Privacy Policy

Moore Intelligence LLC, a California limited liability company ("Company," "we," "us," or "our"), operates the CoverageOps platform (the "Service"). This Privacy Policy explains how we collect, use, store, disclose, and protect information when you access or use the Service, visit our website, or otherwise interact with us.

By accessing or using the Service, you acknowledge that you have read, understood, and consent to the data collection and processing practices described in this Privacy Policy. If you do not agree with any part of this policy, you must discontinue use of the Service immediately.

This Privacy Policy applies to all users of the Service, including organization administrators, operators, dispatchers, and security guard personnel whose information is entered into the Service by their employer.

We use the information we collect for the following purposes:

• Service delivery: To provide, operate, maintain, and improve the Service, including shift scheduling, guard management, calloff recovery, incident reporting, and all other operational features.
• Payment processing: To process subscription payments, manage billing cycles, and maintain accurate financial records.
• Operational communications: To send operational SMS and email notifications, including shift updates, clock-in confirmations, calloff alerts, and system notifications. We do not send marketing SMS messages to guards — all SMS communications are strictly operational.
• AI features: To train, develop, and improve our AI-powered features, including Nova AI and Cora AI. We use only anonymized and aggregated data for AI training purposes. Raw client data, including personally identifiable information and individual operational records, is never used directly for model training.
• Support: To respond to support requests, troubleshoot issues, and provide customer assistance.
• Security: To detect, prevent, investigate, and respond to security threats, fraud, unauthorized access, and other malicious or illegal activity.
• Legal compliance: To comply with applicable laws, regulations, legal processes, governmental requests, and industry standards.
• Product improvement: To analyze usage patterns and develop new features, enhancements, and improvements to the Service.

We engage the following third-party service providers to operate the Service. Data shared with these providers is limited to what is necessary to perform their specific function and is governed by their respective privacy policies and data processing agreements:

We do not sell, rent, trade, or otherwise make available your personal information or Client Data to third parties for their own marketing, advertising, or commercial purposes. We have never sold personal data, and we have no plans to do so.

We share data only in the following limited circumstances:

• Service providers: With the third-party service providers listed in Section 4, solely as necessary to provide and operate the Service.
• Legal requirements: When required by applicable law, regulation, subpoena, court order, or governmental request. We will notify you of such requests to the extent legally permitted.
• Safety and rights: When we believe in good faith that disclosure is necessary to protect the safety, rights, or property of Moore Intelligence LLC, our users, or the public.
• Business transfers: In connection with a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, in which case your data may be transferred as part of the transaction. We will notify you of any such transfer and any choices you may have regarding your data.
• With your consent: When you have given us explicit consent to share specific data with a specific party.

We use cookies and similar tracking technologies for the following purposes:

• Essential session cookies: Required for authentication, session management, and security. These cookies are strictly necessary for the Service to function and cannot be disabled.
• Analytics cookies: Used to collect anonymized usage data, including pages visited, features used, and session duration. This data helps us understand how the Service is used and identify areas for improvement.

We do not use advertising cookies, third-party tracking cookies, or any cookies for the purpose of serving targeted advertisements. We do not participate in cross-site tracking or share cookie data with advertising networks.

You can control cookie settings through your browser preferences. Please note that disabling essential session cookies will prevent the Service from functioning correctly and may prevent you from logging in.

We implement industry-standard administrative, technical, and physical security measures to protect your information from unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of all data in transit using TLS 1.2 or higher (currently TLS 1.3).
• Encryption of all data at rest using AES-256 encryption.
• Row-level security (RLS) for strict multi-tenant data isolation between organizations.
• Individual user authentication with securely hashed passwords — no shared credentials.
• Automated daily database backups with point-in-time recovery capabilities.
• Access controls limiting internal access to data on a need-to-know basis.
• Regular security reviews, vulnerability assessments, and infrastructure monitoring.

While we take the security of your data seriously and implement robust protections, no method of electronic transmission or data storage is 100% secure. We cannot guarantee absolute security. In the event of a data breach that affects your personal information, we will notify affected users promptly in accordance with applicable breach notification laws.

We retain your account data and operational data for as long as your account is active and your subscription is in good standing. This data is necessary to provide the Service and fulfill our contractual obligations to you.

Upon cancellation of your subscription or termination of your account, all account data and operational data will be permanently and irreversibly deleted from our systems within thirty (30) calendar days of the effective termination date. We recommend exporting any data you wish to retain before cancelling your account.

We retain SMS message records (including sender, recipient, timestamp, and message content) for compliance, dispute resolution, and operational audit purposes for as long as your account is active. You may request deletion of your SMS records by contacting support@coverageops.co; verified deletion requests will be processed within thirty (30) days, except where retention is required by law or legitimate business interest (e.g., active legal hold, regulatory requirement).

Payment records, invoices, and transaction history are retained for a period of seven (7) years following the date of the transaction, as required by applicable tax, accounting, and financial reporting laws and regulations.

