Privacy Policy
How we collect, use, and protect your information
Privacy Policy
1. Overview
BuilderOS LLC ("BuilderOS," "we," "our," or "us") provides Software-as-a-Service (SaaS) tools designed for builders, contractors, and construction professionals. We are committed to safeguarding the personal and financial data of our users. This Privacy Policy describes how we collect, use, store, and protect your information when you use our platform and services.
BuilderOS LLC
214 Plainfield Church Rd., Siler City, NC 27344
2. Information Collected
We collect the following categories of information to provide and improve our services:
- Account Registration Data — Name, email address, phone number, company information, and other details provided during sign-up.
- Usage Data — Information about how you interact with our platform, including pages visited, features used, and session duration.
- Transaction History — Financial transaction data retrieved via Plaid APIs when you link a financial account.
Important: BuilderOS does not store your banking credentials. All financial account authentication is handled securely through Plaid's infrastructure.
3. Legal Basis & Use
Data is processed to provide our services and comply with applicable legal obligations. We use collected data to:
- Provide accounting and financial reporting tools
- Display transaction history
- Improve platform functionality
- Comply with legal obligations
4. Consumer Consent
Explicit consent is required before linking financial accounts via Plaid. By linking a financial account via Plaid, users:
- Authorize BuilderOS to retrieve transaction history
- Consent to storage and processing of financial data
- Acknowledge Plaid's privacy terms
5. Data Retention
Financial data is retained for up to 7 years to comply with tax and regulatory requirements. Deletion requests are processed within 30 days, subject to legal data retention requirements.
BuilderOS provides self-service financial data deletion directly within the platform. Navigate to Settings > Financial Accounts to disconnect individual accounts or delete all financial data at any time.
BuilderOS also performs automated cleanup of stale financial data. Bank connections that remain in an error or disconnected state for more than 90 days with no active business need are automatically purged. All data operations are recorded in a compliance audit trail.
6. Data Sharing
We do not sell your personal or financial data. Data is shared only with the following parties under strict confidentiality obligations:
- Plaid Inc. — For secure financial account linking and transaction data retrieval.
- Hosting & Infrastructure Providers — For platform hosting, data storage, and operational support.
7. Security Controls
We implement industry-standard security measures to protect your data:
- Encryption in Transit — TLS 1.2+ for all data transmitted between your browser and our servers.
- Encryption at Rest — AES-256 encryption for stored data.
- Multi-Factor Authentication (MFA) — Available for all user accounts.
- Role-Based Access Control (RBAC) — Granular permissions ensuring users access only the data they need.
- Logging & Monitoring — Comprehensive audit logging and real-time monitoring of platform activity.
8. User Rights
You have the right to:
- Access — Request a copy of your personal data.
- Correction — Request correction of inaccurate data.
- Deletion — Request deletion of your personal data, subject to legal retention requirements.
- Portability — Request your data in a portable, machine-readable format.
9. Updates
We may update this Privacy Policy from time to time. All updates will be posted at builder-scope.com/privacy. We encourage you to review this page periodically. Continued use of the platform after changes constitutes acceptance of the updated policy.
Consumer Consent for Financial Data Access
Scope of Consent
By choosing to link a financial account through our platform, you provide explicit consent for BuilderOS LLC to access and process your financial data via Plaid, Inc. This consent is voluntary. You are not required to link a financial account to use other features of the BuilderOS platform.
By linking a financial account via Plaid, you expressly:
- Authorize BuilderOS LLC to retrieve your transaction history from the linked financial institution
- Consent to the secure storage and processing of your financial transaction data within the BuilderOS platform
- Acknowledge and agree to Plaid's End User Privacy Policy
What Data Is Accessed
When you link a financial account, the following data may be retrieved:
- Account name and type (checking, savings, credit card, etc.)
- Transaction history (date, amount, merchant name, category)
- Account balances
BuilderOS does not access or store: Your bank login credentials, passwords, PINs, or Social Security number. All authentication is handled directly by Plaid's secure infrastructure.
How Your Financial Data Is Used
Your linked financial data is used exclusively for the following purposes:
- Displaying transaction history within the BuilderOS dashboard
- Providing accounting and financial reporting tools for your construction projects
- Categorizing expenses and generating financial insights
- Reconciling project costs against budgets
Your financial data is never sold, rented, or shared with third parties for marketing purposes.
How to Revoke Consent
You may revoke your consent and unlink a financial account at any time through the following methods:
- In-App: Navigate to Settings > Financial Accounts and select "Unlink" for the desired account.
- Via Email: Send a request to privacy@builder-scope.com with the subject line "Revoke Financial Data Consent."
- Plaid Portal: You may also manage your connections directly through Plaid at my.plaid.com.
Upon revocation, BuilderOS will cease retrieving new transaction data. Previously retrieved data will be retained in accordance with our Data Retention & Deletion Policy below, unless you specifically request deletion.
Data Retention & Deletion Policy
Retention Schedule
BuilderOS retains different categories of data for varying periods based on business and legal requirements:
| Data Category | Retention Period | Justification |
|---|---|---|
| Transaction Data | 7 years | Tax, regulatory, and financial audit compliance |
| Disconnected Bank Data | Deleted immediately (or 90-day auto-purge) | No business need after disconnect; stale items purged automatically |
| Data Access Audit Logs | 7 years | Compliance audit trail for financial data operations |
| Account Data | Duration of active account | Required for service delivery |
| Logs | 90 days minimum | Security monitoring and incident response |
| Backups | 90-day rotation | Disaster recovery and business continuity |
Secure Deletion Methods
When data is eligible for deletion or a valid deletion request is processed, BuilderOS employs the following secure deletion methods:
- Database Row-Level Deletion — Targeted removal of specific records from production databases.
- Encrypted Backup Expiration — Backups containing deleted data are automatically purged upon their scheduled rotation (90-day cycle).
- Secure Wipe of Storage Volumes — When storage hardware or cloud volumes are decommissioned, data is securely wiped using industry-standard methods to prevent recovery.
Legal Hold Provision
Notwithstanding the retention schedule above, data subject to a legal obligation, regulatory investigation, litigation hold, or lawful preservation request will be preserved until the requirement is fully satisfied. In such cases, the affected data will be isolated and access-restricted to authorized personnel only.
Contact Information
If you have questions about this Privacy Policy, your data, or our security practices, please contact us:
Privacy Inquiries
privacy@builder-scope.comData access, correction, deletion, and portability requests.
Security
security@builder-scope.comBuilderOS LLC
214 Plainfield Church Rd., Siler City, NC 27344