Skip to content
Planning Ops Planning Ops
Place & FinishManpowerDaily Reports
Features ▾
Pour Notifications★ Certification Tracking Time Tracking + Payroll Manpower Projection Labor Productivity Projections / Gantt
PricingGuidesContact
Login Start Free Trial →
Place & Finish Manpower Daily Reports
Features
Pour NotificationsCertification TrackingTime Tracking + PayrollManpower ProjectionLabor ProductivityProjections / Gantt
Pricing Guides Contact Login Start Free Trial →
  1. Home›
  2. Privacy Policy

Privacy Policy

Last updated: July 2, 2026

This Privacy Policy explains how Planning Ops LLC, a South Carolina limited liability company ("we," "us," "Planning Ops"), collects, uses, and shares information when you use our software-as-a-service platform, the Planning Ops Platform (the “Service”), which includes the Place & Finish and Manpower views, and any related websites, APIs, and services. For the purposes of applicable data-protection law (including GDPR, UK GDPR, and CCPA), Planning Ops LLC is the data controller for the personal information it processes through the Service.

By using the Service, you consent to the practices described here. If you do not agree, please do not use the Service.

1. Information we collect

Information you provide directly.

  • Account details: name, email address, company name, password (stored as a salted hash, never in plaintext), and the workspace URL slug you choose.
  • Payment details: Payment is processed entirely by Stripe, both during the 14-day trial and afterwards. We accept credit and debit cards, Apple Pay, Google Pay, and Link (Stripe’s one-click wallet). Wallet methods tokenize the underlying card inside the wallet provider; in every case we only see a Stripe customer ID and the last four digits of the underlying card for receipt display — we do not see, store, or transmit full card numbers. Your payment method is collected at signup but not charged during the 14-day trial period; the first charge attempts on day 15 if you have not canceled. If you cancel within the first 14 days you are not charged a cent. Cancellation is self-service from the Billing page inside your hub (Control Panel ▸ Billing); cancellation takes effect at the end of the current billing period (no refund for the current period), and you can resume anytime before then.
  • Operational data you upload: employee names, project information, schedule entries, pour details, regions, contact details (names, emails, and phone numbers) of crew members and third parties you add for email/SMS notifications, and any other content you enter into the Service. If an administrator enables the optional Daily Reports module, this also includes the daily field reports your crews file — work performed, crew on site, equipment, deliveries, delays, safety and injury/incident records, foreman sign-off, and any photos captured or uploaded with a report. If an administrator enables the optional Time Tracking feature, this also includes employee time and payroll data — hours worked by pay type (straight, overtime, double-time, holiday, and PTO), the per-employee EE IDs and payroll IDs you enter, and the earning codes you configure for payroll exports. Payroll-system exports (for systems such as QuickBooks, ADP, or Paychex) are generated as files you download and import yourself; Planning Ops does not transmit your time or payroll data to any payroll provider. To show weather forecasts on the schedule, the project ZIP code you enter is sent to third-party weather and geocoding APIs (Open-Meteo, Zippopotam.us, and the OpenStreetMap/Nominatim service) to resolve the location and fetch a forecast; no personal identifiers are sent.
  • Communications: if you email us, we keep the message and your reply chain to support our response.

Information collected automatically.

  • Authentication and session data: session tokens (JWTs) issued at login, and the IP address used to obtain the session — stored by our authentication provider (Supabase) for fraud detection and rate limiting. Planning Ops platform-administrator (staff) accounts are additionally protected by mandatory TOTP-based two-factor authentication (2FA); the TOTP secret is stored by Supabase. Customer-account two-factor authentication is on our roadmap.
  • Security and license-compliance signals: for each session we record technical signals associated with the account — including the session token, IP address, coarse (approximate) location derived from the IP, device and browser characteristics (user agent), and concurrent-session activity. We use these signals to secure your account, detect and stop fraud and account takeover, enforce rate limits, and verify license compliance — in particular, to detect when a single paid working seat credential is being shared and used by more than one person at the same time (for example, simultaneous active sessions from different devices or locations). This anti-sharing enforcement is described in our Terms of Service. We do not use these signals for advertising, and we do not derive precise GPS location from them.
  • Audit log: the Service maintains an in-app audit log of who created, modified, or deleted records within your workspace.
  • Cookies / local storage: we store session tokens and small preferences (last visited week, UI toggles) in your browser's local storage. On our public marketing and signup pages we also use the LinkedIn Insight Tag for ad conversion measurement and retargeting of our LinkedIn advertising, and PostHog for product analytics. These set or read cookies and similar identifiers; see the Product analytics entry below and the sub-processor table in Section 4. For how to opt out, including under California's "Do Not Sell or Share" right, see Section 10.
  • Product analytics: we use PostHog to record page views, button clicks, and a small set of business events (e.g. signup started, signup completed, hub login) so we can understand how the Service is used and improve it. The email address you use to sign in is sent to PostHog only as a SHA-256 hash (one-way), not in plaintext, so we can attribute events to an account without exposing the raw email to our analytics processor. To opt out, email admin@planningops.com; we also honor your browser's Do Not Track setting where supported by our analytics processor — see Section 8.
  • Server logs: our hosting providers (Netlify, Supabase) log standard request metadata (timestamp, IP, user agent, requested URL, response code) for operational and security purposes. These logs are retained per the providers' policies.

