Privacy Policy

RepairStep is a repair-management software service for distributors and stores. This policy explains how we handle personal information when you visit our website, sign up for an account, or use the product.

If you have any questions about anything in here, email us at info@repairstep.com.

When you visit our website

• Standard request information (IP address, browser type, pages visited, referrer) recorded in server logs by our hosting provider.
• Anything you voluntarily send us via a contact form or email — your name, email address, and the message itself.

When you sign up or sign in

• Your name, email address and account credentials. Authentication is handled by Clerk — their cookies sit on the device you signed in from.
• The name of your organisation and basic business details you add during onboarding.

When you use RepairStep

• The data you put into the product to run your repair operation — your customers’ details, repair records, photos, emails, notes and so on.
• Activity logs (who did what, when) used to power the in-app history and support investigations.
• Billing information, if you’re on a paid plan — handled by Stripe; we don’t see or store your full card number.

In plain English: to run the product, keep it secure, bill paying customers, and answer support questions. More specifically:

• Provide the service. We can’t track a repair without knowing whose repair it is.
• Keep your account secure. Auth, sessions, and logs help us spot and stop misuse.
• Communicate with you. Transactional emails about repairs, account changes, billing, and occasional product updates you can unsubscribe from.
• Improve RepairStep. Aggregated usage data tells us which features get used and which break.
• Comply with the law. We keep records as long as we need to in order to meet tax, accounting, and legal obligations.

We don’t sell your data and we don’t share it with advertisers. We do use a small set of trusted third-party services (“sub-processors”) to actually run RepairStep:

We may also disclose information if we’re required to by law, court order, or a similar legal process, or to protect the safety of our users.

You might end up here because your details appear in RepairStep — perhaps a store or distributor is handling a repair involving you. In that case the store or distributor is the controller of your data, not us. They decide what to collect, who to share it with (including their own suppliers or partners also using RepairStep), and how long to keep it.

For requests about your data — access, correction, deletion — please contact the store or distributor directly. If you’re not sure who that is and you reach out to us at info@repairstep.com, we’ll do our best to redirect you to the right place.

Your data is stored primarily in EU and US data centres operated by the sub-processors above. Because RepairStep serves customers in multiple regions, your data may be transferred between regions to deliver the service. When that happens we rely on the legal safeguards your jurisdiction recognises — for example, standard contractual clauses under the GDPR/UK GDPR.

We keep your data for as long as your account is active. If you cancel or delete your account, we’ll delete or anonymise your personal information within 90 days, except where we’re required to keep it longer for legal, tax, or accounting reasons.

Backups roll off on their own schedule (typically within 30 days). Email and request logs are retained for up to 12 months for security and troubleshooting purposes.

Wherever you are, you have the right to:

• Know what personal data we hold about you.
• Get a copy of it in a portable format.
• Ask us to correct anything that’s wrong.
• Ask us to delete it.
• Object to certain kinds of processing.
• Withdraw consent at any time (where consent was the basis we relied on).

Depending on where you live, the law gives you specific routes for these:

• EU and UK — GDPR / UK GDPR. You can lodge a complaint with your local data protection authority.
• USA. Residents of certain states (e.g. California under the CCPA) have additional rights, including the right to opt out of the sale or sharing of personal information — we don’t sell or share for advertising, but you can still make the request.

To exercise any of these, email info@repairstep.com. We’ll respond within 30 days.

We use a small number of cookies, all of them functional:

• Authentication cookies set by Clerk to keep you signed in.
• Session cookies set by our hosting provider to balance traffic.

We don’t currently set any advertising or third-party analytics cookies. If that changes in future we’ll update this policy and put a cookie notice on the site.

RepairStep isn’t intended for anyone under 16. We don’t knowingly collect personal data from children. If you believe we have, email us and we’ll delete it.

We may update this policy from time to time. When we do, we’ll change the “Last updated” date at the top of this page, and for material changes we’ll email account holders before the change takes effect.

For anything privacy-related — questions, complaints, requests — reach us at info@repairstep.com.