Privacy Policy

1. Who we are

Juno Maps, LLC d/b/a Smart Site Plan ("Smart Site Plan," "we," "us," or "our") provides the Smart Site Plan spatial intelligence platform. This Privacy Policy explains what personal data we collect, why, how we use and share it, how long we keep it, and the rights and choices you have. For personal data you upload or generate in your projects, you are the controller and we act as your processor under our Data Processing Agreement.

We are the controller for the account, billing, security, and usage data described below. Privacy is built into the platform, not bolted on.

2. Data we collect

Account and profile: name, email address, and authentication data when you create an account. If you enable security features, we store passkey credentials, two-factor settings, trusted-device records, and (only if you enable SMS two-factor) a phone number. Passkeys use your device's biometrics or screen lock to authenticate locally; your biometric data stays on your device and is never sent to or stored by us.

Project content: the maps, layers, features, drawings, measurements, comments, forms and submissions, files, and photos you create or upload.

Location and GPS data: when you use GPS or live location features, we process device location (latitude, longitude, and where available altitude, accuracy, heading, and speed), a reverse-geocoded place name, and session timestamps. Photos you upload may contain embedded GPS coordinates (EXIF). See Section 4.

Property and search lookups: the addresses, coordinates, and queries you submit to look up property, parcel, open-data, or search results.

AI inputs: when you use an AI feature, the content you submit for analysis (such as a site-plan PDF or a photo) and any context you provide. See Section 5.

Usage, device, and security data: log data, IP address, browser and operating-system type, device identifiers and fingerprints, login activity, and an approximate location (city or region) derived from your IP for security and audit purposes.

Billing data: subscription tier and status, billing email, and payment records. Payments are processed by Stripe; we do not store full card numbers.

Form and field submissions: when you build forms, we process the submissions you collect, which can include the respondent's name, answers, files, photos, and location, and which may come from people who do not have an account. For this data you are the controller and we are your processor (see Section 6 and our DPA).

Sharing and access logs: when you publish a share link, we record limited access information for it, which can include the viewer's IP address and time of access, so you can understand reach and so we can protect the Service.

Notifications: if you enable browser push notifications, we store the push subscription your browser provides. If you enrol in the academy, we store your course progress and, for any certificate you earn, your name, score, and a verification record, which is viewable by anyone you give the certificate's verification link to.

Communications: messages you send us, support requests, and feedback.

3. Where your data comes from and how we use it

We collect personal data directly from you, automatically from your device as you use the Service, from collaborators and administrators who invite you or share with you, from OAuth identity providers if you sign in with one (for example Google), and from security and fraud-prevention tools. We use personal data to:

• Provide, maintain, secure, and improve the Service and its features.
• Authenticate you, protect your account, and detect and prevent fraud, abuse, and security threats.
• Generate the maps, analyses, lookups, and AI outputs you request.
• Process payments and manage subscriptions.
• Send transactional messages (verification, security, billing, alerts, and notifications you have configured).
• Maintain audit logs and comply with legal obligations.

We never sell your personal data or business content, never use your project content to train AI models, never share your content with other customers, and never show advertising based on your content.

4. Location and GPS data

Precise location (GPS) is sensitive personal information under California law and sensitive data under most other state privacy laws, and we treat it with heightened care. We use it only to provide the location features you turn on, and we do not sell or share precise geolocation, and never use it for advertising.

Location features are optional and off until you enable them. Live location requires a device to opt in, typically by entering a pairing code or accepting an invitation, so a person is not tracked without a deliberate action on their device. Tracking runs only within sessions you start, not continuously in the background. Collected positions are associated with the project and the tracker you create.

You can switch location off in two ways: revoke the location permission in your device or browser settings, and end the session or delete the tracker in the app. Live location history is kept on a rolling 30-day window per tracker and is automatically pruned after that; deleting a tracker removes its positions and the place names derived from them. If you collect location data about other people, including field workers or form respondents, you are the controller and you are responsible for providing notice and obtaining any consent the law requires, as described in our Terms.

Photos you upload may include GPS coordinates in their metadata (EXIF), which can reveal the location of the person or place photographed. When you use photo-to-map analysis, those coordinates may be used to place the result on the map. Be mindful that a shared or exported photo may carry this location, and only upload content you are authorized to share.

5. AI processing

When you use an AI feature, such as importing a site plan or analyzing a photo, the content you submit is sent to our AI sub-processor (Anthropic) to generate the result. Our AI providers operate under agreements that prohibit them from retaining your content beyond the request or using it to train or improve their models. AI outputs are informational only; see our Terms for the limits on relying on them.

Our AI features analyze and summarize content you provide; they do not generate synthetic images of real people or places, and they assist you rather than decide for you. We do not use AI to make decisions that produce legal or similarly significant effects about you without human involvement, so the GDPR's rules on solely-automated decision-making do not apply. You review AI outputs and decide how to use them.

The AI sub-processors we use are listed in our Sub-Processor Register.

6. How and with whom we share data

We do not sell your personal data. We share it only:

• With sub-processors who process data on our behalf to run the Service, under contract and subject to confidentiality and security obligations. The current list is in our Sub-Processor Register.
• With collaborators and recipients you choose, including project members you invite and anyone you give a share link to.
• For legal reasons, when required by valid legal process or to protect the rights, safety, and security of our users, the public, or us.
• In a business transfer, such as a merger, acquisition, or sale of assets, in which case we will continue to protect your data and notify you of any change in control or applicable policy.

7. Cookies and analytics

Essential cookies keep you signed in and remember how you first arrived (a first-party attribution cookie). These are required for the Service to work and are never shared with advertisers.

