Squared.Sign in

Privacy Policy

Last updated: [DATE]  ·  Effective date: [DATE]

[COMPANY LEGAL NAME] (“we”, “us”, “our”) operates the Squared mobile application (the “App”), which helps tradespeople and builders log site variations, capture customer approvals on site, record daily site diaries, and automatically log weather conditions for active job sites.

This Privacy Policy explains what personal information we collect, why we collect it, how we use and share it, and the rights you have over it. It applies to all users of the App. If you do not agree with this policy, please do not use the App.

1. Who is responsible for your data (Data Controller)

For the purposes of the EU/UK General Data Protection Regulation (GDPR), the data controller is:

2. Information we collect

We only collect information needed to provide and improve the App.

2.1 Information you provide

2.2 Information collected automatically

2.3 Information from third parties

We do not knowingly collect data from anyone under the age of 16 (or the minimum age in your jurisdiction). The App is intended for business/professional use by adults.

3. How we use your information (and our legal bases)

Under GDPR, we rely on the following legal bases:

PurposeExamplesLegal basis (GDPR)
Provide the App’s core featuresCreating variations, approvals, site diaries; storing photosPerformance of a contract
Location featuresTagging sites, address autocomplete, daily weather loggingPerformance of a contract / Consent (device permission)
Send transactional communicationsEmailing variations/approvals to your customers; account emailsPerformance of a contract / Legitimate interests
Secure accounts & prevent abuseAuthentication, fraud preventionLegitimate interests / Legal obligation
Maintain & improve the AppCrash diagnostics, troubleshooting, and understanding how features are used in aggregateLegitimate interests
Comply with lawResponding to lawful requests, record-keepingLegal obligation

We do not use your personal information for advertising, and we do not sell your personal information.

4. How we share your information

We share personal information only as described below:

We require all service providers to protect your data and to use it only for the services they provide to us.

5. International data transfers

Your information may be processed in countries other than where you live, including the United States (where AWS, Google, Sentry, and PostHog operate infrastructure). Where we transfer personal data out of the EEA, UK, or other regulated regions, we use appropriate safeguards such as the European Commission’s Standard Contractual Clauses and equivalent mechanisms. Sentry and PostHog are both certified under applicable data transfer frameworks.

6. How long we keep your data (Retention)

We keep personal information for as long as your account is active and as needed to provide the App. After account closure, we delete or anonymize your personal data within [e.g. 30–90] days, except where we must retain certain records to comply with legal, tax, accounting, or dispute-resolution obligations. Backups are purged on a rolling cycle of [e.g. up to 90 days].

Archived and inactive content. To keep your workspace tidy and to manage storage, we reserve the right to delete or anonymize archived, completed, or otherwise inactive sites, jobs, and projects (together with their associated diaries, variations, and photos) once they are older than 12 months, at our discretion and without further notice. You are responsible for exporting or saving any records you wish to keep before they reach this age. This does not affect records we are legally required to retain.

7. Your privacy rights

7.1 GDPR (EEA/UK) rights

You have the right to: access your data; correct inaccurate data; delete your data (“right to be forgotten”); restrict or object to processing; data portability; and withdraw consent at any time. You also have the right to lodge a complaint with your local data protection authority.

7.2 CCPA/CPRA (California) rights

California residents have the right to: know/access the categories and specific pieces of personal information collected; delete personal information; correct inaccurate information; and opt out of “sale” or “sharing” of personal information. We do not sell or share personal information as those terms are defined under the CCPA/CPRA, and we do not use it for cross-context behavioral advertising. We will not discriminate against you for exercising your rights.

7.3 How to exercise your rights

Contact us at au.su.leslie@gmail.com or use the in-app controls described in Section 8. We will verify your request and respond within the timeframe required by law (generally 30 days under GDPR; 45 days under CCPA, extendable as permitted). You may use an authorized agent where the law allows.

8. Data deletion

You can delete your data at any time:

  1. In-app: Go to [Settings → Account → Delete Account]. This permanently deletes your account, your variations, site diaries, photos, and associated personal data from our active systems.
  2. By request: Email au.su.leslie@gmail.com from your registered email with the subject line “Delete My Account”. We will verify and process the request.

After we process a deletion request:

Apple requires that account deletion be initiated from within the app. Make sure the in-app path above exists and works before submitting for review. A deletion-request page is also available at [YOUR DELETION URL].

9. Security

We use industry-standard safeguards including encryption in transit (TLS), encryption at rest for stored content, access controls, and least-privilege practices with our cloud providers. No method of transmission or storage is 100% secure, but we work to protect your information and to notify you and regulators of breaches where legally required.

10. Permissions we request on your device

You can change or revoke these permissions at any time in your device settings. Disabling a permission may limit related features.

11. Children’s privacy

The App is not directed to children and is intended for business use by adults. We do not knowingly collect personal data from children under 16. If you believe a child has provided us data, contact us and we will delete it.

12. Changes to this policy

We may update this policy from time to time. Material changes will be notified in the App or by email. The “Last updated” date reflects the latest version.

13. Contact us