Privacy Policy
Last updated: April 30, 2026
1. Introduction
Prime Build Club ("PBC", "we", "our") operates the PBC Empresa and PBC GO mobile applications, as well as the website primebclub.com (collectively, the "Services"). This Privacy Policy explains how we collect, use, store, and protect your personal information.
By using our Services, you agree to the collection and use of information as described in this policy.
2. Information We Collect
2.1 Information you provide
- Full name, email, and phone number when creating your account
- Company data (name, EIN, address, phone, website)
- Employee information (name, phone, address, emergency contact, role, hourly rate)
- Client data added for estimates and invoices
- Financial records (income, expenses, payroll)
- Photos and documents uploaded (receipts, blueprints, project photos)
- Messages sent via chat and internal social network
2.2 Information collected automatically
- Location (GPS): Collected during clock in/out to verify presence at the job site. We do not continuously track your location in the background.
- Push notification token: To send relevant alerts and notifications.
- Device data: Device type, operating system, and app version for technical support purposes.
- Usage data: Modules accessed and frequency of use for product improvement.
2.3 Information from third parties
- Authentication: If you sign in with Google or Apple, we receive your name and email from the authentication provider.
- Weather data: We query public weather services based on your approximate location.
- Exchange rates: We query public APIs for currency conversion.
3. How We Use Your Information
- Operate and maintain the Services (estimates, invoices, timeclock, projects, etc.)
- Generate PDF documents (estimates, invoices) and send them via email
- Process time entries with location verification
- Send push notifications about relevant events (employee approval, clock reminders)
- Blueprint analysis and estimates using artificial intelligence
- Display financial information, reports, and payroll calculations
- Improve and personalize the user experience
- Customer support and communication
4. Data Storage and Security
Your data is stored on Firebase servers (Google Cloud Platform) and on our private server (VPS). We implement the following security measures:
- Encryption in transit (HTTPS/TLS) for all communications
- Secure authentication via Firebase Authentication
- Firestore access rules for data isolation per company
- Secure credential storage on device (expo-secure-store)
- Automatic database backups
5. Data Sharing
We do not sell your personal information. We may share data in the following situations:
- Within your company: Employers can view time entries, project data, and team information for their employees.
- Service providers: Firebase (Google), Anthropic (AI for blueprint analysis), email providers for document delivery.
- Legal obligation: When required by law, court order, or applicable regulation.
6. App Permissions
- Location: Used for clock in/out at job sites. You can revoke this at any time in your device settings.
- Camera: Used to capture photos of receipts, blueprints, and projects.
- Photo library: Used to select existing images.
- Notifications: To receive clock alerts, approvals, and reminders.
- Audio: For PBC radio playback.
7. Data Retention and Deletion
We retain different categories of personal data for different periods, based on the purpose of processing and applicable legal requirements. The table below summarizes our retention practices:
| Data Category | Retention Period |
|---|---|
| Account information (name, email, phone, login credentials) | For as long as your account is active. Deleted within 30 days after account closure (90 days from backups). |
| Company data (business name, EIN, address) | Active account lifetime + 7 years after closure (US tax retention requirement, IRS). |
| Financial records (estimates, invoices, expenses, payroll, tax reports) | 7 years from creation, to comply with US business and tax record-keeping laws (IRS). |
| Bank account connections via Plaid (encrypted access tokens, account metadata) | Until you disconnect the bank or close your account. Upon disconnection, the encrypted access token is immediately revoked with Plaid, then deleted from our systems within 24 hours. |
| Bank transactions imported via Plaid | Retained as part of your financial records (7 years) for tax and audit purposes, even after the bank connection is removed. Marked as "archived" rather than deleted to preserve fiscal history. |
| Time tracking entries (clock in/out with GPS) | 4 years from creation (US Department of Labor wage record-keeping requirement). |
| Photos and documents (receipts, blueprints, project photos) | Active account lifetime. Deleted within 30 days after account closure unless tied to a financial record (then 7 years). |
| Chat messages and internal social network posts | Active account lifetime. Deleted within 30 days after account closure. |
| Push notification tokens, device data, usage logs | 12 months rolling, for security and abuse-prevention purposes. |
| Authentication logs (login attempts, IP addresses) | 12 months for security and fraud detection. |
| Marketing or support emails (when you opted in) | Until you unsubscribe. Suppression list retained indefinitely to honor your opt-out request. |
7.1 How to request deletion
You may request deletion of your personal data at any time by:
- In-app: Settings → Account → Delete Account (PBC Empresa and PBC GO).
- By email: support@primebclub.com with the subject "Data Deletion Request".
7.2 Deletion timeline
- Within 24 hours: Bank tokens (Plaid) are revoked and access stops.
- Within 30 days: Personal data (account, photos, messages, tokens) is removed from our active systems.
- Within 90 days: Data is purged from rotational backups.
- 7 years: Financial records (invoices, payroll, tax reports, bank transactions) are retained in archived form to comply with US tax and labor laws (IRS, DOL). After this period they are permanently deleted.
7.3 Exceptions
We may retain certain data beyond these periods if required to:
- Comply with a legal obligation, court order, or regulatory requirement.
- Resolve disputes, enforce our agreements, or investigate fraud.
- Protect against legal liability or in defense of legal claims.
Retained data in these cases is segregated, access-restricted, and deleted as soon as the legal basis no longer applies.
8. Your Rights
You have the right to:
- Access your personal data
- Correct inaccurate information
- Request deletion of your data
- Export your data in a readable format
- Revoke consent for location and notification collection
- Delete your account at any time
9. Children's Privacy
Our Services are not intended for individuals under the age of 18. We do not knowingly collect information from minors. If we become aware that we have collected data from a minor, we will delete that information immediately.
10. Changes to This Policy
We may update this policy periodically. We will notify you of significant changes through the app or email. Continued use of the Services after changes constitutes acceptance of the updated policy.
11. Contact
For questions about this policy or your personal data:
- Email: support@primebclub.com
- Website: primebclub.com
- Company: Prime Build Club LLC
© 2026 Prime Build Club. All rights reserved.