Blue Collar Command CenterBlue CollarCommand Center
Sign InGet Started
Legal

Privacy Policy

Last updated: March 25, 2026

01

What We Collect

We collect information you provide directly:

  • Account data: Company name, email address, password (stored as a secure hash — we never store plain text passwords).
  • Time card data: Employee names, job names, tasks performed, hours worked, dates, and start/end times.
  • Location data: If your company has enabled real-time clock-in/out, we collect GPS coordinates (latitude and longitude) at the time of clock-in and clock-out. We also calculate the distance between these points for audit purposes. Location data is only collected when an employee actively clocks in or out — we do not track location continuously.
  • Authentication data: If you use passkey (Face ID or fingerprint) authentication, we store a cryptographic public key associated with your device. We do not store raw biometric data of any kind — your biometrics never leave your device.
  • Usage data: Basic server logs including IP addresses and request timestamps for security purposes.
02

How We Use Your Data

  • To provide and operate the Service — storing and displaying your time card data.
  • To send automated reports to your designated email address.
  • To send account-related emails (verification, password resets, important notices).
  • To calculate job site distance for AI-powered audit and anomaly detection.
  • To power AI features including time entry audits, anomaly flagging, and bid estimates.
  • To maintain security and prevent fraud or abuse.

We do not sell your data. We do not use your data for advertising. We do not share your data with third parties except as described below.

03

Third-Party Services

We use the following third-party services to operate:

  • Resend: Email delivery service. Your email address is transmitted to send you reports and notifications. Resend Privacy Policy.
  • Anthropic: AI processing provider. Time card data (including employee names, hours, job names, and GPS distance metrics) may be transmitted to Anthropic to power audit, anomaly detection, and bid estimation features. Anthropic processes this data solely to fulfill our requests and does not use it to train AI models. Anthropic Privacy Policy.
  • Stripe: Payment processing. If you subscribe to a paid plan, your payment information is handled directly by Stripe. We do not store your full card number or payment credentials. Stripe Privacy Policy.
  • Hostinger: Our server hosting provider. Your data is stored on servers located in the United States.
04

Location Data

GPS coordinates are collected only at clock-in and clock-out events when real-time mode is enabled by your company. We use this data to calculate job site distance for audit purposes. Location data is stored as part of the time card record and subject to the same retention policy as all time card data. We do not share raw GPS coordinates with any third party except as needed to operate the Service (e.g., address geocoding via Nominatim, an open-source mapping service with no account or API key required).

05

Employee Data

If your employer uses Blue Collar Command Center to track your hours, your employer (the company account holder) controls your data. We process employee data on behalf of the company. Employees who have questions about their data, including location data collected at clock-in/out, should contact their employer.

06

Data Security

We take security seriously:

  • All data is transmitted over HTTPS (encrypted in transit).
  • Passwords are hashed using bcrypt and never stored in plain text.
  • Passkey authentication uses public-key cryptography; raw biometric data never leaves your device.
  • Our server uses a firewall and intrusion detection.
  • Access to production data is restricted.

No system is 100% secure. In the event of a data breach that affects your data, we will notify you as required by applicable law.

07

Data Retention

We retain your data for as long as your account is active. When you delete your account, all associated data (time entries, employees, jobs, tasks, location records, and authentication credentials) is permanently deleted from our systems within 30 days.

08

Your Rights

You have the right to:

  • Access: your data — available in your dashboard at any time.
  • Export: your data — download PDF or CSV reports from your dashboard.
  • Delete: your account and all associated data — available in Settings.
  • Correct: inaccurate data — edit entries directly in your dashboard.
  • Object: to location collection — contact your employer to disable GPS tracking for your account.
09

Cookies

We use a single session cookie to keep you logged in. We do not use tracking cookies or third-party analytics cookies. No cookie consent banner is needed because we only use essential session cookies.

10

Children's Privacy

The Service is not directed to children under 18. We do not knowingly collect data from children.

11

Changes to This Policy

We may update this policy. We will notify you of material changes via email. The date at the top of this page reflects when it was last updated.

12

Contact

Privacy questions or data requests: support@bluecollarcommandcenter.com