Privacy Policy

This Privacy Policy explains how Aware LLC ("we," "us," or "our") collects, uses, and shares information when you use CrewareOS (the "Service"). By using the Service, you agree to the practices described in this policy.

1. Information We Collect

Information you provide directly

• Account information: name, email address, password
• Organisation information: company name, billing details
• Employee data you enter: names, job titles, contact information, birthdates, notes, and any other data you choose to store
• Payment information: processed and stored by Stripe; we do not store card numbers

Information collected automatically

• Log data: IP addresses, browser type, pages visited, timestamps
• Usage data: features used, actions taken within the Service
• Cookies and similar technologies for session management and authentication

2. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain the Service
• Process transactions and send billing-related communications
• Respond to support requests and communications
• Monitor and analyse usage to improve the Service
• Detect and prevent fraud, abuse, and security incidents
• Comply with legal obligations

We do not sell your personal data or the data of any employees you manage through the Service to third parties.

3. Your Data — Your Responsibility

CrewareOS allows you to store personal data about third parties, including your employees. You are the data controller for this information. We act as a data processor on your behalf.

You are solely responsible for ensuring that your collection, storage, and use of employee data complies with all applicable laws, including employment law, data protection regulations (such as GDPR, CCPA, or others applicable in your jurisdiction), and any obligations you have to the individuals whose data you store.

We make no representations about the lawfulness of any particular use of the Service and expressly disclaim liability for your failure to comply with applicable data protection or employment law.

4. How We Share Information

We share your information only in the following circumstances:

• Service providers: We use third-party services to operate the Service, including Supabase (database and authentication) and Stripe (payment processing). These providers have access to information only as necessary to perform their functions and are contractually required to protect it.
• Legal requirements: We may disclose information if required by law, court order, or government authority, or if we believe disclosure is necessary to protect our rights or the safety of others.
• Business transfers: If Aware LLC is acquired, merged, or its assets are transferred, your information may be transferred as part of that transaction.
• With your consent: We may share information for other purposes with your explicit consent.

5. Data Retention

We retain your account data for as long as your account is active. After account termination, we may retain data for up to 30 days before deletion, unless a longer retention period is required by law. You may request earlier deletion by contacting us at tglewis247@gmail.com.

Employee data you enter is retained until you delete it or your account is closed. You are responsible for deleting data you are no longer entitled to retain under applicable law.

6. Security

We implement industry-standard technical and organisational measures to protect your data, including encryption in transit (TLS) and at rest, role-based access controls, and regular security reviews. However, no method of transmission over the internet or electronic storage is 100% secure.

We cannot guarantee the absolute security of your data and disclaim liability for unauthorised access, disclosure, or loss of data that occurs despite our security measures.

7. Cookies

We use cookies and similar technologies solely for authentication and session management. We do not use tracking cookies for advertising purposes. You can disable cookies in your browser settings, but doing so may prevent you from using the Service.

8. Your Rights

Depending on your jurisdiction, you may have rights including:

• Access to personal data we hold about you
• Correction of inaccurate data
• Deletion of your personal data
• Restriction or objection to processing
• Data portability

To exercise these rights, contact us at tglewis247@gmail.com. We will respond within the timeframe required by applicable law.

Note: For requests relating to employee data you have stored about third parties, those individuals should direct their requests to you as the data controller, not to us.

9. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, contact us immediately.

10. International Transfers

Your data may be stored and processed in the United States or other countries where our service providers operate. By using the Service, you consent to the transfer of your data to these locations. We take appropriate steps to ensure data transfers comply with applicable law.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy and updating the "Last updated" date. Your continued use of the Service after changes take effect constitutes acceptance of the revised policy.

12. Contact Us

For questions, concerns, or requests relating to this Privacy Policy or our data practices, contact us at: