EverAdmin

Privacy Policy

Last updated: March 17, 2026

1. Introduction

EverAdmin, Inc. ("EverAdmin," "we," "us," or "our") respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the EverAdmin platform, website, and related services (collectively, the "Service"). By using the Service, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, company name, job title, and company size when you register or request early access.
  • Compliance Data: Certifications, licenses, insurance policies, training records, and other regulatory documents uploaded to the Service.
  • Personnel Records: Names, roles, and contact details for employees, contractors, vendors, and partners managed within the platform.
  • Communications: Messages, feedback, and correspondence you send to us through the Service or email.
  • Payment Information: Billing details when paid plans are introduced (processed by a PCI-compliant third-party payment processor; we do not store full payment card numbers).

2.2 Information Collected Automatically

  • Usage Data: Pages visited, features used, timestamps, click paths, search queries within the Service, and session duration.
  • Device & Browser Data: IP address, browser type and version, operating system, device identifiers, and screen resolution.
  • Log Data: Server logs capturing access times, error reports, and referring URLs.

2.3 Cookies & Tracking Technologies

We use cookies, local storage, and similar technologies to maintain session state, remember preferences, and analyze usage patterns. You can manage cookie preferences through your browser settings, although disabling cookies may limit certain features of the Service.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service;
  • Process account registration and early-access requests;
  • Send compliance reminders, alerts, and notifications you have configured;
  • Enable compliance sharing through Upstream and Downstream Projects;
  • Generate reports and dashboards displaying your compliance status;
  • Improve, personalize, and optimize the Service and user experience;
  • Respond to your inquiries, support tickets, and feedback;
  • Send administrative communications, including updates, security alerts, and policy changes;
  • Detect, investigate, and prevent fraudulent or unauthorized activity;
  • Comply with legal obligations and enforce our Terms of Service.

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA) or United Kingdom, we process your data based on the following legal grounds:

  • Contractual Necessity: Processing required to perform our agreement with you and provide the Service.
  • Legitimate Interest: Improving the Service, ensuring security, and communicating relevant updates.
  • Consent: Where you have explicitly consented to specific processing activities, such as marketing communications.
  • Legal Obligation: Processing required to comply with applicable laws and regulations.

5. Data Sharing & Third Parties

We do not sell your personal information. We may share data in the following circumstances:

  • Service Providers: We work with trusted third-party vendors who assist in hosting, analytics, email delivery (e.g., Brevo), payment processing, and customer support. These providers are contractually obligated to protect your data.
  • Compliance Sharing: When you use Upstream or Downstream Projects, your compliance data is shared with the parties you designate. You control what is shared and with whom.
  • Legal Requirements: We may disclose information if required by law, regulation, court order, or governmental request.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you before your data becomes subject to a different privacy policy.
  • With Your Consent: We may share information for purposes not described here with your explicit consent.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. If you terminate your account, we will retain your data for up to 30 days to allow for export, after which it will be securely deleted. Certain data may be retained longer where required by law, for legitimate business purposes such as fraud prevention, or to resolve disputes.

7. Data Security

We implement industry-standard technical and organizational measures to protect your information, including encryption in transit (TLS) and at rest, access controls, regular security assessments, and secure infrastructure. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security. You are responsible for keeping your account credentials confidential.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data, subject to legal obligations.
  • Portability: Request your data in a structured, machine-readable format.
  • Restriction: Request that we limit the processing of your data in certain circumstances.
  • Objection: Object to processing based on legitimate interests or for direct marketing purposes.
  • Withdraw Consent: Where processing is based on consent, you may withdraw it at any time without affecting prior processing.

To exercise any of these rights, contact us at privacy@everadmin.com. We will respond within 30 days (or within the timeframe required by applicable law).

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States, where data protection laws may differ. When we transfer data internationally, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission, or rely on other lawful transfer mechanisms.

10. Children's Privacy

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 16, we will take steps to delete that information promptly. If you believe a child has provided us with personal data, please contact us at privacy@everadmin.com.

11. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to request deletion, and the right to opt out of the sale of personal information. As stated above, we do not sell your personal information. To exercise your CCPA rights, contact us at privacy@everadmin.com.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or the Service. We will post the revised policy on our website and update the "Last updated" date. For material changes, we will provide additional notice such as an email notification. Your continued use of the Service after changes are posted constitutes acceptance of the revised policy.

13. Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or our data practices, please contact us at:

EverAdmin, Inc.
Email: privacy@everadmin.com
Website: everadmin.com

← Back to home