Privacy Policy
Last Updated: February 12, 2026
RestorationAudit (restorationaudit.com) is a product and service of RestoScope Inc., a Delaware Corporation.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services. It should be read in conjunction with our Terms and Conditions, which govern your use of our Services.
1. Information We Collect
1.1 Personal Information
We may collect personal information that you voluntarily provide to us, including but not limited to:
- Name and contact information (email address, phone number, mailing address)
- Company or organization name and title
- Account credentials (username and password)
- Payment and billing information
- Communications and correspondence with us
1.2 Documents and Business Information
When you use our audit services, you may submit:
- Restoration invoices and estimates
- Supporting documentation (photos, moisture readings, drying logs)
- Claim information and policy details
- Contractor and vendor information
We treat all submitted documents as confidential business information.
1.3 Data Ownership
You retain all ownership rights in the documents and data you submit to us. We do not acquire any ownership interest in your data. We process your submitted materials to provide and improve the Services and to fulfill our legal and contractual obligations, under a limited license as described in our Terms and Conditions.
1.4 Automatically Collected Information
When you visit our website, we automatically collect certain information about your device and usage, including:
- IP address and approximate geographic location derived from IP address
- Browser type and version
- Operating system
- Device type and identifiers
- Pages visited and time spent on pages
- Referring website or source
- Clickstream data and navigation patterns
2. Tracking Technologies and Analytics
We use various tracking technologies to collect and analyze information about your use of our website. This helps us improve our services and provide a better user experience.
2.1 Cookies
We use cookies and similar tracking technologies to track activity on our website and store certain information. Cookies are small data files placed on your device. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.
2.2 Analytics Services
We use the following third-party analytics services:
Google Analytics
We use Google Analytics to analyze website traffic and usage patterns. Google Analytics collects information such as how often users visit our site, what pages they visit, and what other sites they used prior to coming to our site. We use this information to improve our website and services. Google Analytics collects the IP address assigned to you on the date you visit our site, but not your name or other identifying information. Google's ability to use and share information collected by Google Analytics about your visits to this site is restricted by the Google Analytics Terms of Service and the Google Privacy Policy. You can opt-out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.
PostHog
We use PostHog for product analytics to understand how users interact with our platform. PostHog helps us track feature usage, user flows, and identify areas for improvement. PostHog may collect information such as device information, IP address, browser type, pages visited, and actions taken on our site. This data is used to analyze and improve our services. For more information about PostHog's privacy practices, please visit PostHog's privacy policy.
2.3 Other Tracking Technologies
We may also use:
- Web beacons: Small electronic images used to track user behavior and measure effectiveness of our content
- Pixel tags: Code snippets that help us understand how visitors interact with our website
- Session replay tools: These tools record interactions such as mouse movements, clicks, scrolls, and form interactions (with sensitive input fields masked) to help us understand user experience and identify usability issues. You may opt out of session recording by contacting us using the information in Section 14.
3. AI-Assisted Processing of Your Data
Our audit services utilize artificial intelligence tools and automated systems to analyze documents you submit. This section explains how AI is used in processing your data.
3.1 How AI Is Used
- Documents you submit are processed using AI-assisted tools to deliver our audit services and to fulfill our legal, contractual, and security obligations, including identifying potential overbilling, documentation gaps, and billing discrepancies.
- AI-generated findings are reviewed and validated by experienced restoration professionals prior to report delivery.
- Any third-party AI service providers we engage are contractually required to maintain confidentiality and data protection obligations consistent with this Privacy Policy and our Terms and Conditions.
3.2 Your Data Is Not Used to Train AI Models
We do not use identifiable client-submitted data to train publicly available or third-party artificial intelligence models.
For additional detail on our use of AI and automated processing, see Section 3 of our Terms and Conditions.
4. How We Use Your Information
We use the information we collect for the following purposes:
| Purpose | Description |
|---|---|
| Service Delivery | To provide our invoice audit services, including AI-assisted analysis of submitted documentation, generate reports, and fulfill our contractual obligations |
| Communication | To respond to inquiries, send service updates, and provide customer support |
| Account Management | To create and manage your account, process payments, and maintain records |
| Analytics | To analyze usage patterns, improve our website and services, and develop new features |
| Marketing | To send promotional communications (with your consent) and measure marketing effectiveness |
| Legal Compliance | To comply with legal obligations, respond to legal requests, and protect our rights |
| Security | To detect, prevent, and address fraud, security breaches, and technical issues |
5. Information Sharing and Disclosure
We do not sell your personal information. We may share your information in the following circumstances:
5.1 Service Providers
We may share information with third-party vendors who perform services on our behalf, such as:
- Cloud hosting and data storage providers
- Payment processors
- Analytics providers (Google Analytics, PostHog)
- AI and machine learning service providers used to analyze submitted documentation
- Customer support platforms
- Email service providers
We require these service providers to implement appropriate confidentiality and security safeguards and to use your information only for the purposes for which it is disclosed.
A current list of subprocessors that process client data in connection with our audit services is available upon written request. Please contact us using the information in Section 14.
5.2 Legal Requirements
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).
5.3 Business Transfers
If RestoScope Inc. is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.
5.4 With Your Consent
We may share your information with third parties when you have given us explicit consent to do so.
