Privacy Policy

This Privacy Policy explains how Workaro collects, uses, stores, shares, and protects information when you visit the website, create an account, join a workspace, use the app, open a client portal link, upload files, use payments, send messages, or interact with Workaro.

Workaro is built for businesses. In many situations, the workspace owner or business customer decides what client, job, payment, document, and communication information is entered into Workaro. Workaro processes that workspace information to provide the service.

If you are a client of a business that uses Workaro, the business that sent you a quote, invoice, portal link, upload request, or message is responsible for its relationship with you. Workaro helps provide the technology behind that workflow.

We may collect account details such as name, email address, phone number, password credentials or authentication information, profile information, workspace name, business details, business address, logo, timezone, settings, plan selection, and user role.

Workspace users may enter client names, emails, phone numbers, addresses, service addresses, notes, tags, preferences, intake details, job records, schedules, quotes, invoices, line items, deposits, receipts, payment status, files, photos, PDFs, dispute evidence, and communication history.

Workaro Go mobile users may enter or capture field-work information such as clock-in notes, client details, job details, invoice details, in-person payment amounts, receipt actions, and client signatures for authorized card-on-file charges.

You may provide support messages, feedback, onboarding responses, cancellation reasons, billing details, tax or business information requested by payment providers, and other information you choose to send to Workaro.

When you use Workaro, we may collect device, browser, IP address, approximate location, request, session, authentication, referral, page, feature, performance, error, and security event information.

We may record product activity such as logins, workspace switches, settings changes, quote approvals, invoice views, document downloads, portal opens, payment attempts, upload activity, message sends, opt-outs, billing actions, plan changes, and admin actions.

When you use Workaro Go, we may collect mobile app version, device name, push notification token, notification registration status, workspace selection, cached workspace activity, and payment-device diagnostics needed to support mobile sessions, notifications, Tap to Pay, receipts, and abuse prevention.

We may use cookies, local storage, session storage, and similar technologies to keep you signed in, remember preferences, protect sessions, measure product usage, and improve reliability.

Payment processing, payment methods, card details, bank details, payouts, identity review, tax details, and certain compliance information may be collected and processed by third-party payment providers. Workaro does not store raw card numbers, CVC codes, full bank account numbers, or payment-provider identity documents unless a provider-powered flow specifically makes limited metadata available to Workaro.

Workaro may store payment and billing metadata such as customer IDs, account IDs, subscription IDs, invoice IDs, checkout session IDs, payment intent IDs, charge IDs, payment method brand, last four digits, status, amount, currency, fee snapshots, receipt details, refund status, dispute status, payout or onboarding status, timestamps, and plan or usage records.

For in-person Workaro Go payments, payment providers may require device, location, account, business, and transaction information to enable Tap to Pay, risk review, fraud prevention, network compliance, receipt generation, and payment support.

We use this information to keep workspace records accurate, show receipts, sync payment status, manage subscriptions, calculate usage, handle refunds and disputes, detect fraud, provide support, and meet accounting or compliance obligations.

Workaro may store business logos, generated PDFs, invoices, quotes, receipts, work orders, signed or approved records, uploaded files, photos, dispute evidence, client uploads, and related metadata.

Client portal links may record opens, views, downloads, approvals, rejections, feedback, uploads, payment actions, manual payment notices, terms acceptance, and related timestamps. This helps the business maintain a reliable history of client-facing actions.

Portal links are designed for the intended recipient. Businesses are responsible for sending links to the correct people and configuring the information that appears in client-facing records.

Workaro may send account, invite, onboarding, billing, product, service, support, legal, push notification, and operational communications by email, SMS, in-app notification, mobile push notification, or another reasonable method.

Workspace users may send client messages, deposit requests, quote links, invoice links, reminders, receipts, scheduling messages, portal access codes, and other communications through Workaro. Workaro may store message content, recipients, sender, delivery status, provider IDs, timestamps, opt-out status, and usage counts.

Mobile push notifications are delivered through Apple Push Notification service when enabled by the workspace and allowed by the device. Workaro stores push tokens only as needed to route notifications, maintain delivery status, and prevent abuse.

Transactional SMS messages may include account setup, billing, support, workspace activity, appointment and job reminders, service updates, quote and invoice notices, and payment notices from Workaro. Message frequency may vary. Standard message and data rates may apply. SMS recipients may reply STOP to opt out or HELP for help where supported.

SMS consent is collected separately from email consent where required. SMS consent is optional, is not required to create an account, and optional marketing communications are handled separately from transactional service communications. Workaro will not sell or share mobile opt-in information for promotional or marketing purposes.

We use information to provide and operate Workaro, authenticate users, manage workspaces, enforce roles, process billing, support payments, generate documents, store files, send messages, deliver portal links, maintain audit history, provide support, and respond to requests.

We use information to protect the platform, prevent fraud and abuse, investigate suspicious activity, enforce terms, debug errors, monitor reliability, improve performance, comply with legal obligations, and support payment, communication, and storage providers.

We may use aggregated or de-identified information to understand usage, improve features, forecast capacity, develop new tools, and measure product health. Aggregated or de-identified information does not identify a specific person or workspace.

We share information with service providers that help operate Workaro, including hosting, databases, authentication, file storage, payment processing, email delivery, SMS delivery, analytics, logging, support, security, and compliance providers. These providers may process information only as needed to support Workaro.

Workspace data may be visible to workspace owners, admins, authorized team members, invited users, and client portal recipients according to roles, settings, and links configured by the workspace.

