asset sales.
  
  
• Legal requirements: to comply with court orders, law enforcement, or government requests.
  
  
• With your consent: if you choose to share job information with third parties.

We do not sell personal information for advertising purposes. If our practices change and we engage in sale/sharing as defined by CCPA/CPRA, we will notify users and provide an opt-out method. (If you are subject to California privacy laws, you can exercise opt-out rights via the “Do Not Sell or Share My Personal Information” link.)

5. Data retention

We retain personal data as long as needed to provide the Services and fulfill legitimate business purposes, comply with legal obligations, resolve disputes, enforce agreements, and for safety and security. Typical retention for account data is [insert X years after account deletion — customize], but certain logs or transactional records (billing) may be retained longer for accounting or legal reasons.

6. Data security

We implement administrative, technical, and physical safeguards designed to protect personal data from unauthorized access, disclosure, alteration, and destruction. However, no internet transmission is completely secure — we cannot guarantee absolute security.

7. Your rights and choices

Depending on your jurisdiction you may have rights including:

• Access & portability: request a copy of personal data in a structured, machine-readable format.
  
  
• Correction: request correction of inaccurate personal data.
  
  
• Deletion: request deletion of your personal data (subject to legal exceptions).
  
  
• Objection/Restriction: object to certain processing or request restrictions.
  
  
• Opt-out of sale/sharing: California residents have a right to opt out of sale or sharing of personal information and to non-discrimination for exercise of rights. We provide a “Do Not Sell or Share My Personal Information” link where applicable.
  

How to exercise rights: Contact us at [insert privacy@yourdomain.com] with “Privacy Request” in the subject. We will verify your identity before fulfilling requests. We may ask for information to confirm your identity. We will respond within the time required by applicable laws.

8. International transfers

Data may be stored and processed in servers located in your country or other countries. When transferring data across borders we apply appropriate safeguards (e.g., standard contractual clauses or other lawful transfer mechanisms) as required.

9. Children’s privacy

We do not knowingly collect personal data from children under 13 (or the minimum age in local jurisdiction). If we learn that we have collected such data, we will take steps to delete it. Parents/guardians may contact us to request deletion.

10. Third-party links & services

The Services may include links, integrations, or embeds from third parties (maps, payment gateways, analytics). These third parties have their own privacy practices; this Policy does not cover them.

11. Google Play / App Store notices

If you publish on app platforms, you must comply with platform-specific privacy and data safety requirements (e.g., Google Play Data Safety form and policy disclosures). Provide accurate descriptions of data collection and handling when completing platform data-safety sections.

12. Changes to this Policy

We may update this Privacy Policy. If changes are material we will provide notice (email, in-app). The effective date at the top will be updated.

13. Contact & complaints

Data controller:
Email:

If you are an EU resident and have unresolved complaints you may contact your supervisory authority. California residents may contact the California Attorney General or the California Privacy Protection Agency for complaints.

Final notes & next steps

1. Customize placeholders: Replace bracketed placeholders (contact emails, retention periods, governing law/jurisdiction, business address, and any specific third-party vendors) before publishing.
   
   
2. Google Play / App Stores: If you publish the app to Google Play, complete the Play Console Data Safety form and ensure your privacy policy aligns with the Data Safety disclosures.
   
3. CCPA/CPRA / GDPR: If you have users in California/EU, ensure you implement access/opt-out forms and verification workflows required by those laws.
   
4. Legal review recommended: These templates are a strong starting point but do not replace legal advice. Have counsel review for local laws, worker classification risks, and any specialized rules (payment processing, tax reporting, or country-specific labor rules).