Skip to main contentSkip to navigation
Back to Home

Privacy Policy

Last updated: December 30, 2024

1. Introduction

OBBBA Compliance Tracker ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, password, business name
  • Employee Data: Employee names, occupation codes, hourly rates, tip records, overtime hours
  • Business Information: EIN (encrypted), business type, address
  • Payment Information: Processed securely through Stripe; we do not store credit card numbers

2.2 Information Collected Automatically

  • Usage Data: Pages visited, features used, time spent on the service
  • Device Information: Browser type, operating system, device type
  • Log Data: IP address, access times, referring URLs

3. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve the Service
  • Process transactions and send related information
  • Send administrative communications (service updates, security alerts)
  • Respond to customer service requests
  • Generate compliance reports and exports
  • Detect, prevent, and address technical issues or fraud
  • Comply with legal obligations

4. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: Third parties who help us operate the Service (hosting, payment processing, email delivery)
  • Legal Requirements: When required by law, subpoena, or government request
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you explicitly agree to share information

We do not sell your personal information to third parties.

5. Data Security

We implement appropriate security measures including:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Secure authentication through industry-standard providers
  • Regular security assessments and monitoring
  • Access controls and audit logging
  • Encrypted storage of sensitive data (EIN, etc.)

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide services. Financial and compliance records are retained for 7 years to comply with tax and legal requirements. You may request deletion of your account and data at any time (subject to legal retention requirements).

7. Your Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data (subject to legal requirements)
  • Export: Download your data in a portable format
  • Opt-out: Unsubscribe from marketing communications

To exercise these rights, contact us at privacy@obbbatracker.com or use the data management features in your account settings.

8. Cookies and Tracking

We use essential cookies for authentication and session management. We may use analytics cookies to understand how you use the Service. You can control cookies through your browser settings, but disabling them may affect functionality.

9. Third-Party Services

The Service integrates with third-party services that have their own privacy policies:

  • Clerk: Authentication services
  • Stripe: Payment processing
  • Vercel: Hosting and deployment
  • Supabase: Database services

We encourage you to review the privacy policies of these services.

10. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect information from children. If you believe we have collected information from a child, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

12. California Privacy Rights (CCPA)

California residents have additional rights under the CCPA, including the right to know what personal information we collect, the right to delete personal information, and the right to opt-out of the sale of personal information (we do not sell your data).

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through the Service. Your continued use after changes constitutes acceptance of the updated policy.

14. Contact Us

For questions about this Privacy Policy or to exercise your privacy rights:

OBBBA Compliance Tracker

Email: privacy@obbbatracker.com