GridHome Group LLC (“GridHome Group,” “we,” “us,” or “our”) operates websites, platforms, and related services made available under the GridHome Group, LocalProRepairs, TradeHomeBase, and TradeFieldWork brands, including gridhomegroup.com, tradehomebase.com, tradefieldwork.com, and localprorepairs.com, together with related webpages, applications, and support services (collectively, the “Services”).

This Privacy Policy explains how we collect, use, disclose, and protect personal information when you use our Services.

1. Scope

This Privacy Policy applies to personal information we collect:

• when you visit our websites;
• when you create an account or use the Services;
• when you communicate with us;
• when you request demos, support, or information from us; and
• when we otherwise interact with you in connection with the Services.

This Privacy Policy does not apply to third-party websites, services, or businesses, including contractors, subcontractors, homeowners, payment processors, advertising providers, or integrations that may interact with you through or in connection with the Services. Those parties operate under their own terms and privacy policies.

2. Personal Information We Collect

Depending on how you interact with the Services, we may collect the following categories of personal information.

a. Contact and account information

• name
• email address
• phone number
• mailing address, if provided
• username and login-related information
• company name
• job title and business profile details

b. Transaction and billing information

• subscription details
• billing contact information
• payment status, invoices, and transaction history

Full payment card details are typically processed by our third-party payment providers, not stored by us in full.

c. Project, document, and user-submitted information

• project information
• job details
• bids, estimates, proposals, contracts, invoices, RFIs, submittals, change orders, closeout records, and related files
• communications, messages, notes, attachments, and other content submitted through the Services

d. Usage, device, and technical information

• IP address
• browser type
• operating system
• device identifiers
• app, log, and diagnostic data
• pages viewed
• dates and times of access
• referring URLs
• interactions with features, emails, or support tools

e. Marketing and communications information

• preferences regarding marketing communications
• inquiry history
• demo requests
• survey responses
• support requests and correspondence

f. Information from cookies and similar technologies

We may collect information through cookies, pixels, SDKs, local storage, and similar technologies as described below.

3. Sources of Personal Information

We collect personal information:

• directly from you;
• from your employer or organization if it creates or administers your account;
• from other users who add you to projects, workspaces, or communications;
• automatically from your devices and browsers when you use the Services; and
• from service providers, integrations, or business partners that support our operations, subject to applicable law.

4. How We Use Personal Information

We may use personal information to:

• provide, operate, maintain, and improve the Services;
• authenticate users and secure accounts;
• process subscriptions, payments, renewals, and related transactions;
• create, manage, and administer accounts and customer relationships;
• support collaboration, communications, and workflow features within the Services;
• respond to inquiries, requests, and customer support issues;
• send service-related messages, product updates, administrative communications, and security notices;
• send marketing communications where permitted by law;
• personalize and improve user experience;
• monitor performance, analyze usage, troubleshoot issues, and develop new features;
• detect, investigate, and prevent fraud, abuse, unauthorized access, and other harmful activity;
• enforce our Terms and other agreements;
• comply with legal obligations; and
• protect the rights, safety, and property of GridHome Group, our users, and others.

We may also create and use aggregated or de-identified information that does not reasonably identify you for analytics, benchmarking, product improvement, and other lawful business purposes.

5. How We Disclose Personal Information

We may disclose personal information in the following circumstances:

a. Service providers and contractors

We may disclose personal information to vendors and service providers that perform services on our behalf, such as hosting, infrastructure, analytics, customer support, communications, email delivery, document storage, security, and payment processing.

b. Within your organization or workspace

If your account is part of an organization, project, or managed workspace, authorized administrators, project participants, homeowners, contractors, or other users may be able to access information associated with that workspace according to the applicable permissions and workflows.

c. At your direction

We may disclose information when you instruct us to do so, use integrations, invite users, share documents, or otherwise direct the Services to transmit information.

d. Legal compliance and protection

We may disclose information if we believe doing so is necessary or appropriate to:

• comply with applicable law, legal process, or governmental request;
• enforce our agreements;
• detect, prevent, or respond to fraud, abuse, or security incidents; or
• protect the rights, property, safety, and security of GridHome Group, users, or others.

e. Corporate transactions

We may disclose information in connection with an actual or proposed merger, acquisition, financing, asset sale, reorganization, bankruptcy, or similar corporate transaction.

6. Cookies and Similar Technologies

We and our service providers may use cookies and similar technologies to:

• keep users signed in and maintain sessions;
• remember preferences and settings;
• measure traffic and usage patterns;
• improve performance and functionality;
• understand how users interact with our websites and Services; and
• support communications, analytics, and, where permitted, marketing.

You can manage cookies through your browser settings and, where available, through cookie or consent tools on our websites. Blocking certain cookies may affect functionality.

7. Marketing Communications

We may send you service-related communications that are necessary to provide the Services, such as billing notices, security alerts, account messages, and product updates.

Where permitted by law, we may also send you marketing emails. You can opt out of marketing emails by using the unsubscribe link in those messages or by contacting us. Opting out of marketing messages does not affect service-related communications.

8. Data Retention

We retain personal information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Services, maintain accounts, comply with legal obligations, resolve disputes, enforce agreements, protect security, and support backup and archival processes.