We may disclose information when required by law, court order, subpoena, regulator, payment network, provider rule, or government request; to protect Workaro, users, clients, providers, or the public; to investigate fraud or abuse; to enforce agreements; or as part of a merger, acquisition, financing, reorganization, or sale of assets.

We do not sell client portal records to advertisers, and we do not use a business's client records to advertise to that business's clients.

We do not share, sell, rent, or disclose mobile phone numbers, SMS opt-in information, or mobile messaging consent information with affiliates or third parties for their promotional or marketing purposes. We may share SMS-related information with messaging providers only as needed to deliver messages, process opt-outs, prevent abuse, comply with law, and operate Workaro.

Businesses using Workaro decide what client, job, invoice, scheduling, document, and communication information they enter into their workspace. Workaro processes that information to provide the service to the business.

If you are a client of a Workaro customer and want to access, correct, delete, or restrict information about you, contact the business that collected your information first. Workaro may help route requests when appropriate, but the business often controls the underlying record.

Businesses are responsible for having the rights, notices, permissions, and consents needed to enter, store, upload, send, and process client information in Workaro.

If Workaro offers optional promotional emails, you may opt out using the unsubscribe or email-preferences link included in those emails or from your Workaro account settings where available. Workaro maintains email suppression records so optional promotional emails are not sent after an opt-out is processed.

Promotional email opt-outs do not stop account, billing, security, legal, invite, password, workspace, support, invoice, receipt, quote, appointment, portal-code, payment, or other transactional service messages that are needed to provide Workaro or complete a requested transaction.

SMS recipients may reply STOP where supported to opt out of text messages, or reply HELP for help. Workaro may maintain suppression records so opted-out numbers do not receive further SMS from Workaro-powered messaging, except where law allows or requires a response.

Workspace admins should honor client communication preferences and should not use Workaro to message clients who have opted out or who have not given required permission.

We keep information for as long as needed to provide Workaro, maintain workspace records, process payments, calculate usage, support billing, resolve disputes, prevent fraud, enforce agreements, comply with law, and meet accounting or provider requirements.

Active and paused workspaces generally retain records while the workspace remains active or paused. If a paid subscription is canceled, Workaro is designed to keep paid access active through the end of the current billing period, then provide limited view-only access for 15 days and retain data for 60 days before deletion, unless a different retention requirement applies.

Trial workspaces that do not continue, locked workspaces, payment-failed workspaces, dispute-locked workspaces, and deleted workspaces may have different retention windows shown in the product or required by provider, billing, legal, or safety needs.

Deletion is intended to remove active workspace records from the product, but it may not instantly remove every copy from backups, logs, provider systems, or records that Workaro must keep. Backup copies expire on their normal rotation schedule and are not used to restore a deleted workspace except where needed for security, legal, compliance, or disaster-recovery reasons.

Backups, audit logs, payment records, message logs, dispute evidence, legal records, tax records, fraud-prevention records, support records, suppression records, and deletion logs may be retained longer when necessary. Workaro may also retain minimal records showing that an account, workspace, phone number, or email address opted out, was deleted, was locked, or was subject to a legal or billing hold.

Workspace owners are responsible for exporting business records they need before cancellation, deletion, or lockout. Workaro may provide export or download tools for certain records, but not every product artifact may be exportable in the same format shown in the app.

If a workspace owner requests deletion, Workaro may verify authority before acting. If a client of a Workaro customer requests deletion or correction, Workaro may direct that person to the business that controls the underlying client record unless Workaro is legally required to respond directly.

Deletion may be delayed or limited when an account has unpaid balances, open disputes, suspected fraud, chargebacks, security incidents, active support investigations, preservation obligations, tax or accounting requirements, legal holds, or provider rules that require records to be retained.

Workaro uses technical and organizational safeguards designed to protect information, including authentication, role checks, workspace boundaries, private file access, server-side validation for sensitive actions, audit logs, rate limits, provider webhooks, and operational monitoring.

No software, network, or storage system can be guaranteed to be perfectly protected. You are responsible for using strong passwords, protecting devices, limiting team access, reviewing roles, and notifying Workaro promptly if you believe an account or workspace has been accessed without permission.

Depending on your relationship with Workaro and applicable law, you may request access, correction, export, deletion, restriction, or additional information about certain personal information. Some requests may need to be handled by the workspace business that controls the record.

We may need to verify your identity, confirm workspace authority, or retain certain information for billing, accounting, legal, payment, fraud-prevention, dispute, backup, or operational reasons.

You can update many account, workspace, communication, billing, and branding settings directly inside Workaro.

Workaro is intended for businesses and is not directed to children under 13. Do not create a Workaro account or provide personal information to Workaro if you are under 13.

If you believe a child provided personal information to Workaro, contact us so we can review the request.

Workaro is operated primarily from the United States. Information may be processed in the United States and other locations where Workaro or its providers operate.

If you use Workaro from outside the United States, you understand that information may be transferred to and processed in locations that may have different data protection laws than your location.

We may update this Privacy Policy as Workaro, providers, laws, or business needs change. If changes are material, we will provide notice through the product, by email, or by another reasonable method.

The date at the top of this page shows when the policy was last updated.

Questions about privacy, data handling, or rights requests can be sent through the Workaro contact page or the support channel shown in the product.

Please include the workspace name, account email, the type of request, and whether you are a workspace user, workspace owner, or client of a business using Workaro.