Privacy Policy

Who We Are

Compliance Guard is a product of Sightline Algorithmic, LLC, a technology company based in St. Louis, Missouri. We build AI-powered software tools for contractors and service businesses.

Our products include the Compliance Guard mobile application (available on Android, with iOS availability forthcoming), the Sightline AI product platform at sightlineai.net, and the corporate website at sightlinealgorithmic.com.

For questions about this policy or your data, contact us at support@sightlineai.net.

Information We Collect

Information you provide when creating an account

• Email address and password: Passwords are stored as secure cryptographic hashes. We never see or store your actual password.
• Name and professional profile: Information you enter during onboarding, including your name and professional role. Optional fields may include your company name and contact details.
• EPA certification information: Your EPA Section 608 certification type (e.g., Type I, Type II, Type III, Universal) and certification number, which you enter through the app's Settings screen. This information is required to generate compliant audit records and is written into each job's compliance report at the time the job is closed.

Information you provide while using the app

• Job records: Job details you create, including customer names, job-site addresses, equipment descriptions, refrigerant type and quantity, recovery machine serial numbers, service dates, and technician notes.
• Equipment data-plate photos: Images you capture of equipment data plates are uploaded to our secure cloud storage for AI-assisted data extraction and retained as part of the job record.
• Technician and customer signatures: At job close, the app captures handwritten signatures from the attending technician and, where applicable, the customer. Signatures are stored as PNG images in a private, access-controlled storage bucket and are embedded into the signed PDF compliance report generated for the job.
• Generated compliance reports: PDF documents produced by the app contain the job data, your EPA certification snapshot at the time of job close, and the embedded signatures. These are retained as part of your audit trail.
• Billing information: When you subscribe to a paid plan, payment information (card number, billing address) is collected and processed directly by Stripe, our payments provider. We do not store full card numbers on our servers. We receive and store a Stripe customer ID, plan identifier, and subscription status.
• Support communications: If you contact us for help, we retain those communications to provide support and improve the service.

Information collected automatically

• Usage and app-activity data: Basic interaction data such as features accessed, jobs created, scans performed, and subscription events. Used to operate and improve the service.
• Device and technical information: Operating system, operating system version, app version, device type and model, coarse language/region, and similar technical identifiers needed for compatibility and troubleshooting.
• Diagnostic and crash data: When the app encounters an error or crash, technical information about the crash (stack traces, app state, device model, OS version) is collected by our build and distribution platforms (Expo / EAS) and by Google Play Console crash reporting to help us identify and fix bugs.
• Server and network logs: When the app communicates with our servers, our infrastructure providers log standard technical information, including IP address, timestamps, and request metadata, for security, rate limiting, and service reliability purposes.

Information we do not collect

• We do not collect precise GPS or real-time location data.
• We do not access your device's contact list, calendar, microphone, or photos beyond images you explicitly submit to the app.
• We do not use advertising SDKs, ad identifiers, or behavioral tracking cookies.
• We do not sell personal information.

Customer Data You Collect Through the App

Compliance Guard is a professional tool used by licensed HVAC contractors in the course of their business. When you use the app, you may record information about your own customers, including customer names, job-site addresses, equipment at their premises, and handwritten customer signatures acknowledging service performed.

We act as a service provider (data processor) with respect to customer information that passes through the app. We use that information solely to provide the Compliance Guard service to you — we do not use it for advertising, profiling, or any purpose beyond enabling your use of the app and safeguarding the service.

If one of your customers contacts us directly with a data request, we will generally direct them back to you as the business that collected their information. Where legally required, we will cooperate with you to respond.

How We Use Your Information

We use the information described above for the following purposes:

• Providing the service: Operating the app, processing AI-assisted data-plate scans, generating signed PDF compliance reports, maintaining your audit trail, and managing your subscription and account.
• Account management: Authenticating your identity, processing password resets, and managing your account settings.
• Billing and payments: Processing subscription payments through Stripe, managing your billing relationship, and sending subscription-related communications.
• Service communications: Sending transactional emails required to operate your account — welcome emails, password resets, subscription and billing notices. These communications cannot be opted out of while your account is active.
• Product improvements and troubleshooting: Understanding how the service is used, diagnosing technical issues, and improving features and performance. We use aggregated and anonymized analytics where possible.
• Security and abuse prevention: Detecting and preventing fraud, unauthorized access, and abuse of the service.
• Legal compliance: Complying with applicable laws and responding to lawful requests from authorities where required.