Anonymized and aggregated data that cannot be used to identify any individual or organization may be retained indefinitely for analytics, product improvement, and research purposes.

Depending on your jurisdiction, you may have the following rights with respect to your personal information:

• Right to access: You may request a copy of the personal data we hold about you.
• Right to correction: You may request correction of inaccurate or incomplete personal data.
• Right to export: You may export your data at any time in standard formats (CSV) through the data export functionality within the Service.
• Right to deletion: You may request deletion of your personal data, subject to legal retention requirements described in Section 8.
• Right to opt out of SMS: Security guard users may opt out of SMS communications at any time by replying STOP to any message received from the Service.

To exercise any of these rights, submit a request to support@coverageops.co. We will acknowledge your request within five (5) business days and fulfill it within thirty (30) calendar days of receipt. If we require additional time, we will notify you of the reason and expected completion date.

If you are a California resident, the California Consumer Privacy Act ("CCPA"), as amended by the California Privacy Rights Act ("CPRA"), provides you with the following additional rights regarding your personal information:

• Right to know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which that information was collected, the business or commercial purpose for collecting the information, and the categories of third parties with whom we share the information.
• Right to delete: You have the right to request the deletion of your personal information, subject to certain exceptions provided by law.
• Right to opt out of sale: We do not sell personal information. We have never sold personal information, and we have no plans to do so. Because we do not sell personal information, there is no need to opt out. However, you may still submit a request to confirm this at any time.
• Right to non-discrimination: We will not discriminate against you for exercising any of your CCPA rights. We will not deny you the Service, charge you different prices, or provide a different quality of service because you exercised your privacy rights.

To submit a CCPA request, email support@coverageops.co with the subject line "CCPA Request." We may need to verify your identity before processing your request. We will respond within forty-five (45) days as required by law.

If you are located in the European Union or the United Kingdom, the General Data Protection Regulation ("GDPR") and the UK GDPR provide you with additional rights and protections regarding your personal data.

We process your personal data under the following lawful bases:

• Contractual necessity: Processing that is necessary for the performance of our contract with you — i.e., to provide the Service you have subscribed to.
• Legitimate interests: Processing that is necessary for our legitimate interests, including security, fraud prevention, product improvement, and business operations, provided those interests are not overridden by your fundamental rights and freedoms.
• Consent: Where required by applicable law, we will obtain your explicit consent before processing your personal data for specific purposes. You may withdraw consent at any time.

Under the GDPR, you have the following rights:

• Right of access: Request access to your personal data and information about how it is processed.
• Right to rectification: Request correction of inaccurate personal data.
• Right to erasure: Request deletion of your personal data ("right to be forgotten"), subject to legal retention obligations.
• Right to restriction: Request restriction of processing of your personal data in certain circumstances.
• Right to data portability: Request a copy of your personal data in a structured, commonly used, and machine-readable format.
• Right to object: Object to processing of your personal data based on legitimate interests or for direct marketing purposes.

To exercise any of these rights, contact us at support@coverageops.co. We will respond to your request within thirty (30) days. If we are unable to fulfill your request within that timeframe, we will notify you and provide a reason for the delay.

A Data Processing Agreement ("DPA") is available upon request for EU and UK business customers. Data is transferred from the EU/UK to the United States under Standard Contractual Clauses ("SCCs") as approved by the European Commission, or other legally recognized transfer mechanisms where applicable.

If you believe that our processing of your personal data infringes the GDPR, you have the right to lodge a complaint with your local supervisory authority.

The Service is operated from, and all data is stored and processed in, the United States. If you access the Service from outside the United States, please be aware that your information will be transferred to, stored in, and processed in the United States, where data protection laws may differ from those in your country of residence.

By using the Service, you consent to the transfer of your information to the United States and acknowledge that your data will be subject to United States law. For EU and UK users, international data transfers are conducted in compliance with the GDPR using Standard Contractual Clauses or other approved transfer mechanisms as described in Section 11.

The Service is a business-to-business platform and is not directed at, marketed to, or intended for use by individuals under the age of eighteen (18). We do not knowingly collect, store, or process personal information from anyone under the age of 18.

If we become aware that we have inadvertently collected personal information from a minor, we will take immediate steps to delete that information from our systems. If you believe that we may have collected information from a minor, please contact us immediately at support@coverageops.co.

We may update this Privacy Policy from time to time to reflect changes in our practices, the Service, legal requirements, or industry standards. When we make material changes to this Privacy Policy, we will notify you via email to the address associated with your account at least thirty (30) days before the changes take effect.

Your continued use of the Service after the effective date of any revised Privacy Policy constitutes your acceptance of and consent to the revised policy. If you do not agree to the revised Privacy Policy, you must stop using the Service and cancel your account before the changes take effect.

The "Effective date" at the top of this page indicates when this Privacy Policy was last revised.

If you have any questions, concerns, or requests regarding this Privacy Policy, our data practices, or your rights, please contact us at: