Menu

Privacy Policy

Effective Date: November 24, 2025 | Last Updated: November 24, 2025

1. Introduction

Welcome to PERM Tracker ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web application for tracking Permanent Labor Certification (PERM) cases.

By using PERM Tracker, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use our service.

2. Information We Collect

Account Information

  • Email address - Used for account creation and notifications
  • Name - Obtained via Google OAuth for personalization
  • Password - Securely hashed, never stored in plain text

Case Data

  • Employer names and position titles
  • Case status and progress information
  • Important dates (PWD filing, recruitment dates, etc.)
  • Notes and case-related documentation references

User Preferences

  • UI settings (dark mode, sorting preferences)
  • Notification preferences
  • Dismissed deadline alerts

Technical Information

  • IP address and browser type
  • Device information
  • Usage patterns and interaction data

3. How We Use Your Information

We use the information we collect to:

  • Provide and maintain the PERM tracking service
  • Authenticate your account and ensure security
  • Send email notifications about upcoming deadlines
  • Improve user experience and application features
  • Respond to customer support requests
  • Comply with legal obligations

4. Google OAuth Disclosure

PERM Tracker uses Google OAuth for authentication. When you sign in with Google:

  • We access only your email address and display name
  • This information is used solely for authentication and account identification
  • We do not access your Google contacts, calendar, or any other Google services
  • We do not share your Google account data with any third parties
  • We do not store your Google password

Our use of Google user data complies with the Google API Services User Data Policy, including the Limited Use requirements.

5. Data Storage & Security

Your data is stored securely using industry-standard practices:

  • Database: PostgreSQL hosted on Supabase with Row-Level Security (RLS)
  • Encryption: All data transmitted via HTTPS/TLS encryption
  • Access Control: Each user can only access their own data
  • Authentication: JWT tokens with secure expiration

While we implement robust security measures, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security of your data.

6. Cookies & Local Storage

We use the following storage technologies:

  • Session Cookies: Essential for authentication and maintaining your login session
  • LocalStorage: Stores preferences such as dark mode settings, authentication tokens, and UI preferences

These are strictly necessary for the application to function and do not track you across other websites.

7. Third-Party Services

We use the following third-party services to operate PERM Tracker:

  • Supabase: Database hosting and authentication infrastructure
  • Render: Backend API hosting
  • Vercel: Frontend hosting and deployment
  • Resend: Email notification delivery
  • Google: OAuth authentication provider

Each of these services has their own privacy policies. We recommend reviewing their policies for additional information.

8. Data Retention & Deletion

  • Your data is retained for as long as your account is active
  • You may request deletion of your account and all associated data at any time
  • Upon deletion request, we will remove your data within 30 days
  • Some data may be retained longer if required by law

To request data deletion, please email us at support@permtracker.app.

9. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the data we hold about you
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data
  • Portability: Request your data in a portable format
  • Objection: Object to certain processing of your data

To exercise any of these rights, please contact us at support@permtracker.app. We will respond within 30-45 days.

10. Children's Privacy

PERM Tracker is not intended for use by individuals under the age of 13. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date at the top
  • Sending an email notification for material changes

Your continued use of the service after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us: