Privacy Policy

Last updated: March 15, 2026

Introduction

Welcome to JobForge. We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our job management platform and integrated services, including our QuickBooks Online integration.

Information We Collect

Account Information

When you create a JobForge account, we collect:

  • Name and email address
  • Company information
  • Password (encrypted)
  • Profile preferences

Business Data

Through your use of JobForge, we store:

  • Client/customer information
  • Quote and invoice data
  • Job and project details
  • Time tracking records
  • Files and documents you upload

QuickBooks Integration Data

When you connect QuickBooks Online, we collect and store:

  • OAuth access tokens (encrypted with AES-256-GCM)
  • QuickBooks company name and ID
  • Customer, estimate, invoice, and payment data from QuickBooks
  • Sync history and status information

Security Note: All QuickBooks OAuth tokens are encrypted at rest using industry-standard AES-256-GCM encryption. We never store your QuickBooks password.

Usage Information

  • Log data (IP address, browser type, pages visited)
  • Device information
  • Feature usage analytics

How We Use Your Information

To Provide Our Services

  • Create and manage your account
  • Store and organize your business data
  • Sync data with QuickBooks Online (when enabled)
  • Generate reports and analytics
  • Process payments through integrated services

To Improve Our Platform

  • Analyze usage patterns to enhance features
  • Identify and fix technical issues
  • Develop new functionality

To Communicate With You

  • Send service notifications and updates
  • Respond to support requests
  • Share important platform changes

How We Share Your Information

We Do NOT Sell Your Data

We never sell, rent, or trade your personal information or business data to third parties for marketing purposes.

Service Providers

We share data with trusted service providers who help us operate JobForge:

  • Hosting: Vercel (application hosting)
  • Database: Neon (PostgreSQL database)
  • Email: Email service provider (transactional emails)
  • QuickBooks: Intuit (when you enable the integration)

All service providers are bound by data protection agreements.

QuickBooks Integration

When you connect QuickBooks Online, we synchronize data between JobForge and your QuickBooks account according to your sync settings. This data exchange is:

  • Controlled entirely by you (you can disconnect anytime)
  • Limited to the data types you enable (clients, quotes, invoices, etc.)
  • Secured with OAuth 2.0 authentication
  • Subject to Intuit's privacy policy for QuickBooks Online

Legal Requirements

We may disclose information if required by law, court order, or government request, or to protect our rights, property, or safety.

Data Security

Encryption

  • In Transit: All data transmitted between your browser and our servers uses TLS/SSL encryption
  • At Rest: Sensitive data (passwords, OAuth tokens) is encrypted using AES-256-GCM
  • Database: Access restricted to authorized personnel only

Access Controls

  • Role-based access control (ADMIN, EMPLOYEE)
  • Secure authentication with JWT tokens
  • Automatic session expiration

QuickBooks Token Security

  • OAuth tokens encrypted with AES-256-GCM and random IV
  • Automatic token refresh before expiration
  • Tokens revoked immediately upon disconnection

Your Rights and Choices

Access and Export

You can access and export your data at any time through the JobForge platform.

Correction and Deletion

You can update or delete your information through your account settings.

QuickBooks Integration Control

You have full control over the QuickBooks integration:

  • Enable/Disable Sync: Turn synchronization on or off anytime
  • Select Data Types: Choose which entities to sync (clients, quotes, invoices, payments, time entries)
  • Disconnect: Revoke QuickBooks access tokens and delete integration settings

Note: Disconnecting QuickBooks does not delete your data in either JobForge or QuickBooks. It only stops synchronization and revokes access tokens.

Account Deletion

To delete your account and all associated data, contact support. Deletion is permanent and cannot be undone.

Data Retention

  • Active Accounts: Data retained as long as your account is active
  • Deleted Accounts: Data deleted within 30 days of account deletion
  • Sync Logs: QuickBooks sync logs retained for 90 days
  • Backups: Backup data may be retained for up to 90 days after deletion

Cookies and Tracking

JobForge uses cookies for:

  • Authentication: Keep you logged in (httpOnly secure cookies)
  • Preferences: Remember your settings and preferences
  • Analytics: Understand how users interact with the platform

You can disable cookies in your browser, but some features may not work properly.

Third-Party Services

QuickBooks Online

When you use the QuickBooks integration, your use of QuickBooks Online is governed by Intuit's Privacy Policy: intuit.com/privacy/statement

Links to Other Sites

JobForge may contain links to third-party websites. We are not responsible for the privacy practices of external sites.

International Users

JobForge is hosted in the United States. If you access JobForge from outside the U.S., your information may be transferred to, stored, and processed in the U.S. By using JobForge, you consent to this transfer.

Children's Privacy

JobForge is not intended for children under 13. We do not knowingly collect information from children under 13. If you believe we have collected such information, please contact us.

Changes to This Privacy Policy

We may update this privacy policy from time to time. We will notify you of significant changes by email or through a notice on the platform. The "Last updated" date at the top indicates when the policy was last revised.

Contact Us

If you have questions about this privacy policy or our data practices, contact us:

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: Request details about the personal information we collect
  • Right to Delete: Request deletion of your personal information
  • Right to Opt-Out: We do not sell personal information
  • Right to Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise these rights, contact us at the email above.

GDPR Rights (European Users)

If you are in the European Economic Area, you have rights under the General Data Protection Regulation (GDPR):

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate data
  • Right to Erasure: Request deletion of your data
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a machine-readable format
  • Right to Object: Object to processing of your data

To exercise these rights, contact us at support@job-forge.app.