Ten Eight Studios LLC ("we," "us," or "our") operates DealBoard (dealboard.pro). This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data. We believe in being straightforward — this policy is written in plain language so you can understand exactly how your data is handled.
1. Information We Collect
1.1 Information You Provide
- Account information: Email address and password when you create an account.
- Deal and commission data: Customer names, job numbers, sale amounts, MSRP, discounts, commission rates, install dates, payment types, spiffs, and any other information you enter into the Service.
- Pay plan configuration: Commission percentages, tier structures, payroll cycle preferences.
- Payment information: Credit card and billing details are collected and processed directly by Stripe. We do not store your full credit card number on our servers.
1.2 Information Collected Automatically
- Usage data: Pages visited, features used, time spent in the application, and general interaction patterns.
- Device and browser information: Browser type, operating system, screen resolution, and device type.
- Log data: IP address, access times, and referring URLs.
- Cookies: We use essential cookies for authentication and session management. See Section 6 for details.
1.3 Information We Do Not Collect
We do not collect Social Security numbers, bank account numbers, government-issued identification, or any biometric data.
2. How We Use Your Information
We use the information we collect for the following purposes:
| Purpose | Details |
|---|---|
| Provide the Service | Store your deals, calculate commissions, generate dashboards, and send notifications you configure. |
| Process payments | Manage your subscription through Stripe. |
| Send communications | Install date reminders, payroll cycle alerts, and account-related emails you have opted into. |
| Improve the Service | Analyze usage patterns in aggregate to identify bugs, improve features, and plan development. |
| Ensure security | Detect and prevent fraud, abuse, and unauthorized access. |
We do not sell, rent, or trade your personal information to third parties. We do not use your deal or commission data for advertising purposes.
3. How We Share Your Information
We share your information only in the following limited circumstances:
3.1 Service Providers
We use trusted third-party services to operate the Service. These providers only access your data as needed to perform their functions:
| Provider | Purpose | Data Shared |
|---|---|---|
| Supabase | Database hosting, user authentication, real-time data sync | Account info, deal data, pay plan configurations |
| Stripe | Subscription billing and payment processing | Email, payment method, billing address |
| Vercel | Application hosting and content delivery | IP address, request logs |
| Resend / SendGrid | Transactional email delivery (notifications, alerts) | Email address, notification content |
3.2 Legal Requirements
We may disclose your information if required to do so by law, court order, or governmental request, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
3.3 Business Transfers
If Ten Eight Studios LLC is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change via email or a prominent notice on the Service.
4. Data Storage and Security
4.1 Where Your Data Lives
Your data is stored on Supabase-managed PostgreSQL databases with servers located in the United States. Data is encrypted in transit (TLS/SSL) and at rest.
4.2 Security Measures
We implement industry-standard security practices including:
- Row-level security (RLS) in our database ensuring users can only access their own data
- Encrypted connections (HTTPS) for all data transmission
- Secure authentication through Supabase Auth with hashed passwords
- Regular security updates and dependency monitoring
- Principle of least privilege for all system access
4.3 Your Responsibility
You are responsible for keeping your account credentials secure. Use a strong, unique password and do not share your login information with others.
4.4 Breach Notification
In the event of a data breach that affects your personal information, we will notify you via email within 72 hours of becoming aware of the breach, consistent with applicable law.
5. Your Rights and Choices
5.1 Access and Export
You can view all of your data within the Service at any time. Paid plan users can export their data in CSV or PDF format.
5.2 Correction
You can edit or correct any deal data, pay plan configuration, or account information directly within the Service.
5.3 Deletion
You can delete individual deals at any time. To delete your entire account and all associated data, contact us at support@dealboard.pro. We will process account deletion within 30 days. Backup copies may persist for up to 90 days before permanent removal.
5.4 Email Communications
You can manage your notification preferences in your account settings. You can opt out of marketing emails at any time. Transactional emails related to your account (security alerts, billing confirmations) cannot be opted out of while your account is active.
5.5 Do Not Track
We do not currently respond to Do Not Track (DNT) browser signals. We do not engage in cross-site tracking.
6. Cookies
We use a minimal number of cookies, limited to what is necessary for the Service to function:
- Authentication cookies: Required to keep you logged in and maintain your session.
- Preference cookies: Store your settings like notification preferences.
We do not use third-party advertising cookies or tracking pixels. We do not participate in ad networks.
7. Children's Privacy
The Service is not directed to anyone under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 18, we will delete it promptly. If you believe a child has provided us with personal information, please contact us at support@dealboard.pro.
8. State-Specific Privacy Rights
8.1 California Residents (CCPA/CPRA)
If you are a California resident, you have the right to know what personal information we collect about you, request deletion of your personal information, opt out of the sale of your personal information (we do not sell personal information), and not be discriminated against for exercising your privacy rights. To exercise these rights, contact us at support@dealboard.pro.
8.2 Other U.S. States
Residents of states with consumer privacy laws (including Connecticut, Virginia, Colorado, and others) may have similar rights. Contact us to make a request and we will respond consistent with applicable law.
9. Data Retention
We retain your data for as long as your account is active. After account deletion, we remove your data from active systems within 30 days. Aggregate, anonymized data that cannot identify you may be retained indefinitely for analytics and product improvement purposes.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on the Service and, where appropriate, sending you an email notification. The effective date at the top of this page indicates when the policy was last revised.
11. Contact Us
If you have questions about this Privacy Policy or how your data is handled, contact us at:
Ten Eight Studios LLC
Email: support@dealboard.pro
Web: dealboard.pro