Privacy Policy

Last Updated: February 27, 2026

1. Introduction

GreenSight Technologies, Inc. (“GreenSight,” “we,” “our,” or “us”) is committed to protecting the privacy of the individuals and organizations that use our software platform, mobile applications, web applications, and related services (collectively, the “Services”). This Privacy Policy describes how we collect, use, disclose, and protect information in connection with the Services.

This Privacy Policy applies to all users of the Services, including employees and contractors of our business customers. If your organization has entered into a Master Subscription Agreement (MSA) or other written agreement with GreenSight, the data processing terms of that agreement may supplement or, to the extent of any conflict, control over this Privacy Policy.

By accessing or using the Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, do not use the Services.

2. Information We Collect

2.1 Information You Provide

We collect information that you or your organization provide directly to us, including:

  • Account information: name, email address, company name, job title, phone number, and billing information
  • Service data: photos of electronic devices, serial numbers, model numbers, device specifications, condition assessments, pricing inputs, and other data you upload or input into the Services
  • Communications: messages, feedback, support requests, and other communications you send to us
  • Payment information: billing address and payment method details (processed by our third-party payment processor, Stripe; we do not store full payment card numbers)

2.2 Information Collected Automatically

When you use the Services, we automatically collect certain information, including:

  • Usage data: features accessed, actions taken, session duration, frequency of use, pricing sessions, scan volumes, and workflow patterns
  • Device and technical data: device type, operating system, browser type, IP address, device identifiers, and crash reports
  • Location data: approximate geolocation derived from IP address and, where enabled by your device settings, precise geolocation data associated with scans or uploads
  • Cookies and similar technologies: we use cookies, local storage, and similar technologies to maintain sessions, remember preferences, and analyze usage patterns

2.3 Information from Third Parties

We may receive information about you from third-party sources, including identity verification services, business data providers, and third-party integrations you or your organization choose to connect to the Services.

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Providing and Improving the Services

  • Operating, maintaining, and delivering the Services
  • Processing transactions and sending related notices
  • Providing customer support and responding to inquiries
  • Analyzing usage to improve features, performance, and user experience
  • Developing new products, features, and services

3.2 Artificial Intelligence and Machine Learning

We use data collected through the Services, in anonymized or de-identified form, to develop, train, and improve our artificial intelligence and machine learning models, algorithms, and related technologies. These models power core features of the Services, including device identification, pricing, condition grading, and routing recommendations. For customers operating under an MSA, the data usage rights and any opt-out mechanisms set forth in the MSA shall apply.

3.3 Aggregated and De-Identified Data

We create aggregated, anonymized, or de-identified data derived from your use of the Services (“Aggregated Data”). Aggregated Data does not identify you or any individual and is not considered personal information under applicable law. We own all Aggregated Data and may use it for any lawful business purpose, including: operating and benchmarking the Services; developing new products and features; generating and publishing industry analytics, reports, indices, and insights; licensing, selling, or distributing Aggregated Data or derivative works to third parties; and research and development.

3.4 Communications

  • Sending service-related announcements, updates, and administrative messages
  • Sending marketing communications (where permitted by law and subject to your opt-out rights)
  • Responding to your comments, questions, and requests

3.5 Safety and Compliance

  • Detecting, preventing, and addressing fraud, security incidents, and technical issues
  • Enforcing our Terms of Service and other agreements
  • Complying with legal obligations, responding to lawful requests, and protecting rights and safety

4. How We Share Your Information

We do not sell your personally identifiable information. We may share information in the following circumstances:

4.1 Service Providers

We share information with third-party vendors and service providers who perform services on our behalf, such as cloud hosting (e.g., AWS), payment processing (e.g., Stripe), analytics, email delivery, and customer support tools. These providers are contractually obligated to use your information only to perform services for us and in accordance with this Privacy Policy.

4.2 Your Organization

If you use the Services through an account provisioned by your employer or another organization, that organization may have access to your account information and usage data as an administrator of the Services.

4.3 Aggregated and De-Identified Data

We may share Aggregated Data with third parties, including industry partners, research organizations, and commercial data consumers. As described in Section 3.3, Aggregated Data does not identify you or any individual. This sharing may be for commercial purposes, including licensing and sale of aggregated industry datasets, analytics, and insights.

