Privacy Policy
Effective date: 2026-07-09 · Version 1
JobRig ("the app") is a set of calculation tools for tradespeople, published by the developer ("we", "us"). This policy explains what data the app and the jobrig.app website do and do not handle. It is written to satisfy the Google Play and Apple App Store privacy requirements and the transparency duties of the GDPR (and it voluntarily follows the CCPA's standards), in plain language, because you should be able to read it.
What the app stores on your device
The app saves your settings and display preferences only (for example whether you last used basic or advanced mode, light or dark theme, and degrees or percent slope), plus three housekeeping values: your saved share and export preferences, the date the app was first installed, and a settings-format version number the app uses to upgrade old settings safely. All of this:
- is stored locally on your device (using the device's standard app storage),
- never leaves your device: on Android the app opts out of Google device backups entirely; on iOS a copy may exist inside your own device backup (iCloud or local), which only you control,
- contains no personal information, and
- is removed when you uninstall the app (on iOS, a copy may persist inside your own backup until that backup rotates).
Two more things live on your device: your analytics consent choice (a setting like any other), and the random per-install identifiers used by crash reporting and usage analytics. Those two are described in their own sections, and unlike everything above, an identifier travels with the report or event it marks.
The app also keeps a small local diagnostics log on your device: only the most recent entries (crash details, plus short content-free notes when a save or share fails), viewable and clearable in Settings → Diagnostics (see How long data is kept). It exists so that, if you choose, you can share a stack trace with us when reporting a problem. It leaves your device only if you yourself share it.
The app does not store or transmit your calculation values on its own. The numbers you type live in the app's working memory while you use it. A result is saved only if you save it (the image goes to your own gallery or a folder you pick, on your device), and it leaves your device only if you share it, straight to the app you choose (its servers, never ours). (When you share or save, any temporary working copy is deleted right after.)
Crash reports
To fix problems, the app sends exactly one kind of anonymous diagnostic: a crash report, if the app stops unexpectedly. (If a share or save fails inside the app, a short, fixed, content-free note (for example, that a save or share did not complete) is written to the on-device diagnostics log only; that note, unlike a crash report, is never sent anywhere.)
A report contains the error details, your device model, your operating-system version, and the app version, plus a random identifier created when the app is installed, an industry-standard way to count how many devices a bug affects. That identifier is not linked to you and we cannot use it to identify you. Reports never contain your name, your calculations, or anything you typed. Your IP address is used transiently to deliver the report over the internet (as with any internet request), and is not stored with the report.
Reports are processed for us by Sentry, our crash-reporting processor, with EU data residency: they are ingested and stored on servers in the European Union. They are used solely to diagnose and fix bugs, are never sold, and are never shared with anyone for their own use. They are set to expire on Sentry's servers after about 90 days (Sentry's current retention setting for our project). Sentry's own privacy terms are at sentry.io/privacy.
Why we are allowed to do this (GDPR legal basis): legitimate interest (Article 6(1)(f)): keeping a working app working. The balance is straightforward: the data is minimal, anonymous, content-free, and auto-expiring, so our interest in fixing bugs does not override your rights or freedoms; there is nothing about you in it.
Usage analytics (only if you say yes)
To improve the app, we ask whether we may collect usage information that cannot be linked to you: which tools are opened, which features are tapped, whether basic or advanced mode is used. What "asking" means here:
- Freely given. It is a real question: nothing is pre-ticked, and declining never blocks or limits the app in any way.
- Withdrawable. You can turn analytics off at any time with a toggle in Settings; it takes effect immediately.
- Content-free. Events contain no typed values, no calculations, and nothing about you: only feature names, options, and counts, plus a random per-install identifier of its own (the same kind crash reports use, but a separate one; the two datasets share no key; it exists so we can count devices, not identify people).
- No means no. If you decline, that choice is recorded on your device only; nothing about it is sent to us, and we do not collect analytics before you consent.
Analytics are processed for us by PostHog (EU cloud) as our processor; see posthog.com/privacy. Legal basis: consent (GDPR Article 6(1)(a)), and withdrawing it is as easy as giving it.
What the app does not do
The app does not:
- collect your name, email, phone number, or anything that identifies you as a person (the random per-install identifier used by crash reporting, described under Crash reports, is not tied to your name or account);
- read or access your contacts, photos, location, microphone, or camera;
- track your activity: usage analytics runs only if you said yes (anonymous, content-free, and you can turn it off any time; see Usage analytics), and it is never used to profile you or follow you across apps or sites.
Permissions
The app requests these permissions:
- Vibrate: used only to provide haptic feedback (a small vibration) when you tap keys and buttons. It accesses no data.
- Add to Photos / Gallery (only if you tap Save with the image format): used only to
save the image you explicitly asked to save and, on Android, to find the JobRig
album it creates for those images (on iOS, images are added straight to your photo library, no
album). It only ever adds images; it never looks at your existing photos, and nothing leaves
your device. Saving as PDF uses no photo permission at all: it goes to a folder you pick
(Android) or the share sheet (iOS).
- Honesty note (Android): JobRig uses this permission only to add the image you asked to save and to find its own JobRig album. It never reads, scans, or opens your existing photos. On iOS, the permission the app requests is itself add-only.
