Privacy Policy

Effective date: 6 May 2026 · Terms of Service

This Privacy Policy explains how FieldSync (“we”, “us”) collects, uses, discloses, and stores information when you use our websites (including fieldsync.com.au and related subdomains), our web application (app.fieldsync.com.au), and our mobile applications (together, the “Service”).

FieldSync is intended for trade and field-service businesses. If you use the Service on behalf of a company, that organization controls much of the operational data in FieldSync; this Policy describes both our role and typical interactions with business users and their customers’ information.

Information we collect

Account and profile: name, email, phone, company name, role, and authentication identifiers.
Business operational data: customers, sites/addresses, contacts, jobs, quotes, invoices, bills, notes, schedules, and similar records you enter or import.
Content you upload: photos, PDFs, and other files attached to records (stored so you can retrieve them in the app).
Messages and communications metadata: when your organisation sends SMS or email through FieldSync, we process recipient addresses and delivery-related metadata needed to send and track those messages (see below).
Location (optional): if you enable technician or device location features, we may collect location data to support scheduling, attendance, or job visit context. You can revoke this in device settings.
Technical data: IP address, device/browser type, diagnostic logs, security signals, and identifiers used for push notifications and session security.

Google account and Gmail (Google Workspace integration)

If your organisation chooses to connect a Google (Gmail / Google Workspace) account, you will be asked to sign in with Google and grant OAuth permissions. We request access only for the purposes described to you in the Google consent screen (for example, sending email on your behalf and, where enabled, reading mail as needed for the features you use).

Tokens: we store OAuth tokens (for example, access and refresh tokens) securely so the integration can continue to work until you disconnect.
Emails you send via FieldSync: when you send quotes, invoices, or other messages through the Service, content and recipients are processed to deliver those messages.
Control: you can remove access from your Google Account’s third-party app settings, and you can disconnect the integration inside FieldSync; after disconnection, new sends should not use that Google connection.

Google’s use of data delivered through their APIs may also be governed by the Google API Services User Data Policy, including Limited Use requirements.

Other integrations

Xero: if connected, we exchange accounting-related data needed to sync invoices, payments, contacts, or bills according to the features you enable.
SMS providers (e.g. Twilio): phone numbers and message content you send are processed by the SMS provider to deliver messages.

How we use information

Provide, maintain, and improve the Service.
Authenticate users, protect accounts, and detect abuse, fraud, or security incidents.
Operate optional features you enable (email/SMS, integrations, maps/geocoding where used).
Provide support and respond to enquiries.
Comply with law and enforce our Terms.

Cookies and similar technologies

We use cookies and local storage where needed for authentication, security, and preferences. You can control cookies in your browser; blocking some cookies may limit sign-in or session features.

Sharing

We do not sell your personal information. We share information with service providers that help us operate the Service (including cloud hosting, databases, email/SMS delivery, mapping, backups, and security), and with your organisation’s authorised users who can access company data within FieldSync, consistent with your organisation’s settings.

Storage, security, and retention

We use reputable infrastructure providers (including Google Cloud / Firebase and, for certain API workloads, Amazon Web Services) to store and process data. We apply access controls and administrative safeguards appropriate to a cloud SaaS product, but no method of transmission or storage is perfectly secure.

We retain information while your account is active and for a period afterwards where needed for backups, disputes, audits, legal obligations, or legitimate business purposes, unless your organisation requests deletion consistent with law and technical feasibility.

International transfers

Our service providers may process data in Australia and other countries where they operate. Where required, we take steps designed to ensure appropriate safeguards for data transfers.

Your rights

Depending on your location, you may have rights to access, correct, delete, or object to certain processing. Many requests for operational data inside a company account must be handled by your organisation’s administrator. You can contact us for assistance where applicable.

Children

The Service is not directed at children, and we do not knowingly collect personal information from children.

Changes

We may update this Policy from time to time. We will post the updated version on this page and update the effective date.

Contact

Questions: support@fieldsync.com.au