4.4 Legal Requirements

We may disclose information if required by law, regulation, legal process, or governmental request, or if we believe disclosure is necessary to protect the rights, property, or safety of GreenSight, our users, or the public.

4.5 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your information may be transferred as part of the transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

4.6 With Your Consent

We may share information with third parties when you direct us to do so or provide your consent.

5. Data Retention

We retain your information for as long as your account is active or as needed to provide the Services. We also retain information as necessary to comply with our legal obligations, resolve disputes, enforce our agreements, and for legitimate business purposes (such as maintaining Aggregated Data).

Upon termination of your account, we will make your data available for export for a period of thirty (30) days, after which we may delete your personal data from our active systems. Aggregated Data derived from your use of the Services is retained indefinitely as it does not identify you.

6. Data Security

We implement reasonable administrative, technical, and physical safeguards designed to protect your information from unauthorized access, disclosure, alteration, and destruction. These measures include encryption in transit and at rest, access controls, regular security assessments, and employee training.

No method of transmission over the Internet or electronic storage is completely secure. While we strive to protect your information, we cannot guarantee its absolute security.

7. Your Rights and Choices

7.1 Account Information

You may update or correct your account information at any time by logging into the Services or contacting us. You may request deletion of your account by contacting us at [email protected].

7.2 Marketing Communications

You may opt out of receiving marketing emails by clicking the “unsubscribe” link in any marketing email or by contacting us. Even if you opt out, we may still send you non-promotional communications related to your account and the Services.

7.3 Cookies

Most web browsers are set to accept cookies by default. You can adjust your browser settings to remove or reject cookies. Note that disabling cookies may affect the functionality of the Services.

7.4 Location Data

You can control the collection of precise location data through your device settings. Disabling location services may limit certain features of the Services.

8. California Privacy Rights

If you are a California resident, you have the following rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, “CCPA”):

  • Right to Know: You may request that we disclose the categories and specific pieces of personal information we have collected about you, the sources of collection, the purposes for collection, and the categories of third parties with whom we share your information.
  • Right to Delete: You may request that we delete personal information we have collected from you, subject to certain exceptions.
  • Right to Correct: You may request that we correct inaccurate personal information.
  • Right to Opt-Out of Sale or Sharing: We do not sell personally identifiable information. We may share Aggregated Data (which does not constitute personal information) for commercial purposes as described in this Privacy Policy.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights.

To exercise these rights, contact us at [email protected] or use the methods described in Section 13. We will verify your identity before processing your request. You may also designate an authorized agent to make requests on your behalf.

9. International Users

9.1 Data Transfers

GreenSight is based in the United States, and the Services are hosted in the United States. If you access the Services from outside the United States, your information will be transferred to and processed in the United States, where data protection laws may differ from those of your jurisdiction. By using the Services, you consent to the transfer of your information to the United States.

9.2 European Economic Area, United Kingdom, and Switzerland

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data on the following legal bases: performance of a contract (to provide the Services), legitimate interests (to improve and secure the Services, and to create Aggregated Data), consent (where you have provided it), and compliance with legal obligations.

In addition to the rights described in Section 7, you have the following rights under the General Data Protection Regulation (GDPR):

  • Right to access, rectify, or erase your personal data
  • Right to restrict or object to processing of your personal data
  • Right to data portability
  • Right to withdraw consent at any time (where processing is based on consent)
  • Right to lodge a complaint with a supervisory authority

For international data transfers, we rely on Standard Contractual Clauses approved by the European Commission or other lawful transfer mechanisms. Where required, we will enter into a Data Processing Agreement (DPA) with your organization. To request a DPA, contact [email protected].

10. Children's Privacy

The Services are not directed to individuals under the age of 16, and we do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly. If you believe a child has provided us with personal information, please contact us at [email protected].

11. Third-Party Links and Services

The Services may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to the practices of third parties. We encourage you to review the privacy policies of any third-party services you access through or in connection with the Services.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the “Last Updated” date and provide reasonable notice (which may include email notification or in-app notice). Your continued use of the Services after the effective date of a revised Privacy Policy constitutes your acceptance of the updated terms.

13. Contact Us

If you have questions about this Privacy Policy, wish to exercise your privacy rights, or have a complaint, please contact:

GreenSight Technologies, Inc.
Privacy Team
872 Higuera Street, San Luis Obispo, CA 93401
Email: [email protected]