1. Texas Privacy Rights
Texas residents may have rights under the Texas Data Privacy and Security Act, including rights to know whether personal data is processed, access data in a readable format, correct inaccuracies, delete personal data, opt out of certain targeted advertising/sale/profiling uses, and avoid discrimination for exercising rights.
Source: https://www.oag.state.tx.us/consumer-protection/file-consumer-complaint/consumer-privacy-rights/texas-data-privacy-and-security-act
2. Request Process
Users may submit privacy requests through the in-app privacy request flow or by emailing `legal@completa.io`. Completa may verify identity and authority before fulfilling a request.
Completa will respond to verifiable consumer requests within 45 days, with one additional 45-day extension where reasonably necessary and disclosed within the initial 45-day response period, or within another timeframe required by applicable law. Completa must provide an appeal process where required. `legal@completa.io` is the privacy contact for privacy requests, appeals, and data-governance questions.
3. Categories of Personal Data
Completa processes account data, contact data, project data, property data, photos/videos, receipts/invoices, material records, payment details, tax/payout details, contractor credential data, background-check status, insurance/license records, messages, support records, warranty/dispute evidence, device/log data, and legal acceptance records.
4. Sensitive Data
Sensitive data may include precise geolocation if retained from photos or service logistics, government IDs or background-check information where used for verification, financial/payment details, and other categories treated as sensitive under applicable law. Completa processes sensitive data only for disclosed and necessary platform, verification, safety, fraud, legal, payment, tax, or support purposes, or with consent where required.
5. Biometric Disclaimer
Completa does not currently use biometric identification, face recognition, voiceprint recognition, identity-recognition technology, or hand-geometry or face-geometry extraction from photos, audio, or video. Texas Business and Commerce Code Section 503.001 treats a retina or iris scan, fingerprint, voiceprint, or record of hand or face geometry as a biometric identifier. Project photos and videos may incidentally include faces, hands, bystanders, children, or other personal features. Completa's AI/OCR processing is limited to project understanding, scope, materials, dimensions, classification, quality, dispute, warranty, fraud/safety, support, and recordkeeping purposes, not biometric identification, face recognition, voiceprint recognition, identity recognition, or biometric capture for a commercial purpose.
Users must not intentionally upload unnecessary photos or video of people, children, bystanders, or unrelated personal spaces. Completa does not create or store a separate biometric template, biometric identifier database, faceprint, voiceprint, or hand/face-geometry record from approved AI/OCR processing. If Completa later adds biometric capture, biometric identification, face recognition, voiceprint recognition, identity recognition, or hand/face geometry use for a commercial purpose, it must provide required notice, consent, retention, protection, and destruction controls before use.
6. Children and Age
The platform is intended for users age 18 or older. Completa does not knowingly collect personal data from children under 13. If Completa learns that a child under 13 has provided personal information without verifiable parental consent, Completa will promptly delete the information except as legally required to retain it, attempt to provide parental notice and review where Completa can identify a parent or guardian, and not condition participation in services on a child's disclosure of more information than reasonably necessary.
Completa does not knowingly create accounts for users under 18. If Completa learns that a Texas user is under 18, Completa applies required protections under applicable youth online-safety and privacy laws, including the Texas Securing Children Online through Parental Empowerment Act, Tex. Bus. & Com. Code Chapter 509, parental notice/consent, restrictions on targeted advertising or sale of data to known minors, and account-management features where legally required.
7. Data Portability and Export
Completa must provide a reasonably accessible method for users to request export of account, project, payment, SOW, change-order, warranty, and dispute records, subject to identity verification, third-party privacy, security, legal holds, and retention exceptions.
8. Retention and Deletion Exceptions
Completa does not promise immediate deletion of project, payment, tax, SOW, dispute, warranty, fraud, safety, security, audit, or legal records when a deletion request is submitted. Completa may retain records as needed for tax, accounting, payment processing, payment-network reconciliation, contractor payout and 1099 support, sales/use tax support, dispute and warranty administration, fraud prevention, safety, legal compliance, audit, litigation, chargebacks, refunds, reserves, offsets, and unresolved claims.
The default retention period is seven years for transactional tax/accounting support records. Certain legal, tax, accounting, security, audit, settlement, litigation, unresolved-claim, and major-dispute records may be retained longer where required or permitted by law.
9. Deidentified, Aggregated, and Pseudonymized Data
Completa may retain deidentified, aggregated, or pseudonymized data for analytics, pricing-engine improvement, quality controls, fraud prevention, and platform improvement if reasonable measures are used to prevent association with an identifiable individual where required by law.
10. Security Measures
Completa maintains administrative, technical, and organizational safeguards appropriate to the data processed, including access controls, least-privilege permissions, authentication controls, encryption in transit, encryption at rest where supported by platform infrastructure, vendor review for processors, audit logging for legal acceptance and sensitive admin actions, and incident-response procedures.
11. Breach Notice
If a reportable security breach occurs, Completa will notify affected individuals and regulators without unreasonable delay and within the time required by applicable law. For Texas residents, Completa will provide individual notice not later than the 60th day after determining that a breach occurred where Tex. Bus. & Com. Code §521.053 requires notice, subject to legally permitted delay or investigation exceptions.
12. Service Providers and Transfers
Completa uses service providers for payment processing, payout onboarding, AI/OCR processing, property and address enrichment, contractor screening, identity verification, cloud hosting, databases, communications, analytics, support, fraud/security, and professional services. Completa will provide current service-provider information through the privacy request channel or a published provider page when available.
Completa currently operates in the United States. Material international transfers, new processing regions, or broader state/international privacy-law coverage require updated disclosures or transfer mechanisms where required before expansion.