Privacy Policy

Last Updated: February 1, 2026

Plan of Day ("we", "us", "our", "POD", or the "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services (the "Services").

This Privacy Policy should be read together with our Terms of Service, which contains additional important information about how we use data to improve our Services.

By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy and our Terms of Service.

1. Information We Collect

1.1 Personal Information You Provide

We collect personal information that you voluntarily provide when you:

• Create an account: Email address, full name, profile information
• Subscribe to our service: Payment information (processed securely by Stripe), billing address, company name
• Download resources: Name, email address, company name, job title
• Use our AI features: Field report data, file uploads, dashboard preferences, customization choices
• Contact support: Email address, name, inquiry details, any attachments you send
• Participate in surveys or feedback: Responses, opinions, suggestions

1.2 User Content and Uploaded Data

When you use POD to generate dashboards and analytics, you upload data files that may contain:

• Daily field reports and project data
• Safety metrics and JHA documents
• Project timelines and milestones
• Company names, team member names, and organizational information
• Industry-specific data and terminology
• Any other data you choose to include in your uploads

You are responsible for ensuring you have the right to upload any data you provide. Do not upload data that you are not authorized to share or that would violate any confidentiality obligations you have to third parties.

1.3 Information Automatically Collected

When you use our Services, we automatically collect certain information:

• Usage Data: Pages viewed, features used, dashboards generated, actions taken, time spent on features
• Device Information: Browser type and version, operating system, device type, screen resolution
• Log Data: IP address, access times, referring URLs, pages visited, clickstream data
• Cookies and Tracking: Session cookies, authentication tokens, preferences, analytics identifiers
• Performance Data: Load times, error logs, response times, system performance metrics

1.4 Information from Third Parties

We may receive information about you from third parties, including:

• Authentication Providers: Google (if you sign in with Google) - email, name, profile picture
• Payment Processors: Stripe - transaction status, payment confirmation, fraud indicators
• Analytics Providers: Aggregated usage statistics and demographic information

2. How We Use Your Information

2.1 Service Delivery

• Process your uploaded field reports and generate dashboards
• Create and maintain your account
• Process payments and manage subscriptions
• Deliver downloads and exports
• Provide customer support

2.2 Service Improvement and Development

We use collected information to improve and develop our Services:

• Quality Assurance: Review generated outputs to identify bugs, errors, and quality issues
• Product Development: Understand usage patterns to prioritize features and improvements
• AI/ML Training: Use anonymized data patterns and structures to improve our AI models (see Section 3)
• Performance Optimization: Identify and resolve performance bottlenecks
• Analytics: Understand how users interact with our Services

2.3 Communications

• Send transactional emails (receipts, password resets, account notifications)
• Respond to support inquiries
• Send product updates and feature announcements (you can opt out)
• Send marketing communications (only with your consent, and you can unsubscribe)

2.4 Security and Compliance

• Detect, prevent, and respond to fraud, abuse, and security threats
• Enforce our Terms of Service
• Comply with legal obligations
• Protect our rights and the rights of others

3. AI Training, Analytics, and Service Improvement

3.1 What We Use for Improvement

To continuously improve POD and provide better experiences for all users, we analyze:

A. Fully Anonymized Usage Analytics

• Feature usage frequency and patterns
• Navigation flows and user journeys
• Error rates and failure points
• Performance metrics
• Device and browser statistics

B. Aggregated Service Metrics

• Types of dashboards generated (by category, not individual content)
• Chart and visualization preferences
• Template and style selections
• Industry and project type distributions
• Report regeneration patterns

C. Data Structure Patterns (Anonymized)

• Common column names and data types (e.g., "Date", "Crew", "Status")
• File formats and structures
• Data schemas and organizational patterns
• This helps us better understand and process different data formats

3.2 What We Do NOT Do

We will NEVER:

• Share your identifiable business data with other customers
• Sell your data to third parties for advertising or marketing
• Publicly disclose your company's project data or strategic information
• Use your specific confidential values in a way that exposes them to others
• Allow other users to access your dashboards or uploaded files

4. Data Sharing and Third Parties

4.1 We Do Not Sell Your Data

We do not sell, rent, or trade your personal information or business data to third parties for their marketing purposes.

4.2 Service Providers

We share data with trusted service providers who assist us in operating our Services:

• Stripe: Payment processing - receives payment information only
• Vercel: Website hosting and delivery
• Railway: Backend infrastructure hosting
• Anthropic/OpenAI: AI processing for analytics generation
• SendGrid: Email delivery for transactional and marketing emails
• Analytics Providers: Anonymized usage analytics

4.3 Legal Requirements

We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.

5. Data Security

We implement appropriate technical and organizational security measures to protect your information:

• Encryption in Transit: All data transmitted to and from our Services uses HTTPS/TLS encryption
• Encryption at Rest: Sensitive data is encrypted when stored
• Access Controls: Role-based access controls limit who can access what data
• Authentication: Secure authentication with password hashing and optional OAuth
• Monitoring: Security monitoring and logging for suspicious activity
• Regular Updates: Systems are kept up to date with security patches

6. Data Retention

6.1 Account Data

We retain your account information for as long as your account is active. Upon account deletion:

• Personal profile information is deleted within 30 days
• Uploaded files are deleted within 30 days
• Generated dashboards are deleted within 30 days
• Payment records may be retained longer for legal/accounting requirements

6.2 Anonymized and Aggregated Data

Anonymized and aggregated data (which cannot be used to identify you) may be retained indefinitely for analytics, research, and service improvement purposes, even after you delete your account.

7. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal data:

7.1 Access and Portability

You can request a copy of your personal data and export your dashboards at any time.

7.2 Deletion

You can delete your account at any time. We will delete your personal data as described in Section 6, subject to any legal retention requirements.

7.3 California Residents (CCPA)

California residents have additional rights under the CCPA, including the right to know what personal information we collect, the right to delete, and the right to opt out of sales (we do not sell personal information).

7.4 European Residents (GDPR)

If you are in the European Economic Area, you have additional rights under GDPR, including the right to lodge a complaint with a supervisory authority and the right to object to certain processing.

8. Cookies and Tracking

We use essential cookies for authentication, session management, and security. These cannot be disabled as they are necessary for the Services to function. We also use analytics cookies to understand how users interact with our Services.

9. International Data Transfers

Plan of Day is based in the United States. If you access our Services from outside the United States, your data will be transferred to and processed in the United States. By using our Services, you consent to this transfer.

10. Children's Privacy

Our Services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we learn we have collected personal information from a child under 16, we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a prominent notice on our website at least 30 days before the changes take effect. Your continued use of the Services after changes become effective constitutes acceptance of the revised policy.

12. Contact Us