Privacy Policy

I. Introduction

PPE Software LLC ("Company," "we," "us," or "our") respects your privacy and is committed to protecting it through our compliance with this Privacy Policy.

This policy describes the types of information we may collect from you, or that you may provide, when you visit https://www.ppesoftware.com/, use the PPE Software web application, use the PPE Software mobile app, communicate with us, or otherwise interact with our related services (collectively, the "Services"). It also describes our practices for collecting, using, maintaining, protecting, and disclosing that information.

This policy applies to information we collect:

• Through our websites, web application, mobile app, and related SaaS services.
• In email, text, and other electronic communications between you and us.
• Through customer support, account administration, and service-related communications.

This policy does not apply to information we collect:

• Offline or through means that are not part of the Services.
• Through third-party websites, applications, or content that may link to or be accessible from the Services but are not controlled by PPE Software.

Please read this policy carefully. If you do not agree with our practices, your choice is not to use the Services. By accessing or using the Services, you acknowledge this Privacy Policy. We may update this policy from time to time. Your continued use of the Services after changes are posted means you accept those changes.

Capitalized terms not defined in this policy have the meanings given to them in our Terms of Use.

II. Children Under the Age of 18

Our Services are intended for organizational and workforce use and are not directed to children under 18 years of age. No one under 18 may provide personal information through the Services. We do not knowingly collect personal information from children under 18. If you are under 18, do not use the Services or provide any information through them, including your name, address, phone number, email address, or username.

If we learn that we have collected or received personal information from a child under 18 without verified parental consent, we will delete that information. If you believe we may have information from or about a child under 18, please contact us at customerservice@ppesoftware.com.

III. Information We Collect About You and How We Collect It

We may collect several types of information from and about users of our Services, including:

• Identifiers and contact information, such as name, username, email address, phone number, mailing address, organization, account identifiers, and other information used to identify or contact you.
• Account and authentication information, such as credentials you submit during sign-in, authentication tokens, account settings, role or permission information, and customer or tenant identifiers.
• Operational records and user-provided content, such as PPE, gear, asset, checklist, inspection, acknowledgement, maintenance, serial number, assignment, and service records entered into or accessed through the Services.
• Billing and transaction information, such as subscription, invoice, payment, and collection information, where applicable to the web application or customer account.
• Device, browser, and service log information, such as IP address, browser type, operating system, app version, device type, request timestamps, pages or features accessed, endpoint paths, response status, and diagnostic information used for security, support, and reliability.
• Communications, such as information you provide when you contact us for support, sales, or account administration.

We collect this information:

• Directly from you when you provide it to us.
• From your organization, account administrator, or other authorized users of the customer account.
• Automatically as you navigate through or use the Services.
• From service providers and integrated services that support the Services, where permitted by contract and applicable law.

IV. Mobile App Privacy Practices

The PPE Software mobile app is designed for users who already have PPE Software accounts through their organization. The mobile app does not provide in-app account creation. Because the app provides significant account-based functionality, such as viewing assigned items, acknowledging gear, and recording maintenance, users must sign in with their existing PPE Software credentials.

For the current version of the mobile app:

• Credentials. Your username and password are transmitted to PPE Software only to authenticate your existing account. The mobile app does not store your password after sign-in.
• Authentication tokens. After successful sign-in, the app stores an authentication token so you can remain signed in. On iOS, the token is stored in the iOS Keychain through Expo SecureStore. The token is sent to PPE Software with authenticated requests and is removed from local app storage when you sign out.
• Account and operational data. The app may access and submit data linked to your PPE Software account and organization, including account settings, user identifiers, assigned gear or assets, serial number searches, selected maintenance tasks, gear acknowledgements, and related timestamps or status information.
• Diagnostics and request logs. PPE Software may keep server-side request and diagnostic logs for security, troubleshooting, audit, and reliability purposes. These logs may include account identifiers, IP address, request time, endpoint, response status, app or device information supplied with the request, and error details.
• Protected device resources. The current mobile app does not request access to camera, precise location, photos, contacts, microphone, notifications, health or fitness data, biometric sensors, Bluetooth, or local network resources. If a future app feature requires a protected device resource, we will disclose the purpose and request permission before accessing it.
• Tracking and advertising. The mobile app does not include third-party advertising SDKs, does not use the Apple Identifier for Advertisers, does not track users across apps or websites owned by other companies, and does not sell or share mobile app data for cross-context behavioral advertising. The mobile app also does not use third-party analytics or crash-reporting SDKs in its current version.
• Third-party AI. We do not use mobile app data to train AI models, and we do not share mobile app user content with third-party AI providers unless we disclose that use and obtain any consent required by applicable law.

