Legal

    Privacy Policy

    Last updated: January 1, 2025

    Vukapp LLC ("we," "our," or "us") operates the IFS InspectConnect platform and the website at https://infinifieldsservices.com (collectively, the "Services"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you access or use our Services. Please read this policy carefully. By using our Services, you agree to the terms described here.

    1. Information We Collect

    1.1 Information You Provide Directly

    • Account Information: Name, email address, phone number, company name, and password when you register for an account.
    • Inspection Data: Property or asset details, addresses, inspection forms, photos, videos, and notes submitted through the platform.
    • Payment Information: Billing details and payment method information processed through our third-party payment provider (Stripe). We do not store raw card data.
    • Communications: Messages sent through the platform, support inquiries, and feedback you provide to us.
    • Integration Credentials: API keys or tokens you provide to connect third-party systems (e.g., your LOS or CRM). These are encrypted at rest.

    1.2 Information Collected Automatically

    • Log Data: IP address, browser type, pages visited, time and date of visits, and referring URLs.
    • Device Information: Device type, operating system, and unique device identifiers.
    • Cookies and Similar Technologies: We use session cookies necessary for authentication and platform functionality. See Section 7 for details.
    • Location Data: When inspectors use the mobile app, approximate GPS location may be collected for field assignment and routing purposes (only when permission is granted by the device).

    1.3 Information from Third Parties

    • Data received from integrated Loan Origination Systems (LOS) or CRM platforms when you configure a connection, such as borrower name, loan number, and property address.
    • Calendar and scheduling data from Google Calendar when you grant permission through OAuth.

    2. How We Use Your Information

    We use the information we collect to:

    • Provide, operate, and maintain the IFS InspectConnect platform and its features.
    • Create and manage user accounts and authenticate access.
    • Schedule, assign, and track field inspections and related workflows.
    • Generate inspection reports, invoices, and supporting documentation.
    • Send transactional notifications (email and SMS) such as assignment alerts, status updates, and report deliveries.
    • Process payments and manage billing.
    • Facilitate integrations with your LOS, CRM, or other third-party systems.
    • Analyze usage patterns to improve and optimize the Services.
    • Detect, investigate, and prevent fraud, abuse, and security incidents.
    • Comply with applicable legal obligations.

    3. How We Share Your Information

    We do not sell your personal information. We may share information in the following circumstances:

    • Service Providers: We share data with trusted third-party vendors who assist in operating our platform, including cloud hosting (Neon Database, Google Cloud Storage), communication services (Twilio for SMS, SendGrid for email), payment processing (Stripe), and video communication (WebRTC/TURN via Twilio).
    • Your Organization: Within the platform, data is visible to authorized roles in your organization (administrators, coordinators, inspectors, quality control staff, and clients) based on role-based access controls.
    • Integrated Systems: When you configure a LOS or CRM integration, we share inspection status and report URLs with the connected system as directed by your configuration.
    • Legal Requirements: We may disclose information if required by law, subpoena, or other legal process, or if we believe disclosure is necessary to protect the rights, property, or safety of us, our users, or the public.
    • Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.

    4. Data Retention

    We retain your information for as long as your account is active or as necessary to provide the Services and fulfill the purposes outlined in this policy. Inspection reports, photos, and associated documentation are retained for a minimum period required by applicable regulations or as specified in your service agreement. You may request deletion of your account and associated data by contacting us at Support@infinifieldsservices.com. Note that certain data may be retained where required by law, for dispute resolution, or to enforce our agreements.

    5. Data Security

    We implement reasonable administrative, technical, and physical safeguards to protect your information from unauthorized access, use, alteration, or disclosure. These measures include:

    • Encryption of data in transit using TLS (HTTPS).
    • Encryption of sensitive credentials (API keys, webhook secrets) at rest.
    • Role-based access control ensuring users can only access data relevant to their role.
    • Multi-tenant data isolation preventing cross-client data access.
    • JWT-based authentication with server-side session validation.

    No method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

    6. Your Rights

    Depending on your location and applicable law, you may have the following rights regarding your personal information:

    • Access: Request a copy of the personal data we hold about you.
    • Correction: Request correction of inaccurate or incomplete data.
    • Deletion: Request deletion of your personal data, subject to legal retention requirements.
    • Portability: Request that your data be provided in a structured, machine-readable format.
    • Objection / Restriction: Object to or request restriction of certain processing activities.
    • Withdraw Consent: Where processing is based on consent, withdraw that consent at any time.

    To exercise any of these rights, contact us at Support@infinifieldsservices.com. We will respond within 30 days.

    7. Cookies and Tracking Technologies

    We use cookies and similar technologies for the following purposes:

    • Strictly Necessary: Session cookies required for authentication, security, and core platform functionality. These cannot be disabled without breaking the Service.
    • Functional: Cookies that remember your preferences (e.g., theme settings, selected filters) to improve your experience.

    We do not use advertising or tracking cookies from third-party ad networks. You can configure your browser to refuse cookies, but this may affect certain features of the platform.

    8. Third-Party Links and Services

    Our platform may contain links to or integrate with third-party websites and services (e.g., your LOS provider, Google Calendar). This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party services you connect to or access through our platform.

    9. Children's Privacy

    The Services are intended for business users and are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, contact us immediately at Support@infinifieldsservices.com.

    10. Changes to This Policy

    We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page and, where required by law, notify you by email or through the platform. Your continued use of the Services after any changes constitutes your acceptance of the updated policy.

    11. Contact Us

    If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: