Privacy Policy - FastBid

1. Introduction

FastBid Inc. (“Company,” “we,” “us”) operates the FastBid web application at fastbid.io and app.fastbid.io (the “Service”). This Privacy Policy explains how we collect, use, store, and protect your information when you use our Service.

By using FastBid, you consent to the practices described in this policy.

2. Information We Collect

2.1 Account Information

When you register, we collect:

Name

Email address

Company name (optional)

Password (stored as a salted hash, never in plaintext)

2.2 Payment Information

When you subscribe to a paid plan, our payment processor (Stripe) collects:

Credit/debit card number

Billing address

Payment method details

We do not store your full credit card number on our servers. Payment processing is handled entirely by Stripe, subject to Stripe’s privacy policy.

2.3 User Content

When you use the Service, we store:

Construction plans (PDF files) you upload

Takeoff data (measurements, counts, markups)

Estimation data (quantities, unit costs, estimates)

Exported files you generate

Project names and organizational data

2.4 Usage Data

We automatically collect:

IP address

Browser type and version

Device information

Pages visited and features used

Session duration and timestamps

Referring URL

General geographic location (city/region level, derived from IP)

2.5 Cookies

We use essential cookies for authentication and session management. We may use analytics cookies (e.g., Google Analytics) to understand how the Service is used. You can disable non-essential cookies through your browser settings.

3. How We Use Your Information

We use your information to:

Provide, operate, and maintain the Service

Process your subscription and payments

Store and render your construction plans and project data

Send account-related communications (billing, security, service updates)

Respond to support requests

Analyze usage patterns to improve the Service

Detect and prevent fraud, abuse, or security incidents

Comply with legal obligations

We do not:

Sell your personal information to third parties

Use your construction plans or project data for any purpose other than providing the Service to you

Share your User Content with other users unless you explicitly enable sharing

Use your data for advertising or marketing by third parties

4. How We Store and Protect Your Information

4.1 Infrastructure

Your data is stored on Amazon Web Services (AWS) infrastructure located in the United States. Construction plans and project data are stored in encrypted storage (AES-256 at rest). Data in transit is encrypted using TLS 1.2 or higher.

4.2 Security Measures

We implement industry-standard security measures including:

Encrypted data storage and transmission

Secure authentication with hashed passwords

Access controls limiting employee access to user data

Regular security reviews

4.3 Data Retention

Active accounts: We retain your data for the duration of your account.

Cancelled accounts: We retain your data for 30 days after cancellation to allow for data export, then permanently delete it.

Inactive accounts: Accounts inactive for 12+ months may be deleted with 30 days’ prior notice.

Usage data and logs: Retained for up to 24 months for analytics and security purposes, then deleted or anonymized.

5. Third-Party Services

We use the following third-party services that may process your information:

Each third-party provider is subject to its own privacy policy. We select providers that maintain appropriate security and privacy standards.

6. Your Rights

You have the right to:

Access your personal information stored by us

Export your data at any time using the Service’s export features

Correct inaccurate account information through your account settings

Delete your account and associated data by contacting us or through account settings

Opt out of non-essential communications by using the unsubscribe link in our emails

California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act, including the right to know what personal information we collect, the right to request deletion, and the right to opt out of the sale of personal information. We do not sell personal information. To exercise these rights, contact us at privacy@fastbid.io.

EU/EEA Residents (GDPR)

If you are located in the EU/EEA, you have additional rights under the General Data Protection Regulation, including the right to data portability, the right to restrict processing, and the right to lodge a complaint with a supervisory authority. Our legal basis for processing is contract performance (providing the Service) and legitimate interest (improving the Service). To exercise these rights, contact us at privacy@fastbid.io.

7. Children’s Privacy

FastBid is not intended for use by individuals under the age of 18. We do not knowingly collect information from children. If we learn that we have collected personal information from a child under 18, we will delete that information promptly.

8. Data Breach Notification

In the event of a data breach that affects your personal information, we will notify you via email within 72 hours of becoming aware of the breach and will comply with all applicable breach notification laws.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notification at least 30 days before taking effect. The “Last Updated” date at the top of this policy indicates when the most recent changes were made.

10. Contact Us

For privacy-related questions, data requests, or concerns:

FastBid Inc. * Email: privacy@fastbid.io

Website: [https://fastbid.io](https://fastbid.io)

For data deletion or access requests, please email privacy@fastbid.io with the subject line “Privacy Request” and include your registered email address.