Privacy Policy

FacilitySight, LLC (“FacilitySight,” “we,” “our,” or “us”) is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our facility management platform, website, and related services (collectively, the “Services”).

By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

We collect information in several ways depending on how you interact with our Services. Understanding what we collect helps you make informed decisions about your privacy.

Information You Provide Directly

• Account Information: Name, email address, phone number, job title, and organization details when you create an account or contact us.
• Facility Data: Information about facilities you manage, including location, floor plans, capacity settings, and operational configurations.
• Communication Records: Messages, support requests, and feedback you send to us through our platform or other channels.
• Payment Information: Billing details and payment method information when you subscribe to our Services (processed securely by our payment providers).

Information Collected Automatically

• Occupancy Data: Aggregated, anonymized occupancy metrics collected through sensors deployed in your facilities, including foot traffic patterns and space utilization.
• Device Information: Browser type, operating system, device identifiers, and IP address when you access our platform.
• Usage Analytics: Pages visited, features used, time spent on the platform, and interaction patterns to help us improve our Services.
• Cookies and Similar Technologies: Information collected through cookies, web beacons, and similar technologies as described in our Cookie Policy.

Information from Third Parties

We may receive information about you from third parties, including business partners, integration providers, and publicly available sources. This may include organization details, contact information, or data from services you connect to our platform.

We use the information we collect for legitimate business purposes, always striving to balance our operational needs with your privacy rights.

Service Delivery

• Provide, maintain, and improve our facility management platform
• Process your requests and deliver real-time occupancy insights
• Generate reports, analytics, and forecasting data for your facilities
• Personalize your experience and remember your preferences

Communication

• Send technical notices, security alerts, and support messages
• Respond to your inquiries, comments, and support requests
• Provide product updates, newsletters, and promotional materials (with your consent)
• Notify you about changes to our Services or policies

Business Operations

• Process transactions and manage your subscription
• Analyze usage patterns to improve our platform and develop new features
• Conduct research and development to enhance our Services
• Ensure the security and integrity of our platform

Legal and Compliance

• Comply with applicable laws, regulations, and legal processes
• Enforce our Terms of Service and other agreements
• Protect against fraudulent, unauthorized, or illegal activity
• Establish, exercise, or defend legal claims when necessary

We do not sell your personal information. We may share your information only in the following circumstances:

Service Providers

We engage trusted third-party companies and individuals to perform services on our behalf, such as cloud hosting, payment processing, analytics, and customer support. These providers have access only to the information necessary to perform their functions and are bound by contractual obligations to protect your data.

Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have regarding your information.

Legal Requirements

We may disclose your information if required to do so by law or in response to valid legal requests by public authorities, including to meet national security or law enforcement requirements.

With Your Consent

We may share your information with third parties when you have given us explicit consent to do so, such as when integrating with other services or participating in co-marketing activities.

We implement comprehensive security measures to protect your information from unauthorized access, alteration, disclosure, or destruction.

Technical Safeguards

• Encryption: All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption.
• Access Controls: Role-based access controls and multi-factor authentication protect access to sensitive systems and data.
• Infrastructure Security: Our platform is hosted on enterprise-grade cloud infrastructure with SOC 2 Type II certification.
• Monitoring: Continuous security monitoring and regular vulnerability assessments help us identify and address potential threats.

Organizational Measures

• Regular security training for all employees handling personal data
• Strict confidentiality agreements with all staff and contractors
• Incident response procedures for prompt handling of security events
• Regular security audits and penetration testing by third-party experts

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to implementing industry best practices.

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention Periods

• Account Data: Retained for the duration of your account and for up to 90 days after account deletion to allow for recovery.
• Occupancy Data: Raw sensor data is aggregated and anonymized within 30 days. Aggregated analytics are retained according to your subscription plan.
• Usage Logs: System logs are retained for 12 months for security and troubleshooting purposes.
• Billing Records: Financial records are retained for 7 years to comply with tax and accounting requirements.

When your information is no longer needed, we will securely delete or anonymize it so that it can no longer be associated with you.

Depending on your location, you may have certain rights regarding your personal information. We are committed to honoring these rights and making it easy for you to exercise them.

Available Rights

• Access: Request a copy of the personal information we hold about you.
• Correction: Request that we correct inaccurate or incomplete personal data.
• Deletion: Request that we delete your personal information, subject to certain exceptions.
• Portability: Request a machine-readable copy of your data to transfer to another service.
• Objection: Object to certain processing of your personal information.
• Restriction: Request that we restrict processing of your personal data in certain circumstances.
• Withdrawal of Consent: Where processing is based on consent, withdraw your consent at any time.

Exercising Your Rights

To exercise any of these rights, please contact us at privacy@facilitysight.io. We will respond to your request within 30 days. We may need to verify your identity before processing certain requests.

FacilitySight is based in the United States, and we process and store information on servers located in the United States. If you are accessing our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States.

Transfer Mechanisms

When we transfer personal information from the European Economic Area (EEA), United Kingdom, or Switzerland to the United States, we rely on:

• Standard Contractual Clauses approved by the European Commission
• Data Processing Agreements with appropriate safeguards
• Your explicit consent where appropriate

By using our Services, you consent to the transfer of your information to the United States and other jurisdictions where we operate, which may have different data protection laws than your country of residence.

Our Services are not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete that information as quickly as possible.

If you are a parent or guardian and believe that your child has provided us with personal information, please contact us at privacy@facilitysight.io, and we will work to delete the information from our systems.

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will:

• Update the “Last updated” date at the top of this policy
• Post a prominent notice on our website or within the platform
• Send you an email notification if the changes are significant

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our Services after any changes indicates your acceptance of the updated Privacy Policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

For EU/EEA residents, you also have the right to lodge a complaint with your local data protection authority if you believe we have not handled your information in accordance with applicable law.