Privacy Policy

1. Who we are

PowerOps (“we,” “us,” or “our”) operates the generator service operating system available at powerops.io. This privacy policy explains how we collect, use, share, and protect information when you use our website, our web application, and our mobile technician PWA.

2. Information we collect

Account information: name, email, phone number, company name, billing address, and payment information (processed and stored by Stripe — we never see your full card number).

Operational data: customers, sites, equipment records, work orders, invoices, quotes, photos, signatures, and service history that you enter or upload.

Usage data: IP address, browser type, pages visited, and device information for security and analytics.

Technician location: with explicit consent, our mobile PWA may record the tech's GPS coordinates on arrival and departure from a job site for dispatch accuracy.

3. How we use information

• Provide and operate the PowerOps platform
• Process payments via Stripe
• Send transactional emails and SMS (appointment reminders, invoices, dispatch updates)
• Respond to support requests
• Detect and prevent fraud or abuse
• Improve our services through aggregated analytics
• Comply with legal obligations (NFPA 110 records, tax law, court orders)

4. Outbound calls and SMS (TCPA & A2P 10DLC)

PowerOps may place outbound phone calls and send SMS messages on behalf of a generator service company to contacts they have lawfully obtained. All outbound communications comply with the Telephone Consumer Protection Act (TCPA) and the A2P 10DLC registration framework operated by The Campaign Registry.

You may opt out of any marketing communication at any time by replying STOP to an SMS or clicking unsubscribe in an email. Operational transactional messages (appointment confirmations, invoices, service completion) are excluded from opt-out to the extent permitted by law.

AI voice agents used in outreach will identify themselves as an AI assistant on request and will immediately end the call and suppress future calls if the recipient says "do not call."

5. How we share information

We share data only with:

• Subprocessors strictly necessary to operate the service: Supabase (database/auth), Vercel (hosting), Stripe (payments), Anthropic (AI), Resend (email), Twilio (SMS), GoHighLevel (voice AI), Intuit (QuickBooks sync if enabled).
• Your own customers through the Customer Portal (if you enable it) — limited to equipment they own, invoices addressed to them, and compliance reports for their facilities.
• Law enforcement when legally compelled, after meaningful review.

We never sell customer data or contact lists.

6. Data retention

We retain operational data for the life of your active subscription plus 12 months after cancellation to support regulatory holds, audits, and reactivation. Backups are rotated on a 30-day cycle. You may request earlier deletion by emailing privacy@powerops.io.

7. Security

All traffic is encrypted in transit (TLS 1.2+) and at rest (AES-256). Database access is scoped per tenant via Supabase Row Level Security. We follow the principle of least privilege for employee access and review our security posture quarterly.

8. Your rights

Depending on where you live, you may have rights to:

• Access the personal information we hold about you
• Correct inaccurate information
• Delete information (subject to legal holds)
• Port your data to another service
• Opt out of marketing communications

Contact privacy@powerops.io to exercise any of these rights.

9. Children

PowerOps is a business-to-business product and is not directed at children under 13. We do not knowingly collect personal information from children.

10. Changes to this policy

We will post changes to this policy here and update the “Last updated” date at the top. Material changes will be announced via email to account administrators at least 30 days before taking effect.

11. Contact

PowerOps
Email: privacy@powerops.io
Web: powerops.io