siteallTerms of Service

Legal

Privacy Policy

Last updated · 25 June 2026

Your record is private to you — that is the whole point of Siteall. This policy explains what we collect, why, how we protect it, and the rights you have. It is written to align with India’s Digital Personal Data Protection Act, 2023. For a launch with payments, have it reviewed by your legal counsel.
01

Who this covers

This policy applies to the Siteall website and application, operated by [Company legal name] (“Siteall”, “we”, “us”). For the records you create, you are the owner of that information and we process it on your behalf to run the service for you.

02

What we collect

We keep collection to what the service actually needs:

  • Account details — your mobile number (used to sign you in by OTP) and the name you choose to display.
  • The records you enter— your sites, work entries, rates, bills, payments, and the client and vendor details you add. Some of this may include other people’s personal information that you choose to store.
  • Technical and usage data — basic device, browser and log information, and error diagnostics, used to keep the service secure and working.
  • Payment information — when paid plans are enabled, billing details are collected and processed by our third-party payment processor; we do not store full card or bank numbers.
03

How we use it

  • To run Siteall for you — store your record, derive balances, raise bills, and render the client window you choose to share.
  • To sign you in securely and protect accounts from misuse.
  • To provide support and respond to your requests.
  • To bill you for paid plans and prevent fraud.
  • To diagnose errors and improve reliability and performance.
  • To meet legal obligations.

We do not sell your data, and we do not use the contents of your record for advertising.

04

The client window

When you share a client link, the recipient sees only that client’s own progress and paid / pending balance — never your costs, margins, vendor payments, or your other clients. You control whether and when to share it. Links you share are your responsibility to distribute safely.

05

Who we share it with

We share information only with service providers who help us run Siteall, under contracts that require them to protect it:

  • Hosting & database — our infrastructure provider (Supabase) stores your data and enforces row-level security so each account is isolated.
  • Error monitoring — a diagnostics provider (Sentry) helps us detect and fix faults.
  • Payments — when enabled, a payment processor handles transactions.
  • Messaging — an SMS/OTP provider delivers your sign-in codes.

We may also disclose information if required by law, to protect rights and safety, or as part of a business transfer — in which case this policy will continue to apply to your data.

06

Security, storage and retention

  • Access to your data is enforced at the database level by row-level security, so only your account can read your rows.
  • Data is encrypted in transit, and we maintain managed daily backups with point-in-time recovery.
  • Deletes go to Trash rather than disappearing instantly, so you can recover from mistakes; items remain in backups for our standard backup cycle before being purged.
  • We retain your data for as long as your account is active, and afterwards only as long as needed to meet legal, accounting or security obligations.
07

Your rights

Subject to applicable law, you can:

  • access the personal data we hold about you and ask for a copy;
  • correct or update inaccurate information;
  • ask us to delete your account and data;
  • withdraw consent where we rely on it; and
  • nominate another person to exercise your rights in the event of death or incapacity, as provided under the DPDP Act.

To exercise any of these, write to us at privacy@siteall.co. We may need to verify your identity before we act.

08

Cookies

We use only essential cookies needed to keep you signed in and to keep the service secure. We do not use advertising cookies. Blocking essential cookies may stop Siteall from working.

09

Children

Siteall is built for working contractors and is not intended for anyone under 18. We do not knowingly collect data from children.

10

International transfers

Your data is stored on infrastructure that may be located in or outside India. Where data is transferred across borders, we take steps to ensure it remains protected and that transfers comply with applicable law.

11

Changes to this policy

We may update this policy from time to time. If we make material changes, we will notify you in the app or by message and update the date above.

12

Contact and grievances

For any question or complaint about privacy, contact our Grievance Officer:

[Grievance Officer name]
[Company legal name], [registered address]
privacy@siteall.co

We will acknowledge and address grievances within the timelines required by applicable law.

← Back to Siteall

© 2026 Siteall