Signing out removes the locally stored authentication token. Uninstalling the app removes local app data controlled by the operating system, but it does not delete account records or operational records stored in PPE Software. Account deletion, account deactivation, and deletion of server-side records are handled as described in the "Your Choices" and "Data Retention and Deletion" sections below.

V. Information We Collect Through Automatic Data Collection Technologies

As you navigate through and interact with our websites and web application, we may use automatic data collection technologies to collect information about your equipment, browsing actions, and usage patterns, including:

• Details of your visits to the websites and web application, including traffic data, general location inferred from IP address, communication data, and accessed resources.
• Information about your computer and internet connection, including your IP address, operating system, and browser type.

The information collected automatically is generally statistical and may help us improve the Services, maintain security, measure performance, and deliver a more personalized web experience.

The technologies we use may include:

• Cookies and browser storage. Small files or stored values placed on your device or browser storage. You may disable cookies in your browser settings, although some portions of the Services may not function properly if you do.
• Web Beacons. Small electronic files that help us count users, understand email engagement, and measure website usage.
• Server logs. Records generated when your browser, device, or app communicates with our servers.

VI. Third-Party Use of Cookies and Other Tracking Technologies

Some website content, customer support features, email delivery features, and analytics features may be provided by third parties. Those third parties may use cookies and other technologies to collect information about your activity on our websites or emails. The PPE Software mobile app does not include Google Analytics, Tawk.to, advertising SDKs, or other third-party tracking SDKs in its current version.

We do not control those third parties' tracking technologies or how they may be used. The following list identifies common third-party services we use for website, email, and support purposes and the privacy policies they publish:

• Google Analytics - website usage analytics - https://policies.google.com/privacy?hl=en-US
• SendGrid - email delivery services - https://sendgrid.com/policies/privacy/
• Tawk.to - website chat services - https://www.tawk.to/privacy-policy/

VII. How We Use Your Information

We may use information that we collect about you, or that you provide to us, to:

• Present, operate, secure, and improve the Services.
• Provide information, products, or services that you request.
• Fulfill the purpose for which you provided the information.
• Authenticate users and maintain authorized sessions.
• Sync records with the applicable PPE Software customer account or organization.
• Record and process gear, asset, checklist, inspection, acknowledgement, maintenance, and other operational activity submitted through the Services.
• Provide notices about your account or subscription, including expiration and renewal notices.
• Carry out our obligations and enforce our rights under applicable contracts, including billing and collection.
• Notify you about changes to the Services or to products and services we offer.
• Enable participation in interactive features of the Services.
• Maintain security, prevent misuse, troubleshoot errors, support users, and audit service activity.
• Support other purposes disclosed when you provide the information or with your consent.

We may also use your information to contact you about our products, services, or other offerings that may interest you. If you do not want us to use your information in that way, you may opt out using the options described below.

VIII. Disclosure of Your Information

We may disclose aggregated information that does not identify an individual without restriction.

We may disclose personal information that we collect or that you provide:

• To our subsidiaries and affiliates.
• To the PPE Software customer organization, account administrators, and authorized users associated with the account, consistent with their roles and permissions.
• To contractors, hosting providers, service providers, and other third parties that support our business and the Services.
• To a buyer or successor in connection with a merger, divestiture, restructuring, dissolution, or similar transaction.
• To third parties who market products or services to you, only if you have consented to that disclosure.
• For any other purpose disclosed by us when you provide the information.
• With your consent.

We require service providers with access to user data to commit by contract to protections at least equivalent to those described in this Privacy Policy and to use the information only for the services they provide to us, unless another use is disclosed and permitted by law.

We do not sell personal information. We do not sell or share mobile app data for cross-context behavioral advertising, and the mobile app does not share user data with third-party advertising networks or data brokers.

We may also disclose your personal information:

• To comply with a court order, law, legal process, or regulatory request.
• To enforce our agreements, including for billing and collection purposes.
• To protect the rights, property, or safety of PPE Software LLC, our customers, or others.

