Privacy Policy

Effective Date: April 29, 2026  |  Last Updated: April 29, 2026

ONEREQ PRO, LLC, a New Jersey limited liability company ("ONEREQ PRO," "we," "us," or "our"), operates the field service management platform at app.onereqpro.com, the ONEREQ PRO Tech mobile application for iOS, the marketing website at onereqpro.com, and related services (collectively, the "Platform"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Platform.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

• Name, email address, and phone number
• Company name and business address
• Role and job title
• Login credentials (passwords are hashed and never stored in plain text)

1.2 Business Data

Through your use of the Platform, we store data you provide including:

• Customer records (names, addresses, contact information)
• Job and dispatch information
• Invoices, estimates, and payment records
• Service agreements and membership data
• Technician and employee information
• Equipment records and service history
• Photos, notes, and diagnostic information

1.3 Third-Party Integration Data

When you connect third-party services to the Platform, we may access and store data from those services:

• QuickBooks Online: We access customer records, invoices, payments, and chart of accounts data via Intuit's OAuth 2.0 API. OAuth access and refresh tokens are stored encrypted in our database. We only access data necessary to sync your financial records between ONEREQ PRO and QuickBooks.
• Stripe: Payment processing data is handled by Stripe. We store Stripe account IDs and connection tokens but never store full credit card numbers.
• Google Reviews: If enabled, we sync publicly available review data associated with your Google Business Profile.
• Twilio: When telephony features are enabled, Twilio handles voice calls and SMS messages on your behalf. Phone numbers, call metadata, recordings (if enabled), and message content pass through Twilio's infrastructure.
• Consumer Financing Partners: If you enable customer financing options, certain customer information (name, address, phone, email, and the financed transaction details) may be shared with financing providers such as Synchrony, GreenSky, or other partners you connect, solely to facilitate the financing application your customer has initiated.

1.4 Location Data

With your consent, the ONEREQ PRO Tech mobile app collects GPS location data — including precise location while the app is in the background and the device is locked — to support dispatch, routing, ETA calculations, and route history. The exact iOS permission strings shown to you on first launch are:

• "ONEREQ PRO shares your location with dispatch so they can route nearby jobs and give customers accurate arrival ETAs."
• "ONEREQ PRO keeps sharing your location while the app is in the background so dispatch knows when you arrive at each job site — even when your iPad screen is locked."

Location tracking is opt-in and can be disabled at any time through your device's Settings → Privacy & Security → Location Services or from within the app. Disabling background location may degrade dispatch features but will not prevent you from using the rest of the app.

1.5 Camera and Photo Library

The ONEREQ PRO Tech mobile app may request access to your device's camera and photo library to capture or attach photos of equipment, job sites, and damage documentation. The exact iOS permission strings are:

• "ONEREQ PRO needs camera access to capture equipment data plates and job photos."
• "ONEREQ PRO needs photo library access to attach photos to jobs and equipment."

Captured photos are uploaded to our secure storage and associated only with the job, customer, or equipment record they were attached to. We do not access photos outside of your explicit selection.

1.6 Microphone, Voice, and AI Processing

The ONEREQ PRO Tech mobile app may request microphone and speech recognition access to allow hands-free dictation of diagnosis notes, customer comments, and survey responses. The exact iOS permission strings are:

• "ONEREQ PRO uses the microphone to let you dictate diagnosis notes, customer comments, and comfort survey answers instead of typing."
• "ONEREQ PRO converts your spoken notes to text so you can quickly capture details hands-free in the field."

Voice-to-text conversion uses Apple's on-device or server-side speech recognition. Once converted to text, that text — and other text you enter manually — may be sent to third-party AI providers (currently OpenAI and Anthropic) to generate professional diagnosis rewrites, summaries, and similar AI-assisted features. We do not send recorded audio to these providers; only the resulting text. AI providers are contractually prohibited from using your data to train their models.

1.7 Motion Data

The mobile app uses motion data (accelerometer/gyroscope) to detect when a vehicle stops at a job site, which lets the app reduce GPS sampling frequency and conserve battery. Motion data is processed on-device and is not transmitted to our servers.

1.8 Push Notifications

If you grant permission, the Platform sends push notifications for job assignments, dispatch updates, customer messages, payment confirmations, and similar operational events. You can disable push notifications at any time from your device settings or your in-app notification preferences. We do not use push notifications for marketing.

1.9 Biometric Authentication (Face ID / Touch ID)

If you choose to enable biometric login, your iOS device uses Face ID or Touch ID to authenticate you locally. Biometric data never leaves your device and is never transmitted to or stored by ONEREQ PRO. We only receive a yes/no signal from iOS confirming authentication succeeded.

