Privacy Policy

Last updated: March 8, 2026

Capeum ("we", "our", "us") is operated by Hyrum Harris. This Privacy Policy explains how we collect, use, and protect your information when you use the Capeum mobile application ("App").

1. Information We Collect

We collect only what is necessary to provide the App's functionality:

Account information: Your email address and a securely hashed password, used for authentication.
Photos: Work photos you capture or upload through the App. These are stored on our servers so your team can access them.
Location data: GPS coordinates attached to photos only when capturing images through the App, used to tag photos with their geographic location. Location is not accessed at any other time.
Device information: Basic device identifiers used for session management (e.g., distinguishing active login sessions).
Company and team data: Company name, customer names, site names, and equipment names that you enter to organize your photos.

2. How We Use Your Information

To provide and operate the App's core features (photo capture, organization, and team sharing).
To authenticate your identity and manage your account.
To sync your data across devices using our offline-first sync system.
To send transactional emails (account verification, password resets).

3. Data Storage and Security

Your data is stored on secure cloud infrastructure:

Photos are stored using DigitalOcean Spaces, an S3-compatible object storage service with encryption at rest.
Account and organizational data is stored in a PostgreSQL database.
All data transmission uses HTTPS/TLS encryption.
Authentication tokens are stored securely on your device using platform-native secure storage (iOS Keychain).
Passwords are never stored in plain text.

4. Data Sharing

We do not sell, rent, or share your personal information with third parties for marketing purposes. Your data is shared only in these circumstances:

Within your team: Photos and organizational data are visible to members of your company within the App.
Service providers: We use DigitalOcean (file storage) and Mailgun (transactional email) to operate the service. These providers process data solely on our behalf.
Legal requirements: We may disclose information if required by law or to protect our legal rights.

5. Data Retention

Your data is retained for as long as your account is active. Photos you delete are moved to a trash folder and permanently deleted after 30 days. When you delete your account, your personal information is removed. Photos and data you created may remain accessible to your company.

6. Your Rights

You have the right to:

Access the personal information we hold about you.
Delete your account and associated personal data through the App's settings.
Request an export of your data by contacting us.
Request correction of inaccurate personal information.

7. State Privacy Rights

If you are a California resident, you have the right to request disclosure of the categories of personal information we have collected about you, request deletion of your personal data, and opt out of the sale of your personal information. We do not sell personal information. To exercise these rights, contact us at privacy@capeum.com.

8. Analytics and Tracking

We do not use any third-party analytics, advertising, or tracking services. We do not track you across other apps or websites.

9. Children's Privacy

The App is not intended for use by children under 13. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the App or via email.

11. Contact Us

If you have questions about this Privacy Policy or your data, contact us at:

privacy@capeum.com