Privacy Policy

Karion is a field service operations platform for plumbing, HVAC, electrical, roofing, maintenance, and commercial service businesses. The platform helps businesses manage customers, technicians, dispatch, jobs, quotes, invoices, messages, customer portals, marketplace presence, reporting, SOPs/checklists, payments, and optional AI-powered capabilities.

• Account data: names, emails, login credentials or authentication identifiers, organization membership, roles, permissions, billing status, support communications, and settings.
• Business, customer, and technician data: company profiles, service areas, customer contact information, technician profiles, team assignments, availability, addresses, service preferences, and operational notes.
• Job, quote, invoice, payment, message, and portal data: appointment requests, job details, job status history, quote and estimate records, invoice metadata, payment processor references, customer-visible updates, portal content, messages, attachments, SOP/checklist activity, and marketplace listings or reviews.
• Device, log, and analytics data: IP address, device/browser details, pages viewed, timestamps, approximate location inferred from network data, diagnostic logs, security events, and product usage analytics.
• Cookies and tracking: essential cookies for authentication and security, analytics cookies for product measurement, and marketing cookies or pixels where enabled by consent and law.

Karion uses data to provide and secure the SaaS service, authenticate users, operate customer portals and marketplaces, schedule and dispatch work, support quotes/invoices/payments, send messages and job updates, troubleshoot issues, improve product performance, prevent abuse, comply with law, administer subscriptions, and provide customer support.

Karion may share data with authorized business users within the same tenant, customer portal users as directed by the business, service providers and subprocessors that host or operate the product, payment processors, communications vendors, analytics providers, professional advisers, legal authorities where required, and parties involved in a business transfer. Karion should not sell personal information in the traditional sense; any activity that could be considered a “sale” or “sharing” under California law must be reviewed and disclosed before launch.

Karion relies on service providers and subprocessors for hosting, storage, database infrastructure, email, SMS/voice, analytics, customer support, AI processing, logging, security, and deployment. Payment details are processed by payment processors; Karion should avoid storing full card numbers and should store only necessary payment metadata or processor identifiers. The live subprocessor list is a legal-review placeholder and must be completed before launch.

Optional AI features may process customer/user data to support AI Customer Chat, AI Dispatch Assistant, AI Brand Builder, automations, summaries, recommendations, and operational assistance. Depending on configuration, AI data may be sent to AI service providers for processing. Businesses should avoid submitting unnecessary sensitive personal information to AI features. AI outputs may be inaccurate and should be reviewed by authorized users before relying on them for operational, billing, safety, or customer-facing decisions.

Karion retains personal information for as long as needed to provide the service, satisfy the purposes described in this policy, comply with legal/accounting/security obligations, resolve disputes, enforce agreements, and maintain audit logs. Specific retention periods for account records, operational records, logs, AI events, backups, and privacy requests require legal and security review before launch.

Karion is designed with tenant isolation, role-based permissions, authentication controls, audit logging, secure development practices, access controls, encrypted transport, and vendor review expectations. No system is perfectly secure, and security controls must be reviewed before launch and updated as the product evolves.

Depending on where you live and your relationship with a Karion customer, you may have rights to know/access, delete, correct, opt out of sale/share, limit use of sensitive personal information where applicable, appeal certain decisions where required by state law, and avoid discrimination for exercising privacy rights.

• Right to know/access: request categories or specific pieces of personal information collected, used, disclosed, sold, or shared, subject to verification and exceptions.
• Right to delete: request deletion of personal information, subject to legal, security, contractual, and operational exceptions.
• Right to correct: request correction of inaccurate personal information.
• Right to opt out of sale/share: opt out of activities that qualify as selling or sharing personal information under California law.
• Right to limit sensitive personal information: limit certain uses/disclosures of sensitive personal information if applicable to Karion's processing.
• Non-discrimination: Karion will not discriminate against you for exercising privacy rights, though some service functionality may depend on data needed to provide the service.

Use the Data Request page to submit a privacy request or email admin@karion.app. If your data is controlled by a business using Karion, Karion may need to route or coordinate your request with that business.