Privacy Policy

Last updated: March 25, 2026

1. Who We Are

VendorShield is operated by Crawde, LLC. We provide AI-powered vendor risk management and insurance compliance tracking for construction contractors and general contractors.

2. Information We Collect

Account Information: Email address, company name, and password when you create an account.

Vendor Data: Vendor names, contact information, and categorization data you enter into the platform.

COI Documents: Certificates of Insurance (COI) you upload for AI analysis. We process these documents to extract coverage details, expiration dates, and risk scores.

Usage Data: Pages visited, features used, and interaction patterns via Google Analytics (anonymized).

Payment Data: Processed securely by Stripe. We do not store credit card numbers on our servers.

3. How We Use Your Data

  • Provide COI analysis, risk scoring, and compliance tracking
  • Send expiration alerts and compliance notifications
  • Process payments and manage subscriptions
  • Improve our AI models and product experience
  • Communicate about your account and service updates

4. Data Storage & Security

Your data is stored on secure cloud infrastructure (AWS/Supabase) with encryption at rest and in transit. COI documents are stored in encrypted object storage. We use row-level security to ensure organizations can only access their own data.

5. Third-Party Services

  • Stripe: Payment processing
  • Supabase: Database and authentication
  • Groq: AI model inference for COI analysis
  • AWS SES: Email delivery for alerts and notifications
  • Google Analytics: Anonymous usage analytics

6. Data Retention

We retain your data for as long as your account is active. Upon account deletion, we remove your organization data, vendor records, and uploaded COI documents within 30 days. Anonymized usage analytics may be retained indefinitely.

7. Your Rights

You may request access to, correction of, or deletion of your personal data at any time by emailing support@vendorshield.app. California residents have additional rights under the CCPA, including the right to know what data is collected and the right to opt out of data sales (we do not sell data).

8. Cookies

We use essential cookies for authentication sessions and analytics cookies (Google Analytics) to understand usage patterns. You can disable analytics cookies in your browser settings.

9. Changes

We may update this policy from time to time. Material changes will be communicated via email to registered users.

10. Contact

For privacy inquiries: support@vendorshield.app