1.10 Device Identifiers and Usage Data

We automatically collect:

• Browser type, operating system, and device model
• iOS Identifier for Vendor (IDFV), used to associate the same install of our app with your account across sessions
• IP address and general location derived from it
• Pages visited and features used within the Platform
• Timestamps, session duration, and crash diagnostics

We do not use the iOS Advertising Identifier (IDFA) and do not engage in cross-app or cross-website tracking.

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Platform
• Process transactions and send related communications
• Sync data with connected third-party services (e.g., QuickBooks, Stripe, Twilio, financing partners)
• Support dispatch, scheduling, routing, and field service operations
• Generate reports, analytics, and AI-assisted summaries for your business
• Send administrative notifications (account alerts, system updates, dispatch events)
• Provide customer support
• Comply with legal obligations

3. How We Share Your Information

We do not sell your personal information. We may share data with:

• Service Providers: Hosting (Vercel), database (Supabase), email delivery (Resend), payment processing (Stripe), accounting sync (Intuit/QuickBooks), telephony (Twilio), and AI processing (OpenAI, Anthropic). These providers only access data necessary to perform their services and are contractually bound to maintain confidentiality.
• Your Connected Services: Data is shared with third-party services you explicitly connect (e.g., QuickBooks Online, financing partners) only as needed for the integration.
• Your Customers: Information you choose to include on estimates, invoices, agreements, and other customer-facing documents.
• Legal Requirements: When required by law, court order, or governmental authority.

4. Data Security

We implement industry-standard security measures to protect your data:

• All data transmitted between your device and our servers is encrypted via TLS/SSL
• Passwords are hashed using secure algorithms (never stored in plain text)
• OAuth tokens for third-party services are stored encrypted in our database
• Access to production systems is restricted to authorized personnel
• Row-level security ensures multi-tenant data isolation — your data is only accessible to your organization
• CSRF protection is implemented on all state-changing operations

5. Data Retention

We retain your data for as long as your account is active. If you cancel your subscription:

• Your data is retained for 30 days in case you wish to reactivate
• After 30 days, your data is scheduled for permanent deletion
• You may request immediate data deletion by contacting us

Backup copies may be retained for up to 90 days for disaster recovery purposes.

6. Your Rights

You have the right to:

• Access: Request a copy of the personal data we hold about you
• Correction: Request that we correct inaccurate or incomplete data
• Deletion: Request that we delete your personal data
• Portability: Request your data in a structured, machine-readable format
• Disconnect Integrations: Revoke access to any connected third-party service at any time through the Platform settings

7. California Privacy Rights (CCPA / CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act:

• Right to Know: What personal information we collect, the sources, purposes, and categories of recipients.
• Right to Delete: Request deletion of personal information we have collected from you.
• Right to Correct: Request correction of inaccurate personal information.
• Right to Opt Out of Sale or Sharing: ONEREQ PRO does not sell your personal information and does not share it for cross-context behavioral advertising. There is therefore nothing to opt out of, but if our practices change we will provide a clear "Do Not Sell or Share My Personal Information" mechanism.
• Right to Limit Use of Sensitive Personal Information: We use sensitive personal information (such as precise geolocation) only to provide the service you have requested.
• Right to Non-Discrimination: We will not deny service, charge a different price, or provide a different level of service because you exercised any of these rights.

To exercise any California right, email privacy@onereqpro.com. We will verify your identity before fulfilling the request and will respond within 45 days as required by law.

8. Children's Privacy (COPPA)

The Platform is intended for use by businesses and is not directed to children. We do not knowingly collect personal information from children under the age of 13. If we become aware that a child under 13 has provided us with personal information, we will delete it promptly. If you believe a child has provided us with personal information, please contact us at privacy@onereqpro.com.

9. QuickBooks Data Handling

When you connect QuickBooks Online to ONEREQ PRO:

• We use Intuit's OAuth 2.0 authorization framework — we never see or store your QuickBooks password
• Access tokens are stored encrypted and refreshed automatically
• We access only the QuickBooks data scopes you authorize (customers, invoices, payments, accounts)
• You can disconnect QuickBooks at any time, which immediately revokes our access
• Upon disconnection, stored QuickBooks tokens are deleted immediately
• We do not share your QuickBooks data with any third party

10. Cookies

We use essential cookies for authentication and session management. We do not use third-party advertising or tracking cookies.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last Updated" date. Continued use of the Platform after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at:

ONEREQ PRO, LLC
New Jersey, United States
Privacy: privacy@onereqpro.com
General: info@onereqpro.com
Support: support@onereqpro.com