Retention periods vary based on the type of information and the context in which it was collected. For example:

• account and contact information is generally retained for the duration of the account relationship and a reasonable period thereafter;
• billing and transaction records may be retained as needed for accounting, tax, audit, chargeback, and legal compliance purposes;
• project files and customer-submitted content may be retained for the duration of the relevant account or workspace, a limited retrieval period after termination, and then according to our backup and deletion cycles;
• logs, device data, and security records may be retained as needed for fraud prevention, incident response, debugging, and service integrity; and
• support communications may be retained as needed to document requests, resolve issues, and administer the customer relationship.

When we no longer need personal information, we will delete, de-identify, or anonymize it, unless continued retention is required or permitted by law.

9. Security

We use commercially reasonable administrative, technical, and organizational safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. However, no method of transmission over the internet or method of storage is completely secure, and we cannot guarantee absolute security.

You are responsible for safeguarding your credentials and for maintaining your own backups of information you consider important.

10. International Transfers

We are based in the United States, and we may process and store personal information in the United States and other countries where we or our service providers operate.

If you access the Services from outside the United States, your information may be transferred to, stored in, and processed in countries that may not provide the same level of data protection as your home jurisdiction. Where required by applicable law, we will implement appropriate safeguards for cross-border transfers.

11. Additional Rights for Certain Jurisdictions

Depending on your jurisdiction, you may have the right to:

• know whether we process your personal information;
• access personal information we hold about you;
• request correction of inaccurate personal information;
• request deletion of personal information, subject to legal exceptions;
• object to or restrict certain processing;
• request a portable copy of certain personal information;
• withdraw consent where processing is based on consent; and
• appeal a denied request where applicable law provides that right.

To submit a privacy request, contact us at [email protected]. We may need to verify your identity before processing your request. You may also use an authorized agent where permitted by law, subject to verification of the request and the agent’s authority.

If you are located in the EEA or UK, you may also have the right to lodge a complaint with your local data protection authority.

12. Legal Bases for EEA and UK Users

If the GDPR or similar laws apply, we generally process personal data on one or more of the following legal bases:

• performance of a contract or taking steps at your request before entering into a contract;
• our legitimate interests, such as operating, securing, improving, and supporting the Services, preventing fraud, and managing our business;
• compliance with legal obligations; and
• your consent, where required by law.

If we rely on consent, you may withdraw it at any time, but this will not affect the lawfulness of processing before withdrawal.

13. California Notice at Collection and California Privacy Rights

This section applies to California residents and supplements the rest of this Privacy Policy.

At or before the point of collection, California law requires businesses to disclose the categories of personal information collected, the purposes for collection and use, whether the information is sold or shared, and the retention period or criteria used to determine it.

Categories of personal information we may collect

• identifiers, such as name, email address, phone number, account name, IP address, and similar identifiers;
• customer records information, such as billing contact information and transaction-related records;
• commercial information, such as subscription records and purchase history;
• professional or employment-related information, such as company name, role, and business details;
• internet or other electronic network activity information, such as usage logs, device information, and interactions with our websites and Services;
• user-submitted content, including project files, documents, communications, and workflow records you choose to upload or create through the Services; and
• in limited cases, sensitive personal information, such as account credentials or information necessary to secure access to your account.

Purposes for collection and use

We collect and use these categories of information for the business and commercial purposes described in Section 4 of this Privacy Policy, including providing the Services, processing payments, securing accounts, communicating with users, improving the Services, preventing fraud, and complying with law.

Disclosure of personal information

We may disclose the categories above to service providers, contractors, advisors, affiliated entities involved in corporate transactions, and other parties as described in Section 5 of this Privacy Policy.

Sale or sharing

We do not sell personal information for monetary consideration. We do not knowingly disclose customer account or project data for cross-context behavioral advertising. If we use cookies or similar technologies on our marketing websites in a way that constitutes “sale” or “sharing” under applicable law, we will provide any additional notice and opt-out mechanism required by law.

Sensitive personal information

We do not use or disclose sensitive personal information for the purpose of inferring characteristics about individuals.

Retention

We retain each category of personal information for as long as reasonably necessary and proportionate for the purposes for which it was collected or processed, including based on the criteria described in Section 8 of this Privacy Policy.

California rights

California residents may have the right to:

• know the categories of personal information collected, sources, purposes, and categories of recipients;
• request access to specific pieces of personal information, subject to legal limitations;
• request correction of inaccurate personal information;
• request deletion of personal information, subject to exceptions;
• opt out of sale or sharing, if applicable; and
• be free from unlawful discrimination for exercising privacy rights.

To exercise California privacy rights, contact us at [email protected].

14. Children’s Privacy

The Services are not directed to children under 18, and we do not knowingly collect personal information directly from children under 18. If we learn that we have collected personal information from a child in violation of applicable law, we will take steps to delete it.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated Privacy Policy and revise the effective date. Where required by law, we will provide additional notice.

16. Contact Us

If you have questions about this Privacy Policy or our privacy practices, contact us at:

GridHome Group LLC
New York, NY
[email protected]