Optional analytics: with your consent, we use PostHog to understand how the product is used. Analytics stays off until you opt in, and you can change your choice here at any time. We do not use advertising cookies and do not sell your data to advertising networks. Full detail is in our Cookie Policy.

8. Data retention

We keep personal data for as long as your account is active and as needed to provide the Service, then delete or anonymize it on the schedule below, except where longer retention is required by law or to resolve disputes and enforce our agreements:

• Account and project content: kept while your account is active.
• GPS and live location history: rolling 30-day window per tracker, then auto-pruned.
• Account and security audit logs: retained on a plan-based schedule (from 30 days on Free up to 12 months on Team, and for the life of the account on Enterprise), with older records aged out.
• Form submissions: we do not auto-delete them; you control their retention and can delete them at any time.
• Share access logs: kept for a limited, capped window per share link.
• Login activity and notifications: retained for a limited window for security and reference.
• Property, search, and AI lookups: the result is transient; we do not keep your query content beyond what is needed to deliver and meter the feature.
• Billing records: retained as required for tax and accounting.

When you delete your account, we delete your data within 30 days and purge encrypted backups within 90 days, except records we must keep by law.

9. Security

We protect your data with encryption in transit (TLS) and at rest, strong password hashing, tamper-evident audit logging, rate limiting and account lockout, optional two-factor authentication and passkeys, role-based access controls, and continuous monitoring. Full detail is on our Security Practices page. No system is perfectly secure, but we work to protect your data and to respond quickly if something goes wrong.

For personal data we control, if a breach is likely to result in a risk to your rights, we will notify the competent supervisory authority without undue delay and, where feasible, within 72 hours of becoming aware of it, and we will notify affected individuals where the breach is likely to result in a high risk to them. When we act as your processor, we notify you so that you can meet your own obligations, as set out in our Data Processing Agreement.

10. Your rights and choices

Depending on where you live, you have some or all of the following rights over your personal data:

• Access a copy of the data we hold about you.
• Export your data in a portable format (Settings then Export Data).
• Rectify inaccurate data.
• Delete your account and associated data (Settings then Delete Account).
• Restrict or object to certain processing.
• Withdraw consent where we rely on it, without affecting prior processing.

You can exercise these rights in-app or through our privacy request page, or by emailing privacy@smartsiteplan.com. You may also use an authorized agent. We will verify your identity and respond within the time required by law. If we decline your request, you may appeal by replying to our response or contacting privacy@smartsiteplan.com; if we deny the appeal, your state may let you complain to its attorney general. We honor browser Global Privacy Control signals as a request to keep optional analytics off. If you are in the European Economic Area or the United Kingdom, you also have the right to lodge a complaint with your local data protection authority (in the UK, the Information Commissioner's Office).

11. Legal bases (GDPR)

Where the GDPR applies, we process personal data on these bases:

• Performance of a contract to provide, maintain, and support the Service you signed up for, process payments, and manage your account.
• Legitimate interests, where we have identified a specific interest balanced against your rights: network and information security, fraud and abuse prevention, protecting and enforcing our rights, and understanding and improving how the Service is used (for analytics we rely on consent instead).
• Legal obligation, to comply with applicable law, including tax, accounting, and lawful requests.
• Consent, for optional analytics, for the collection of precise location through the features you turn on, and for any other processing where we ask for it. You can withdraw consent at any time without affecting prior processing.

Providing your account and billing data is necessary to create and operate your account; without it we cannot provide the Service. Optional data (such as a two-factor phone number, analytics, or push notifications) is not required, and declining it only turns off the related feature.

12. California privacy rights (CCPA/CPRA)

California residents have the right to know, delete, and correct their personal information, to data portability, to opt out of the sale or sharing of personal information, and to be free from discrimination for exercising these rights. We do not sell or share your personal information for monetary consideration or for cross-context behavioral advertising, and we have not done so in the preceding 12 months.

In the preceding 12 months we disclosed identifiers and related categories to service providers strictly to run the Service (for example cloud infrastructure, email delivery, payments, and error monitoring), under contracts that limit their use of the data. You can exercise your rights, including the right to opt out, through our privacy request page or by emailing privacy@smartsiteplan.com. We will not discriminate against you for doing so, and we honor Global Privacy Control signals.

Sensitive personal information. The main category of sensitive personal information we process is precise geolocation, and only when you turn on a location feature. We use it solely to provide that feature and the security and support around it, which are purposes for which the law does not require a "Limit the Use of My Sensitive Personal Information" option; we do not use or disclose it to infer characteristics about you. Most other US state privacy laws treat precise geolocation as sensitive data and require your consent before it is processed, which we obtain through the device opt-in described in Section 4.

13. International data transfers

Your data is processed in the United States, where our infrastructure is located. For transfers of personal data from the European Economic Area, the United Kingdom, or Switzerland, we rely on the European Commission's Standard Contractual Clauses, together with the United Kingdom International Data Transfer Addendum and the Swiss adaptations where they apply, and we add supplementary measures where appropriate. Where a recipient is certified under the EU-US Data Privacy Framework (and its UK and Swiss extensions), we may rely on that framework for transfers to it. You can request a copy of the relevant safeguard by emailing privacy@smartsiteplan.com. Our sub-processors and their locations are listed in our Sub-Processor Register.

14. Children's privacy

The Service is not directed to children under 18, and we do not knowingly collect personal data from them. If you believe a child has provided us personal data, contact us and we will delete it.

15. Changes and contact

We may update this Privacy Policy from time to time. For material changes we will update the version and date at the top of this page and, where appropriate, notify you. For privacy questions or to exercise your rights, contact privacy@smartsiteplan.com.