2. How we use information

  • To operate, maintain, and provide the Service to you and your team.
  • To authenticate users and enforce per-tenant data isolation (row-level security).
  • To process payments and deliver receipts (via Stripe).
  • To send transactional email — welcome, password reset, access-granted, invoice receipts, payment failure notices, security alerts, subscription cancellation confirmations, plan-change and reactivation confirmations, and schedule distribution emails (via Resend). Transactional email is always sent, regardless of marketing opt-out status, because it relates to your active subscription or account.
  • To send marketing-class email — trial reminders, weekly digests, and product announcements (via Resend). You can opt out of all marketing-class email at any time via the one-click Unsubscribe link in any such email or at planningops.com/unsubscribe. Opt-outs are stored in a cross-tenant suppression list keyed only by email address.
  • To send SMS / text-message notifications — concrete pour confirmations, cancellations, schedule changes, and reminders (via Twilio) — to recipients who have opted in (coming soon — not yet live; these notices are sent by email only today). See the SMS / text-message notifications subsection below for details and opt-out.
  • To analyze usage trends in aggregate (via PostHog) to improve the Service.
  • To monitor for abuse, fraud, or security incidents.
  • To enforce license compliance — including detecting shared working-seat credentials (concurrent sessions) — using the security signals described in Section 1.
  • To respond to your support requests.
  • To comply with legal obligations.

We do not use your operational data (employee names, schedules, pours, time and payroll records, etc.) for advertising, machine learning training, or any purpose unrelated to providing the Service to you.

SMS / text-message notifications.

If you provide a mobile phone number and consent to receive text messages, Planning Ops may send you operational SMS notifications — such as concrete pour confirmations, cancellations, schedule changes, and reminders. These messages are transactional and are sent only to recipients who have opted in. We never send marketing or promotional text messages, and we do not buy, rent, or message purchased phone-number lists.

How you opt in. Opt-in consent is collected when you give your mobile number to the Planning Ops customer coordinating the work (your employer, the general contractor, or the company running the pour) and agree to receive these notifications. At that time you are told, in substance: "Planning Ops will text you concrete pour confirmations, cancellations, and schedule updates. Message frequency varies. Message and data rates may apply. Reply STOP to opt out or HELP for help. See our Terms (planningops.com/terms) and Privacy Policy (planningops.com/privacy)." Your number is entered only by an authorized workspace user, and only after you have consented. Consent to receive text messages is not a condition of any purchase. (If you are a Planning Ops customer sending texts to your own contacts through the Service, you are responsible for obtaining their consent — see our Terms of Service.)

Opt-out and help. Reply STOP to any message at any time to unsubscribe; you will receive a single confirmation and then no further texts. Reply HELP for help, or email admin@planningops.com. Message frequency varies. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages.

No sharing of mobile opt-in data. No mobile information — including your phone number and SMS consent — will be shared with third parties or affiliates for marketing or promotional purposes. The information-sharing categories described elsewhere in this policy exclude text-messaging originator opt-in data and consent; this information will not be shared with any third parties. We use Twilio solely as our SMS delivery provider to transmit the messages you requested.

