Privacy commitment

Privacy Policy

Review Our Policy to Understand Your Rights

Effective Date: April 1, 2025

Last Updated: April 1, 2025

1. Introduction

Welcome to PRO Drywall Repair ("we," "us," "our"). We are a sole proprietorship providing drywall repair and related services in California. This Privacy Policy outlines how we collect, use, disclose, and protect the personal information of our customers ("you," "your") and explains your rights regarding your information under California law, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA).

We are committed to protecting your privacy. This policy applies to information we collect when you interact with us, request or receive our services, visit our website [if applicable, insert website address], or communicate with us via phone, email, text message, or other means.

Key Terms:

● Personal Information: Information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular California consumer or household.

● Sensitive Personal Information: A specific category of Personal Information under CPRA, including government identifiers (like SSN, driver's license), precise geolocation, racial or ethnic origin, religious beliefs, union membership, contents of mail/email/text messages (unless we are the intended recipient), genetic data, and biometric information.

● Business Purpose: The use of personal information for operational purposes, such as providing services, communication, security, processing payments, legal compliance, and internal operations.

● Sell/Sharing: As defined under CCPA/CPRA, "selling" generally involves disclosing personal information for monetary or other valuable consideration. "Sharing" generally means disclosing personal information for cross-context behavioral advertising.

2. Information We Collect

We collect Personal Information necessary to provide our services and operate our business. The categories of information we may collect include:

● Identifiers:Name, phone number, email address, physical address (service location, billing address).

● Customer Records Information: Information gathered during service provision, such as project details, service history, payment information (e.g., transaction details via payment processors, but typically not full credit card numbers which are handled by processors), communication records (emails, text message logs, call notes).

● Visual Information: Photos or videos of work areas provided by you or taken by us (with permission where required) for estimates, project documentation, or service completion records.Internet or Network Activity (If applicable, e.g., if you have a website contact form):Information related to website interactions, such as IP address, browser type, contact form submissions.

● Geolocation Data (Generally limited): Service location address information. We do not typically collect precise real-time geolocation data.

● Inferences: We may draw inferences from the information collected to understand preferences or service needs (e.g., inferring future service needs based on past projects).

Sources of Information:

● Directly from You: When you contact us, request an estimate, schedule service, provide project details, make payments, or communicate with us.

● Referring Parties: Such as referring contractors, property managers, or existing clients who provide your contact information (typically with your prior awareness or consent).

● Automatically (If applicable, e.g., website):Through website cookies or analytics tools if you interact with our online presence.

3. How We Use Your Information

We use your Personal Information for the following business purposes:

● Providing Services: To provide estimates, schedule and perform drywall repairs, manage projects, and fulfill our contractual obligations.

● Communication: To communicate with you about your inquiries, estimates, project status, scheduling, billing, and customer service matters via phone, email, and text message (see Section 7 for text message specifics).

● Processing Payments: To facilitate billing and payment processing through third-party payment processors.

● Legal & Regulatory Compliance: To comply with applicable laws, regulations, permits, tax requirements, warranties, and legal processes.

● Business Improvement: To analyze service effectiveness, gather testimonials (with your explicit consent), refine our offerings, and for internal operational purposes.

● Marketing & Promotions (With Consent): To send occasional service updates or promotional information only if you have provided explicit consent (e.g., opting into a marketing list). See Section 7 regarding text message marketing consent.

4. How We Share Your Information

We do not "Sell" or "Share" your Personal Information as defined under CCPA/CPRA (i.e., for monetary value or cross-context behavioral advertising). We may disclose your Personal Information to the following categories of third parties for legitimate business purposes:

● Service Providers: Third parties who perform services on our behalf, such as:

○ Subcontractors: If needed to complete specific aspects of a project (we will inform you if subcontractors are involved).
○ Scheduling Software Providers: To manage appointments and project timelines.
○ Cloud Storage Providers: For storing project documentation and business records securely.

○ Communication Providers: Including email service providers and SMS/text messaging service providers (aggregators) essential for message delivery (See Section 7).

● Payment Processors: Companies like Stripe, PayPal, Square, or others to securely process your payments. These processors handle your payment card information directly according to their own privacy policies and security standards.

● Professional Services: Accountants, legal counsel, or consultants providing professional advice and services to our business.

● Government Agencies: When legally required, such as for permits, tax reporting, or in response to valid legal processes (e.g., subpoenas, court orders).

We require our service providers by contract to maintain the confidentiality of your Personal Information and restrict them from using it for any purpose other than providing services to us or as required by law. Specifically for text messaging data, see Section 7.

5. Data Retention

We retain your Personal Information only for as long as reasonably necessary to fulfill the purposes for which it was collected, including providing services, complying with legal obligations (e.g., tax laws, warranty periods, license regulations if applicable), resolving disputes, and enforcing agreements.

● General Timeframe: Customer information related to completed projects (including communication logs, invoices, project details) is typically retained for approximately 7 years to align with tax requirements and potential warranty periods.

● Text Message Records: Opt-in/opt-out records and consent documentation related to text messaging are retained for at least 4 years from the date of the last contact or interaction to demonstrate compliance with TCPA/CTIA requirements (See Section 7).

● Other Information: Information related to inquiries that do not result in services may be retained for a shorter period.

We will securely delete or anonymize your Personal Information when it is no longer needed for these purposes.

6. Your California Privacy Rights

As a California resident, you have the following rights regarding your Personal Information:

● Right to Know: You have the right to request information about the categories and specific pieces of Personal Information we have collected about you, the sources of collection, the purposes for collecting/selling/sharing, and the categories of third parties to whom we disclose information.

● Right to Delete: You have the right to request the deletion of your Personal Information that we have collected, subject to certain exceptions (e.g., information needed to complete a transaction, provide a requested service, comply with legal obligations, or for internal uses reasonably aligned with your expectations).

● Right to Correct: You have the right to request the correction of inaccurate Personal Information we maintain about you.

● Right to Opt-Out of Sale/Sharing: We do not "Sell" or "Share" Personal Information as defined by CCPA/CPRA. Therefore, there is no need to opt-out of such activities. If our practices change, we will update this policy and provide an opt-out mechanism.

● Right to Limit Use and Disclosure of Sensitive Personal Information: We only collect and use Sensitive Personal Information (like payment transaction details processed by third parties, or potentially contents of messages where we are the recipient) as necessary to provide the requested services or as reasonably expected. We do not use it for purposes requiring a "Limit Use" option under CPRA. If our practices change, we will update this policy and provide necessary controls.

● Right to Non-Discrimination: You have the right not to be discriminated against for exercising any of your CCPA/CPRA rights.

How to Exercise Your Rights:

To exercise your Right to Know, Delete, or Correct, please contact us using one of the methods listed in Section 11 (Contact Information).

● Verification: We need to verify your identity before processing your request. This may involve asking you to confirm information we already have on file (e.g., name, email, phone number, recent service details).

● Response Timeline: We will acknowledge receipt of your request within 10 business days and aim to respond substantively within 45 calendar days. If we need more time (up to an additional 45 days), we will inform you of the reason and extension period in writing.

7. Mobile Communications and A2P Compliance

This section details our practices regarding text messaging (SMS/MMS) communications, often referred to as Application-to-Person (A2P) messaging, in compliance with industry standards (like 10DLC) and regulations (like TCPA).

● Text Message Compliance Disclosure:

○ "No mobile information (including phone numbers) will be shared with third parties/affiliates for marketing/promotional purposes. All other categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties except service providers essential to message delivery (e.g., SMS aggregators)."
○ "Message frequency varies. Message and data rates may apply."

● Consent Management & Opt-In:

○ "By providing your mobile number via [Specify methods clearly, e.g., our website contact form, signing our service agreement, sending us an initial text message to request information], you expressly consent to receive autodialed or prerecorded SMS/MMS messages from PRO Drywall Repair related to [Specify purposes clearly, e.g., project updates, appointment reminders, service follow-ups, estimate delivery, responses to your inquiries]."
○ "Your consent to receive these text messages is not a condition of purchasing any goods or services. Technical delivery of essential service-related messages constitutes transactional communication, not marketing."

○ We will obtain separate, explicit opt-in consent before sending any purely promotional or marketing text messages.

● Opt-Out Mechanism:

○ "You may opt-out of receiving text messages from us at any time by replying STOP to any message you receive from us. You may receive a final confirmation message confirming your opt-out. For help, reply HELP."
○ "We honor Global Privacy Control (GPC) signals for SMS communications where technically feasible as an additional opt-out method."

● Third-Party Sharing of Texting Data:

○ "Text messaging originator opt-in data and consent will not be shared with any third parties except:

■ SMS aggregators required for message delivery.

■ Payment processors for transaction-related notifications (if applicable and consented to).

■ Our legal or compliance advisors when legally required."

○ "Third-party service providers involved in SMS delivery shall not reuse or sell your opt-in data or consent information beyond the scope of delivering messages on our behalf."

● Data Retention for Texting:

○ "Text message records, including opt-in confirmations and consent documentation, are retained for at least 4 years from the date of your last interaction with us via text message to demonstrate compliance with TCPA/CTIA requirements."

8. Global Privacy Control (GPC)

If you use a browser or browser extension supporting the Global Privacy Control (GPC) signal, we process that signal as a request to opt-out of any potential future "Sale" or "Sharing" of your Personal Information as defined under CCPA/CPRA, and as a request to opt-out of SMS communications where technically feasible (as noted in Section 7). Since we currently do not Sell or Share Personal Information, the primary effect is related to honoring SMS opt-out preferences indicated via GPC.

9. Data Security

We implement and maintain reasonable administrative, technical, and physical security measures designed to protect the Personal Information we collect against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include:

● Physical Safeguards: Secure storage of physical documents containing Personal Information.

● Digital Security: Use of password protection, encryption where appropriate (e.g., for data transmission), and access controls for digital systems storing Personal Information.

● Confidentiality: Requiring any employees or contractors with access to Personal Information to maintain its confidentiality.

● Incident Response: We have procedures to address potential data security incidents, although specific details are confidential for security reasons.

However, please note that no method of transmission over the Internet or electronic storage is 100% secure.

10. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect Personal Information from children under 16. If we become aware that we have inadvertently collected Personal Information from a child under 16, we will take steps to delete such information promptly.

11. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, service offerings, or legal requirements. We are committed to reviewing this policy at least annually. When we make material changes, we will post the updated policy on our website [if applicable] or make it available upon request, and we will update the "Effective Date" and "Last Updated" date at the top of this policy. We encourage you to review this policy periodically.

12. Contact Information

If you have any questions about this Privacy Policy, our privacy practices, or wish to exercise your California privacy rights, please contact us using one of the following methods:

● Email: [email protected]

● Phone: (805) 549-4506
● Mail: 10469 Atascadero Ave. , Atascadero CA 93422

We are committed to responding to privacy-related inquiries within the timeframes required by law (typically aiming for acknowledgment within 10 business days and substantive response within 45 calendar days).