The app also has two standard system capabilities that never prompt you: internet access (used to deliver crash reports and, if you consented, anonymous usage events; see Crash reports and Usage analytics) and keeping the screen awake (used only while the keep-screen-awake setting is on; it touches no data).
Sharing
If you use the "share" function, only the image, text, or PDF you choose to share is passed to the app you select (e.g. a messaging app), or saved to your own device. We never see or store it.
Your rights
If you are in the EU/EEA or UK (GDPR): you have the rights of access, rectification, erasure, restriction, objection, and portability, and the right to withdraw any consent at any time (usage analytics is currently the only consent-based thing here; withdrawing is a toggle in Settings and takes effect immediately). To exercise any of them, email us (see Contact). One honest caveat: because our diagnostics are anonymous, we usually cannot connect any report to you, and the GDPR (Article 11) says we do not have to collect extra data about you just to be able to. If we cannot act on a request for that reason, we will say so plainly. You also always have the right to complain to a supervisory authority: your national data-protection authority in the EU/UK, or the Privacy Protection Authority in Israel.
Right to object, specifically: because crash reporting relies on our legitimate interest, GDPR Article 21 gives you the right to object to it. In choosing to collect only anonymous, content-free, auto-expiring crash data, we have kept that processing as light as possible. It has no in-app off switch: because a crash report is part of how we keep the app working, the practical way to stop it is to stop using the app.
If you are in California (CCPA/CPRA): as with everyone, everywhere, we do not sell personal information and do not share it for cross-context behavioral advertising (as the CCPA defines those terms), and never have; California law simply asks us to say it in its own words. You have the rights to know, correct, and delete; since nothing we hold is linked to you, there is generally nothing to look up or delete, but ask and we will answer honestly. We will never discriminate against you for exercising any privacy right.
Everyone, everywhere: the same standard applies. Email us with any privacy question or request and we will do what we can, honestly.
How long data is kept
- Crash reports: set to expire on Sentry's servers after about 90 days (Sentry's current setting).
- Usage events (only if you consented): kept on PostHog's EU servers; your consent choice itself is stored on your device only.
- Display preferences: stay on your device until you uninstall the app.
- Local diagnostics log: capped at a small, fixed number of most recent entries (older ones roll off automatically); you can view and clear it in Settings → Diagnostics.
International transfers
Crash reports are ingested and stored in the European Union. Sentry is operated by a US company, so limited access from outside the EU can occur in operating the service; that processing is governed by a data-processing agreement incorporating the EU Standard Contractual Clauses (with the UK Addendum for UK users). Usage events (only if you consented) are likewise stored in the European Union, on PostHog's EU cloud; PostHog is likewise operated by a US company, under its own DPA with the EU Standard Contractual Clauses. We are based in Israel, a country the European Commission recognizes as providing adequate data protection.
Children's privacy
JobRig is a work tool and is not directed at children under 13 (or the higher minimum digital-consent age where you live). Beyond the anonymous, content-free data described above (which says nothing about the person using the app), we do not knowingly collect personal data from anyone, including children: the app has no accounts, no messaging, and no data entry that leaves the device. If you are a parent or guardian and believe a child has somehow sent us personal data, contact us and we will delete it.
Our website (jobrig.app)
The website is a static informational site: it uses no cookies, no analytics, no tracking, and no sign-in or data-entry forms, so the site itself collects nothing about you, by design. It is hosted by Cloudflare, whose infrastructure logs visitor IP addresses and standard browser error reports in the ordinary course of serving any website (for security and delivery), as every web host does. We use Cloudflare only to serve the site and do not use those logs to identify visitors. Cloudflare acts as our processor for the site; its privacy policy is at cloudflare.com/privacypolicy. Why this is allowed (GDPR legal basis): legitimate interest (Article 6(1)(f)): securely delivering the site, the same routine logging every web host performs. These logs are kept by Cloudflare under its own short retention schedule for security operations; we never receive, store, or use them ourselves.
Security
Today, there is no JobRig server, no user database, and no account system. The little that can travel (the anonymous crash reports and, only with your consent, the anonymous usage events) is encrypted in transit (HTTPS/TLS), minimized by design, and handled by reputable processors under data-processing agreements. No system is perfectly secure, but there is very little here to attack. If a security incident ever affected the limited data described here, we would act promptly to contain it and would notify you and the relevant authorities where the law requires.
Who processes data for us
- Sentry (Functional Software, Inc.) receives and stores the anonymous crash reports. Where: EU data residency (ingest and storage); a US company, under a DPA with the EU Standard Contractual Clauses and UK Addendum.
- PostHog (PostHog, Inc.) receives and stores the anonymous usage events, only if you consented. Where: EU cloud hosting; a US company, under a DPA with the EU Standard Contractual Clauses.
- Cloudflare, Inc. hosts the jobrig.app website. Where: a global network, with standard infrastructure logs.
No one else. If this list ever grows, this policy changes first (see Changes).
Changes to this policy
If anything material changes (what data is handled, why, or by whom), this policy will be updated with a new effective date before the change ships, the store privacy declarations will be updated to match in the same release, and we will give notice via the app's store listing (and, where sensible, in the app) before it takes effect. Minor clarifications that do not change substance may be made at any time.
Who is responsible for your data
The data controller for JobRig and jobrig.app is Raz Sharabi, an individual developer based in Israel.
Contact
Questions or requests about this policy: support@jobrig.app