AI training. We do not use your data, photos, job records, or signatures to train artificial intelligence models. Equipment photos you submit are processed by Anthropic’s Claude API solely for the purpose of extracting compliance data for your job record. Under our API agreement with Anthropic, submissions are not used to train Anthropic’s models.

Email Communications

Transactional emails

As a registered user, you will receive transactional emails as part of the service. These include welcome emails, password resets, billing receipts, subscription status notices, and security-related alerts. These emails are necessary for the operation of your account and cannot be opted out of while your account is active.

Marketing emails

We may send product updates, feature announcements, and HVAC compliance tips if you have explicitly opted in to marketing communications. You may opt in during account creation or by submitting your email through the signup form on sightlineai.net.

Marketing emails are entirely optional. You can opt out at any time by clicking the unsubscribe link in any marketing email or by contacting us at support@sightlineai.net. Opting out of marketing emails does not affect your ability to use the service or receive transactional emails.

Email service provider

All email is sent through Resend (resend.com), our email service provider. Your email address and communication preferences are shared with Resend solely to deliver email on our behalf. Resend acts as a data processor under our instructions.

Third-Party Service Providers

We use the following third-party services to operate Compliance Guard. Each acts as a data processor under our instructions. We selected these providers based on their security practices and data-protection commitments.

We do not sell your personal information to third parties. We do not share your data with advertisers, data brokers, or any party not listed above.

Data Storage and Security

Your data is stored on Supabase infrastructure, hosted on Amazon Web Services in the United States. We implement the following security measures:

• Row-level security: Database access controls ensure each user can only access their own data. No user can access another user’s jobs, photos, signatures, or compliance records.
• Private storage buckets: Equipment photos, signature images, and generated PDF reports are stored in private, access-controlled cloud storage. They are not publicly accessible and can only be retrieved via authenticated, time-limited signed URLs.
• Encrypted transmission: All data transmitted between the app and our servers is encrypted in transit using TLS.
• Password security: Passwords are hashed using industry-standard algorithms. We never store plain-text passwords and cannot retrieve your password.
• Authentication tokens: Session tokens are short-lived and refreshed automatically.

While we implement reasonable security measures, no system is completely secure. If you believe your account has been compromised, contact us immediately at support@sightlineai.net.

Data Retention

We retain your data for as long as your account is active or as needed to provide the service. Specifically:

• Account data: Retained for the life of your account. If you delete your account, account data is deleted within 30 days, except as required by law.
• Job records, compliance reports, photos, and signatures: Retained for the life of your account and associated with your job records. We recommend you export or archive compliance records you may need for regulatory purposes before closing your account, as EPA audit trails may be required for several years under applicable regulations.
• Billing records: Retained for 7 years as required for financial recordkeeping.
• Marketing email list: Retained until you unsubscribe, at which point your address is flagged as unsubscribed.
• Server and diagnostic logs: Retained for a limited period (typically up to 90 days) for troubleshooting and security purposes.

Your Rights and Choices

You have the following rights with respect to your personal information:

• Access: You may request a copy of the personal information we hold about you.
• Correction: You may update your account information at any time through the app’s Settings screen.
• Deletion: You may request deletion of your account and associated data by contacting us at support@sightlineai.net. We will process deletion requests within 30 days, subject to the retention requirements noted above.
• Marketing opt-out: You may unsubscribe from marketing emails at any time using the unsubscribe link in any marketing email or by contacting us directly.
• Data portability: You may request an export of your job and compliance data in a standard format by contacting us.

To exercise any of these rights, contact us at support@sightlineai.net. We will respond within 30 days.

California residents

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected, the right to delete personal information, and the right to opt out of the sale of personal information. We do not sell personal information. To exercise your CCPA rights, contact us at support@sightlineai.net.

Children's Privacy

Compliance Guard is a professional tool designed for licensed HVAC contractors and their technicians. It is not directed at children, and our intended audience is adults age 18 and older. We do not knowingly collect personal information from children under the age of 13. If we become aware that a child under 13 has provided personal information, we will delete it promptly. If you believe a child has submitted information to us, contact us at support@sightlineai.net.

International Users

Compliance Guard is operated from the United States and is currently marketed to users located in the United States. If you access the service from outside the United States, you consent to the transfer, storage, and processing of your information in the United States, where data protection laws may differ from those of your country of residence.

Changes to This Policy

We may update this Privacy Policy from time to time as the service evolves. When we make material changes, we will update the “Last Updated” date at the top of this page and, where appropriate, notify you by email or through an in-app notice.

Your continued use of Compliance Guard after any changes constitutes acceptance of the updated policy. We encourage you to review this policy periodically.

Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or your personal data, please contact us: