Privacy Policy

Last updated May 1, 2026

Effective Date: January 16, 2025

Last Updated: April 30, 2026

Scope: This Privacy Policy covers both the ToolBerry Application (available at toolberry.app, the iOS app, the Android app, and the desktop app — collectively, the "App") and the ToolBerry Marketing Website (toolberry.net — the "Website"). The App and the Website have different data practices, which are described separately below. The majority of this policy addresses the App, which is designed with privacy at its core. Website-specific practices (including cookies and marketing analytics) are described in the dedicated section near the end of this document.

Introduction

DandCode LLC d/b/a ToolBerry ("we," "us," or "our") operates the ToolBerry field service management application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App.

ToolBerry is designed with privacy at its core. Unlike traditional cloud-based applications, your business data is stored locally on your device and never transmitted to our servers. This Privacy Policy describes the limited information we do collect and how we handle it.

Please read this Privacy Policy carefully. By using the App, you agree to the collection and use of information in accordance with this policy.

Our Privacy Commitment

We believe your business data belongs to you. ToolBerry is built on these privacy principles:

  • Your Data Stays Local: All work orders, customer information, schedules, and business records are stored exclusively on your device
  • Bring Your Own Storage: When you choose to back up, your data goes to your own cloud storage account (Dropbox today, more providers planned). We do not host your business data.
  • No Backend Servers: We do not operate servers that store your business data
  • No Data Sales: We never sell your personal information to third parties
  • No Advertisements: Our App does not display ads or use advertising trackers
  • No Third-Party Analytics: We do not use analytics services beyond essential error monitoring

Information We Collect

Information Stored Locally on Your Device

The following information is stored only on your device and is never transmitted to us:

  • Business data you create (work orders, customer records, schedules, invoices)
  • App preferences and settings (theme, language, UI customizations)
  • Authentication tokens for optional integrations (encrypted)

You have complete control over this data. You can access, modify, export, or delete it at any time directly within the App.

Device Contacts (Optional)

On mobile devices (iOS and Android), you may choose to grant ToolBerry access to your device's address book. This feature is entirely optional and requires your explicit permission through the operating system's permission dialog.

What We Access:

  • Contact names (first and last name)
  • Phone numbers
  • Email addresses
  • Contact photos

How It Works:

  • Contact data is read from your device's address book and displayed within the App so you can quickly add contacts to work orders and customer records
  • When you select a device contact, their information is imported into the App's local database on your device
  • Contact data is never transmitted to our servers or any third party
  • You can deny or revoke this permission at any time through your device's settings
  • If you deny permission, all other App features continue to work normally

Information We Collect Through Error Monitoring

We use Sentry, a third-party error monitoring service, to help us identify and fix technical issues. When you use the App, the following information may be collected:

Onboarding Information:

  • Industry selection
  • Company size category
  • Preferred language
  • Whether you chose to import sample data

Technical and Diagnostic Data:

  • Device type, operating system, and App version
  • Error messages and crash reports
  • App usage events (such as feature usage counts, record creation/editing statistics)
  • Approximate geographic region (derived from IP address, then discarded)
  • Timestamps of when errors or events occurred

Important: Error logs do not contain your actual business data (customer names, addresses, financial information) unless specifically related to an error condition. Sentry's session replay feature is completely disabled.

Third-Party Services

Mapbox

Our App uses Mapbox to provide mapping and location features:

  • Displaying maps of service locations
  • Converting addresses to geographic coordinates (geocoding)
  • Providing address suggestions as you type (autocomplete)
  • Future features may include distance calculation, travel time estimates, and routing

When you use these features, address information you enter may be transmitted to Mapbox. We do not provide Mapbox with your personal information beyond what is necessary for these mapping services.

Mapbox's use of this data is governed by:

Dropbox (Optional)

You may choose to enable backup of your data to your personal Dropbox account. This feature is entirely optional and requires your explicit authorization.

How Dropbox Backup Works:

  • You authenticate directly with Dropbox using their secure login
  • You may provide your own encryption password to encrypt backup data before upload
  • We store only a secure authentication token (encrypted) on your device to maintain your backup connection

Zero-Knowledge Architecture:

  • We do NOT store your Dropbox password
  • We do NOT have access to your encryption key or the plaintext contents of your backups
  • We cannot decrypt, read, or recover your backed-up data

Your Responsibilities:

  • Backups are your responsibility. Because ToolBerry does not store your business data on our servers, we strongly recommend enabling Dropbox backup (or another backup method of your choice) and periodically verifying that backups are running. Without a backup, data on a lost, damaged, or wiped device cannot be recovered.
  • You can disconnect Dropbox at any time in the App settings
  • If you set an encryption password and lose it, backup data cannot be recovered by anyone — including us. We recommend storing it in a password manager.
  • When you use Dropbox backup, Dropbox's Privacy Policy applies to data stored in your account

Sentry (Error Monitoring)

Sentry is provided by Functional Software, Inc. and processes error and diagnostic data on our behalf as a service provider under a Data Processing Agreement. Sentry is certified under the EU-US Data Privacy Framework. For more information, visit sentry.io/privacy.

How We Use Your Information

We use the limited information we collect for the following purposes:

  • App Improvement: To identify and fix bugs, crashes, and technical issues
  • Service Quality: To understand how the App is used and improve performance
  • Feature Development: To inform decisions about new features based on usage patterns
  • Support: To assist you if you contact us with technical problems

Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), United Kingdom, and Switzerland, we process personal data under the following legal bases:

Processing ActivityLegal BasisGDPR Article
Error logging and crash reportsLegitimate InterestArticle 6(1)(f)
Device telemetryLegitimate InterestArticle 6(1)(f)
Mapbox featuresContract PerformanceArticle 6(1)(b)
Dropbox BackupConsentArticle 6(1)(a)
Device Contacts AccessConsentArticle 6(1)(a)
Website Analytics & Marketing CookiesConsentArticle 6(1)(a)

Error monitoring is recognized as a legitimate interest under GDPR Recital 49, which specifically acknowledges network and information security.

Data Retention

Local Data: Your business data is stored only on your device. You control how long it remains—delete it anytime through the App or by clearing app/browser storage.

Error Reports: Crash and error data sent to Sentry is automatically deleted after 90 days.

Support Communications: If you contact us for support, we retain those communications for up to 3 years to provide consistent service.

Data Sharing and Disclosure

We Do Not Sell Your Personal Information. We have not sold personal information in the preceding 12 months and do not plan to sell personal information in the future.

We may share information only in the following limited circumstances:

  • Service Providers: With Sentry for error monitoring and Mapbox for mapping services, acting on our behalf under contract
  • Legal Requirements: If required by law, court order, or government request
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with notice to you
  • With Your Consent: For any other purpose with your explicit consent

International Data Transfers

Your information may be transferred to and processed in the United States by our service providers (Sentry and Mapbox). These transfers are protected by:

  • EU-US Data Privacy Framework: Our service providers participate in the DPF, recognized by the European Commission as providing adequate protection
  • Standard Contractual Clauses: We have implemented the European Commission's approved SCCs with our processors

You may obtain a copy of relevant transfer mechanisms by contacting us.

Your Privacy Rights

For All Users

  • Access, modify, export, or delete your locally stored data directly in the App at any time
  • Disconnect optional Dropbox backup at any time

For California Residents (CCPA/CPRA)

If you are a California resident, you have the right to:

  • Know what personal information we have collected about you
  • Delete your personal information
  • Correct inaccurate personal information
  • Non-Discrimination for exercising your privacy rights

Because we do not sell or share personal information for cross-context behavioral advertising, the right to opt-out of sale/sharing does not apply.

For EEA, UK, and Swiss Residents (GDPR)

You have the right to:

  • Access your personal data and receive a copy
  • Rectify inaccurate personal data
  • Erase your personal data ("right to be forgotten")
  • Restrict processing of your personal data
  • Data portability
  • Object to processing based on legitimate interest
  • Withdraw consent at any time (for consent-based processing)
  • Lodge a complaint with your local data protection authority

For Residents Elsewhere

If you do not reside in California, the EEA, the UK, or Switzerland, you can still exercise the rights described under "For All Users" above. Where local privacy laws grant you additional rights, we will honor them to the extent required by law. To submit any request, contact us at contact@toolberry.app.

Exercising Your Rights

To exercise your rights regarding error monitoring data, contact us at contact@toolberry.app.

We will:

  • Acknowledge your request within 10 business days
  • Complete your request within 45 days (CCPA) or one month (GDPR)
  • Provide any required information free of charge

Data Security

We implement appropriate technical and organizational measures to protect your information:

  • All data transmitted to our service providers uses HTTPS encryption
  • Optional Dropbox backup supports user-provided encryption keys
  • Authentication tokens are stored encrypted on your device
  • We follow secure development practices

Your Responsibility: Because your business data is stored locally on your device, its security depends on your device security. We recommend enabling device encryption, using strong passcodes, and enabling automatic screen lock. If your device is lost or stolen, locally stored data may be accessible if the device is not adequately protected.

Children's Privacy

ToolBerry is a business application intended for use by adults. We do not knowingly collect personal information from children under 13 years of age (or 16 in the EEA).

If we learn that we have collected personal information from a child under these ages, we will delete that information promptly. If you believe we may have information from or about a child, please contact us.

Cookies and Tracking Technologies in the App

The ToolBerry App does not use cookies. We do not track your activity across websites, serve advertisements, or use advertising trackers within the App.

The App uses your device's local storage (OPFS, localStorage) to enable offline functionality. This data remains entirely on your device and is essential for the App to work.

Do Not Track: Because the App does not use tracking technologies, there is no tracking activity to disable in response to "Do Not Track" browser signals.

Marketing Website (toolberry.net)

The ToolBerry marketing website at toolberry.net is separate from the App and has different data practices. The Website is used to provide information about ToolBerry, and does not process or store any of your business data.

Information Collected on the Website

When you visit toolberry.net, we may collect the following information through cookies and similar technologies:

  • Page views and browsing behavior on the Website
  • Referral source (how you arrived at the Website)
  • Device and browser information (device type, operating system, browser type, screen resolution)
  • Approximate location (derived from IP address)
  • Interaction data (clicks, scroll depth, time on page)

Cookies and Tracking Technologies on the Website

The Website uses cookies and similar tracking technologies for the following purposes:

Analytics Cookies:

  • Google Analytics / Google Tags: We use Google Analytics to understand how visitors interact with our Website, measure traffic sources, and improve our content. Google may use this data in accordance with Google's Privacy Policy.

Marketing Cookies:

  • Meta (Facebook) Pixel / Tags: We use Meta tracking technologies to measure the effectiveness of our advertising campaigns, build audiences for ad targeting, and understand how visitors interact with our Website after viewing our ads. Meta may use this data in accordance with Meta's Privacy Policy.
  • Other Marketing Tags: We may use additional marketing and advertising tags from time to time for campaign measurement and optimization.

Cookie Consent: When you first visit the Website, you will be presented with a cookie consent banner. You may accept or decline non-essential cookies. Essential cookies required for the Website to function cannot be disabled.

Managing Cookies: You can control cookies through:

  • The cookie consent banner on the Website
  • Your browser settings (blocking or deleting cookies)
  • Browser extensions designed for cookie management

Please note that disabling cookies may affect your experience on the Website but will have no impact on the App.

How We Use Website Information

We use information collected on the Website for:

  • Marketing Analytics: Understanding how visitors find and use our Website
  • Advertising: Measuring the effectiveness of advertising campaigns and reaching relevant audiences
  • Website Improvement: Improving the content, layout, and performance of the Website

Data Sharing on the Website

Information collected through Website cookies may be shared with:

  • Google — for analytics and advertising purposes
  • Meta (Facebook) — for advertising measurement and audience building

These third parties may combine this information with other data they have collected about you. Their use of your data is governed by their respective privacy policies.

Important: The marketing website (toolberry.net) and the ToolBerry App (toolberry.app) are completely separate. No data from the App is shared with the Website's analytics or marketing tools, and no marketing cookies are used within the App.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. For material changes, we will notify you by in-app notification or other prominent means before the changes take effect.

We encourage you to review this policy periodically. Your continued use of the App after changes become effective constitutes acceptance of the revised policy.

Previous versions are available upon request.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

DandCode LLC d/b/a ToolBerry

Email: contact@toolberry.app

For GDPR-related inquiries, you may also contact your local data protection authority.