3. Platform administrator access

Planning Ops staff (the "platform administrator") may, in limited circumstances, sign in to a workspace as a separate, clearly-identified “Planning Ops Admin (Support)” account — not as one of your own user accounts — to provide technical support, investigate a reported issue, or respond to a security or legal obligation. Each session requires the staff member to record a reason before it begins. We take the following safeguards every time this happens:

  • Logged in your workspace's audit log. Every support sign-in is recorded as a platform.support_session_start entry visible to your administrators in the audit trail, showing that the session was performed by Planning Ops Support (a separate Planning Ops identity, not one of your own user accounts) and the timestamp.
  • Time-limited. Each support session is capped at 30 minutes by an automatic client-side timeout. The session also expires according to your workspace's normal inactivity rules.
  • Single-use sign-in link. The link used to access your workspace is single-use — it is consumed on first use and cannot be replayed.
  • Visible banner. When platform support is signed into your workspace, an orange banner is displayed at the top of the screen identifying the session as a platform support session, with the remaining time shown.
  • No background access. We do not maintain standing background access to your workspace. The platform administrator must explicitly initiate a session, which is logged. Routine operations (backups, monitoring) use service-level credentials that read only metadata, not your operational data.
  • Termination on your request. Workspace administrators can revoke all active sessions for their workspace at any time. Email us at admin@planningops.com and we will end any active support session immediately.

The platform administrator does not use this capability to read, export, or use your operational data for any purpose other than the specific support or maintenance task that prompted the session. We do not share data accessed during a support session with third parties, except as required by law.

4. Third-party processors

We share data only with vendors strictly necessary to operate the Service. Each is bound by their own privacy commitments and applicable data-protection laws.

VendorPurposeData shared
SupabaseDatabase, authentication, edge computeAll Customer Data and account info
StripePayment processingEmail, name, billing details, last4 of card
NetlifyStatic site hostingRequest logs, IP addresses
ResendTransactional and marketing emailRecipient email, name, message content
TwilioSMS / text-message notifications (coming soon — not yet active)Recipient mobile number, message content
PostHogProduct analytics (page views, button clicks, custom business events)SHA-256 hash of email, anonymized user ID, tenant slug, role, browser metadata, event properties. Raw email is not sent.
LinkedIn (Microsoft Corp.)Ad conversion measurement & retargetingIP address, browser/device metadata, page-visit events
Open-MeteoWeather forecasts shown on the Place & Finish scheduleProject ZIP code / approximate location only — no personal identifiers
Zippopotam.usZIP-to-coordinates geocoding for the weather forecastProject ZIP code only — no personal identifiers
OpenStreetMap Foundation (Nominatim)ZIP-to-location geocoding (fallback) for the weather forecastProject ZIP code only — no personal identifiers

We do not sell, rent, or trade your information with any third party for marketing purposes.

5. Data location and transfers

The Service is hosted on infrastructure located in the United States. By using the Service, you consent to the transfer of your information to the United States, which may have data-protection laws different from your country of residence.

6. Data retention

While your subscription is active, we retain your Customer Data — including your full history of daily reports and their attached photos — for the life of your subscription. We do not delete your records on a fixed age-based timer, and there is no set number of years after which a daily report is automatically purged while your account is in good standing. You can export a complete copy of your records at any time (see Your rights below and the archive export in the Terms), and you should export before you cancel. Retention after a trial ends or a paid subscription lapses is described below. Note that some source records — for example OSHA injury and illness logs, payroll, and tax records — carry their own legal retention periods that are your responsibility to observe.

Free trial tenants.

If you cancel your 14-day trial before it converts to a paid subscription (no charge incurred), access to your tenant is locked and your Customer Data is retained for at least 30 days in case you change your mind and reactivate. After 30 days of inactivity following a canceled trial, we may permanently delete trial-tenant Customer Data; we will send a reminder email to the administrator’s email address before deletion.

Paid subscription lapses.

If a paid subscription lapses (cancellation by the customer or repeated failed payment), access to your tenant is locked for up to 30 days, after which Customer Data may be permanently deleted. Backups may retain data for up to 90 days for disaster-recovery purposes.

Manual deletion.

The workspace owner can permanently and immediately delete the entire workspace and all of its data, self-service, from Control Panel ▸ Billing ▸ Danger Zone (irreversible, requires a typed confirmation, and cancels the subscription). This deletes all Customer Data — including your full daily-report history and every uploaded photo and file — from both our database and our file storage, immediately and permanently. Deleted data is not recoverable (no undo, no backup restore), so you should export anything you wish to keep before deleting. When a workspace or account is deleted this way, its data is removed right away rather than held for the retention windows described above; only records we are required to keep by law (e.g., financial records related to your subscription) are retained. You may also request deletion at any time by emailing admin@planningops.com. We will honor verified deletion requests within 30 days, except where retention is required by law.

Individual account deletion.

