Privacy Policy

BuildBillRx by RX Digital LLC  ·  Effective Date: April 21, 2026  ·  Last Updated: April 21, 2026

1. Introduction

RX Digital LLC ("Company", "we", "our", or "us") operates BuildBillRx (the "Service"). This Privacy Policy explains our practices regarding the collection, use, and disclosure of your information.

By using BuildBillRx, you consent to the practices described in this Privacy Policy. If you do not agree with our practices, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email, phone, business address, EIN/Tax ID
• Business Information: Company name, services offered, client list, pricing
• Financial Data: Job amounts, expenses, invoices, payment information
• Job Data: Job descriptions, locations, dates, client names, service details
• Signature Data: Digital signatures captured during contract signing
• Photos: Images captured during contract signing or job documentation
• Bank Account Data (via Plaid): Transaction history and account balances for financial reconciliation

2.2 Information We Collect Automatically

• GPS Data: Real-time location tracking for mileage calculation (only when you're "on shift")
• Usage Data: Pages visited, features used, time spent, device type, browser
• Technical Data: IP address, device ID, operating system, app version
• Cookies: We use cookies to maintain your login session and preferences

2.3 Information from Third Parties

• Payment Provider (Stripe): Card last 4 digits, billing address, payment status
• Bank Data (Plaid): Transaction history and account balances (read-only, with your consent)
• Authentication (Clerk): Identity verification and secure login

3. How We Use Your Information

We use the information we collect to:

• Provide the Service: Process jobs, generate invoices, track mileage, calculate deductions
• Bank Reconciliation: Match Plaid transactions to logged expenses automatically
• Improve the Service: Analyze usage patterns, fix bugs, develop new features
• Customer Support: Respond to inquiries, troubleshoot issues, send updates
• Tax Compliance: Generate reports for tax purposes
• Payment Processing: Bill your account and process payments
• Security: Detect fraud, prevent abuse, protect user accounts
• Legal Compliance: Comply with tax laws, respond to legal requests

4. Bank Account Data (Plaid)

BuildBillRx uses Plaid to enable read-only access to your business bank account transactions. This connection is used solely to help you reconcile expenses and track business finances within the app.

• We access transaction data and account balances only
• We never store your bank login credentials
• We never sell or share your bank data with any third party
• You can disconnect your bank account at any time from within the app
• Upon disconnection or account deletion, your Plaid access token is immediately revoked
• Stored transaction data is deleted within 30 days of account deletion

Plaid's privacy policy is available at plaid.com/legal.

5. GPS & Location Tracking

• GPS is only used to calculate business mileage deductions
• GPS data is only logged when mileage tracking is enabled
• You can disable GPS tracking at any time in settings
• We do NOT sell or share GPS data with any third party
• GPS data is deleted after 12 months

6. Signature & Photo Data

• Digital signatures are encrypted and stored securely for contract records
• Photos captured during signing are linked to the specific contract
• Only you (and your staff if applicable) can view your signatures and photos
• Signature and photo data is retained for the life of your account

7. Data Sharing

We do NOT sell your data. We may share your information only:

• With Your Consent: If you authorize export to other services
• With Service Providers: Stripe (payments), Plaid (banking), Clerk (auth), Supabase (storage)
• For Legal Reasons: If required by law, court order, or government request
• To Protect Rights: If necessary to prevent fraud or protect safety

8. Data Retention

• Active Account Data: Retained as long as your account is active
• Deleted Account Data: Permanently deleted 30 days after account deletion
• Financial Records: Retained for 7 years for tax/legal compliance
• GPS Data: Automatically deleted after 12 months
• Bank Transaction Data: Deleted within 30 days of account deletion or bank disconnection
• Backups: May be retained in encrypted backups for up to 90 days

9. Your Rights

You may have the right to:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data
• Opt-Out: Opt out of certain data uses
• Data Portability: Request your data in a portable format

To exercise these rights, email hello@rxdigital.ai.

10. Security

• All data encrypted in transit (HTTPS/TLS) and at rest (AES-256)
• Two-factor authentication available for all accounts
• Row-level security — each user can only access their own data
• JWT-authenticated API requests
• Automated daily backups with disaster recovery

11. Third-Party Services

• Stripe Privacy Policy — Payments
• Plaid Privacy Policy — Bank data
• Clerk Privacy Policy — Authentication
• Supabase Privacy Policy — Database
• Google Privacy Policy — Maps/Mileage

12. California Residents (CCPA)

RX Digital LLC does NOT sell personal information. California residents may request access, deletion, or opt-out by emailing hello@rxdigital.ai.

13. European Residents (GDPR)

If located in the EU, your data is processed under GDPR protections. You have the right to access, correct, delete, or port your data. Contact us at hello@rxdigital.ai.

14. Children

BuildBillRx is not intended for users under 18. We do not knowingly collect personal information from children.

15. Changes to This Policy

We may update this Privacy Policy at any time. We will notify you of material changes by email. Your continued use constitutes acceptance of the updated policy.