IX. Your Choices About How We Use and Disclose Your Information

We strive to provide you with choices regarding the personal information you provide to us, including:

• Cookies and browser storage. You may set your browser to refuse all or some cookies, or to alert you when cookies are being sent. If you disable cookies, some parts of the Services may become inaccessible or not function properly.
• Mobile app permissions. The current mobile app does not request access to protected device resources such as camera, precise location, photos, contacts, microphone, notifications, health or fitness data, biometric sensors, Bluetooth, or local network resources. If a future feature requests a permission, you may grant or deny that permission through your device settings.
• Mobile app sign-out and local data. You may revoke the app's access to your account session by signing out, which removes the locally stored authentication token. You may also uninstall the app to remove local app data controlled by your operating system.
• Promotional Communications. If you do not want us to use your contact information to promote our products or services, you may opt out by updating your account preferences, using an unsubscribe link in our emails, or contacting us at customerservice@ppesoftware.com.
• Consent revocation and deletion requests. You may contact us at customerservice@ppesoftware.com to revoke consent where consent is the basis for processing, request deletion, or ask how to limit certain uses of your information.

Accessing and Correcting Your Information

You may review and update certain personal information by logging into the web application and visiting your account profile page, where available. You may also request access to, correction of, or deletion of personal information you have provided by contacting customerservice@ppesoftware.com.

We may not accommodate a request to change information if we believe the change would violate a legal requirement or make the information inaccurate. In some cases, deleting personal information may also require deletion of your user account.

Organization-Managed Accounts and Account Deletion

PPE Software accounts are usually created and managed by the customer organization, such as your employer or agency, and the mobile app does not create accounts. If you want your account deactivated or deleted, contact your organization's PPE Software administrator or email customerservice@ppesoftware.com. We will work with you and, when applicable, the customer organization that controls the account to process the request. Some operational, audit, compliance, billing, or legal records may need to be retained even after an account is deactivated or deleted.

X. Data Retention and Deletion

We retain personal information for as long as reasonably necessary to provide the Services, maintain security and auditability, comply with our contracts and legal obligations, resolve disputes, enforce our agreements, and support our customers' operational and compliance needs.

• Authentication tokens are retained on the device until sign-out, expiration, replacement, or removal of local app data.
• Operational records, such as gear, asset, maintenance, inspection, acknowledgement, assignment, and audit records, are retained according to the applicable customer agreement, customer instructions, legal requirements, and operational or compliance needs.
• Support communications are retained while needed to respond to the request and maintain appropriate business records.
• Server logs and diagnostics are retained for periods appropriate to security, troubleshooting, audit, fraud prevention, and reliability needs.

To request deletion of personal information, contact customerservice@ppesoftware.com. Deletion may be limited where information is controlled by a customer organization, needed to provide the Services, required for legal or contractual reasons, or retained in backup or audit systems until those systems are cycled in the ordinary course.

XI. Additional California Privacy Rights

If you reside in California and are using the Services for personal, family, or household purposes, California law may provide you with additional rights regarding our use of your personal information, including rights that may be available under the California Consumer Privacy Act (CCPA).

California's "Shine the Light" law may also provide rights relating to certain disclosures of personal information for direct marketing purposes. To submit a request, contact us at customerservice@ppesoftware.com.

XII. Additional EU and UK Information

PPE Software LLC is based in the United States, and information we collect is stored on servers located in the United States. We primarily operate under United States law. If you access the Services from the European Economic Area, the United Kingdom, Switzerland, or another jurisdiction with different data protection laws, you understand that your information may be transferred to and processed in the United States.

Where required, we rely on appropriate safeguards for cross-border transfers of personal information. You may request additional information about those safeguards by contacting us through customerservice@ppesoftware.com.

XIII. Data Security

We maintain measures designed to protect personal information from accidental loss and from unauthorized access, use, alteration, and disclosure. Information you provide to us is stored on secured servers hosted by Microsoft Azure. Microsoft's privacy statement is available at https://privacy.microsoft.com/en-us/privacystatement.

The safety and security of your information also depend on you. If you have been given, or have chosen, a password for access to certain parts of the Services, you are responsible for keeping that password confidential.

No internet transmission is completely secure. Although we use commercially reasonable efforts to protect your personal information, we cannot guarantee the security of information transmitted to the Services. Any transmission of personal information is at your own risk.

XIV. Changes to Our Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated policy on this page and revise the "Last updated" date at the top of the page. You are responsible for reviewing this page periodically for changes.

XV. Contact Information

If you have questions or comments about this Privacy Policy or our privacy practices, please contact us at customerservice@ppesoftware.com.