Any signed-in user can permanently delete their own account — their login, role grants, and profile — self-service from the My Account menu in the hub. Confirmation requires re-entering your current password and typing your email address. This removes only your personal account; it does not delete your workspace’s operational data or any other user. To prevent a workspace from being orphaned, the workspace owner and the last remaining administrator cannot remove themselves this way — they use the workspace deletion above or the email request path instead.

7. Security

  • Tenant isolation: per-tenant row-level security in the database means another customer cannot read or write your data, regardless of any application bug.
  • Encryption in transit: all traffic is served over HTTPS with HSTS preload.
  • Encryption at rest: our database provider encrypts all data at rest.
  • Password hashing: passwords are hashed with bcrypt (industry standard) via Supabase Auth. Plaintext passwords are never stored.
  • Two-factor authentication (2FA): Planning Ops platform-administrator (staff) accounts are protected by mandatory TOTP-based 2FA (authenticator app), enforced at every sign-in. Customer-account 2FA is on our roadmap.
  • Strict CSP and security headers: the Service ships with a strict Content Security Policy, HSTS preload, X-Frame-Options DENY (frame-ancestors 'none'), Permissions-Policy, Referrer-Policy, and other defense-in-depth headers.

No system is perfectly secure. While we apply reasonable safeguards, we cannot guarantee absolute security. You are responsible for protecting your login credentials and notifying us of suspected unauthorized access.

8. Your rights

Subject to applicable law, you have the right to:

  • Access the personal data we hold about you;
  • Correct inaccurate or incomplete data — you can edit your own display name at any time from the My Account menu in the hub;
  • Delete your account and personal data — any user can self-delete their own account from the My Account menu, or email us (subject to legal retention exceptions);
  • Export your data — the Service provides PDF exports for schedules and projections; a complete daily-report archive (one compiled PDF of your entire daily-report history) plus individual report PDFs when the Daily Reports module is enabled; payroll exports (a branded Excel timesheet and per-system import files, mostly CSV, for common payroll systems) when Time Tracking is enabled; and Excel for roster import; and we will export account and audit-log data on request;
  • Object to certain processing or withdraw consent where we rely on consent;
  • Opt out of marketing email at any time via the one-click Unsubscribe link in any marketing email or at planningops.com/unsubscribe. Transactional email related to your active subscription will continue;
  • Opt out of product analytics by emailing admin@planningops.com. We honor browser Do Not Track signals where supported by the analytics processor;
  • Lodge a complaint with a data-protection authority if you believe we have violated your rights.

To exercise any of these rights, email admin@planningops.com from the email address associated with your account.

9. Children's privacy

The Service is not directed to children under 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, contact us and we will delete it.

10. California, EU/UK residents

If you reside in California, the EU, the UK, or another jurisdiction with specific privacy laws (CCPA, GDPR, UK GDPR), the rights described in Section 8 apply to you, plus any additional rights granted by your jurisdiction's law. Contact us to exercise any such right. We do not sell personal information for money.

Do Not Sell or Share My Personal Information.

We do not sell your personal information for money, and we never sell or share your operational data. However, the cookie-based advertising tools on our public marketing pages — the LinkedIn Insight Tag (ad conversion measurement and retargeting) and our PostHog analytics — may involve disclosures of online identifiers (such as your IP address, device/browser metadata, and page-visit events) that can be considered a "sale" or "share" for cross-context behavioral advertising under the CCPA/CPRA and similar laws. To opt out of this "sale/share," email admin@planningops.com with the subject line "Do Not Sell or Share", or use your browser's privacy controls (e.g., a Global Privacy Control signal or tracking-cookie blocking, and Do Not Track where supported by our analytics processor). Opting out of advertising cookies does not affect your access to the Service.

11. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or via a notice in the Service. The "Last updated" date at the top of this page reflects the most recent revision.

12. Contact

Privacy questions or requests: admin@planningops.com.

Postal mail (registered agent for service of process):
Planning Ops LLC
c/o Registered Agents Inc
6650 Rivers Ave., Suite 100
Charleston, SC 29406, USA

Planning Ops Planning Ops

Pour scheduling and crew planning, built for concrete subs.

Charleston, SC · Veteran-owned

Product

Place & Finish Hub Manpower Hub Daily Reports Hub Pricing All Features

Features

Pour NotificationsCertification TrackingTime Tracking + PayrollManpower ProjectionLabor ProductivityProjections / Gantt

Compare & learn

Comparisons Guides Contact Login

Legal

Terms Privacy DMCA

© 2026 Planning Ops LLC. Built for concrete subs.

Start Free Trial →
Start Free Trial →