6. Data Retention and Deletion
6.1 Retention Periods
We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including:
- As long as your account is active or you maintain an active relationship with us
- As needed to provide our services
- To comply with legal obligations (e.g., tax and accounting requirements)
- To resolve disputes and enforce our agreements
Client-submitted documentation will be retained only as long as necessary to provide the Services or as otherwise agreed in writing with the Client. We retain our own financial and accounting records for periods required by applicable tax and corporate recordkeeping laws.
6.2 Data Deletion
You may request deletion of your data at any time by submitting a verified written request to [email protected].
Upon receipt of a verified deletion request:
- We will delete your data from active systems within a commercially reasonable timeframe.
- Data in backup systems will be overwritten in the ordinary course of our backup rotation cycle.
- We may retain limited information where required by law, regulation, or legitimate business record-keeping obligations.
For additional detail on data retention and deletion, see Section 9 of our Terms and Conditions.
7. Data Security and Incident Notification
7.1 Security Measures
We implement appropriate technical and organizational security measures to protect your information, including:
- Encryption of data in transit (TLS/SSL) and at rest within secure cloud infrastructure
- Logical segregation of client data within a multi-tenant environment
- Access controls limiting employee access on a need-to-know basis
- Authentication requirements for portal users
- Periodic security reviews and risk assessments
However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.
7.2 Security Incident Notification
In the event of a confirmed security incident involving unauthorized access to personal data under our control, we will:
- Notify you without unreasonable delay after confirmation of the incident
- Provide reasonably available information about the nature and scope of the incident
- Cooperate in good faith to investigate and remediate the incident
Where required by applicable law, we will also notify relevant regulatory authorities within the legally mandated timeframe. Notification of a security incident does not constitute an admission of fault or liability.
For additional detail, see Section 10 of our Terms and Conditions.
8. Your Privacy Rights
Depending on your location, you may have certain rights regarding your personal information:
8.1 Access and Portability
You may request a copy of the personal information we hold about you in a structured, commonly used format.
8.2 Correction
You may request that we correct inaccurate or incomplete personal information.
8.3 Deletion
You may request that we delete your personal information, subject to certain legal exceptions. See Section 6.2 above for details on our deletion process.
8.4 Opt-Out
You may opt-out of:
- Marketing communications by clicking "unsubscribe" in our emails or contacting us
- Certain cookies and tracking technologies through your browser settings
- Google Analytics by installing the Google Analytics Opt-out Browser Add-on
- Session replay recording by contacting us
8.5 Data Processing Addendum
Enterprise clients who require additional data processing safeguards may request a Data Processing Addendum (DPA) governing the processing of personal data in connection with our Services. To request a DPA, please contact us using the information in Section 14.
9. California and State Privacy Rights
9.1 California Consumer Privacy Act (CCPA/CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):
- Right to know what personal information is collected, used, shared, or sold
- Right to delete personal information held by businesses
- Right to opt-out of sale or sharing of personal information
- Right to limit use of sensitive personal information
- Right to non-discrimination for exercising your privacy rights
Categories of personal information we collect:
- Identifiers (name, email address, phone number, mailing address)
- Commercial information (invoices, estimates, claim details, payment records)
- Internet or electronic network activity (browsing history, search history, interaction data)
- Professional or employment-related information (company name, title)
- Geolocation data (IP-based location)
Categories of personal information disclosed for business purposes:
- Identifiers and commercial information shared with cloud hosting, AI service providers, and payment processors
- Internet activity information shared with analytics providers (Google Analytics, PostHog)
We do not sell personal information. We do not share personal information for cross-context behavioral advertising. We use analytics and similar tools solely for internal business purposes such as website performance measurement and product improvement. These uses qualify as "business purposes" under applicable privacy laws.
9.2 Other State Privacy Laws
Residents of other states with comprehensive privacy laws (including Virginia, Colorado, Connecticut, Utah, and other states with enacted consumer privacy legislation) may have similar rights, including the right to access, correct, delete, and opt out of certain processing of personal information. Please contact us to exercise any applicable rights.
9.3 Exercising Your Rights
To exercise your privacy rights, email [email protected] and mention "Privacy Request" in your message. We will verify your identity before processing your request and respond within the timeframes required by applicable law.
10. International Data Transfers
Our services are provided from the United States. Client-submitted audit documentation is stored and processed within the United States using U.S.-based cloud infrastructure. Certain analytics or operational service providers may process limited technical data (such as IP address or usage metrics) outside the United States in accordance with applicable data protection laws.
If you access our services from outside the United States, your information will be transferred to and processed in the United States, which may have data protection laws that are different from those in your jurisdiction.
We select service providers that implement appropriate security and confidentiality safeguards to protect personal information in accordance with this Privacy Policy. For information about export controls and sanctions compliance, see Section 21 of our Terms and Conditions.
11. Children's Privacy
Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.
12. Third-Party Links
Our website may contain links to third-party websites or services that are not operated by us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We encourage you to review the privacy policies of any third-party sites you visit.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. We encourage you to review this Privacy Policy periodically for any changes.
14. Contact Us
If you have any questions about this Privacy Policy or our privacy practices, please contact us:
For data protection inquiries or to exercise your privacy rights, please email [email protected] and mention "Privacy Request" in your message.