Privacy

Effective Date: March 26, 2026

Last Updated: April 1, 2026

RestRoomer respects your privacy. This Privacy Policy explains how RestRoomer, LLC (“RestRoomer,” “we,” “us,” or “our”) collects, uses, discloses, and retains personal information and personal data when you use the RestRoomer website, plugin, applications, support channels, and related services (collectively, the “Services”).

If you do not agree with this Privacy Policy, do not use the Services.

Who We Are

Controller / Business:
RestRoomer, LLC

If required for users in the European Economic Area, the United Kingdom, or Switzerland:

EU Representative:
Not applicable at this time.

UK Representative:
Not applicable at this time.

Data Protection Officer:
Not designated at this time; contact info@restroomer.app.

Scope

This Privacy Policy applies to personal information we collect when you visit our website, create an account, use the RestRoomer plugin or cloud-based solve/check features, contact us for support, onboarding, billing, or feedback, or sign up for product updates or marketing communications.

This Privacy Policy does not apply to third-party products or services that you use separately from RestRoomer, even if they integrate with the Services.

What We Collect

Account and Contact Information. We may collect your name, email address, company name, billing address, account credentials or authentication identifiers, subscription status, and account settings.

Payment and Transaction Information. We use third-party payment processors to handle payments. We may receive limited billing and transaction information such as billing contact details, subscription plan, invoice and payment status, transaction identifiers, and partial payment metadata. We do not store full payment card numbers unless explicitly stated elsewhere.

Product, Device, and Diagnostic Information. When you use RestRoomer, we may collect your IP address, browser type, operating system, device identifiers, plugin version, RestRoomer version, Revit version, crash logs, error logs, feature usage events, timestamps, and account activity logs.

Solve / Check Input Data. For RestRoomer’s solve and check functionality, the plugin may transmit limited model-related data needed to perform the requested operation. This may include room perimeter or geometric outline, door locations, door swing or door-related geometry as needed, fixture placement inputs, the requested solve/check type, and settings relevant to the requested operation.

RestRoomer is designed not to transmit the full Revit model. We do not intentionally collect the entire project model, full project file, or unrelated model content as part of the solve/check process.

Support and Communications Data. If you contact us, we may collect the contents of emails, support tickets, or messages, attachments, screenshots, or sample files you send us, and records of customer support interactions, onboarding notes, and account history.

Website and Cookie Data. We may collect information through cookies, similar technologies, server logs, and analytics tools, such as pages viewed, referring URLs, session information, approximate location inferred from IP, and cookie or analytics identifiers.

Marketing Data. If you subscribe to updates or marketing communications, we may collect your email address, subscription preferences, and email open, click, and unsubscribe data.

Sources of Information

We collect personal information directly from you, automatically from your browser, device, or plugin, from your organization if it creates or manages your account, from payment processors, identity providers, hosting providers, analytics providers, and support providers acting on our behalf, and from integrations you authorize.

How We Use Information

We use personal information to provide the Services, authenticate users and secure accounts, process solve/check requests, operate, maintain, debug, and improve the Services, process subscriptions, billing, renewals, refunds, and invoices, provide onboarding and support, communicate with you about service-related matters, send marketing communications where permitted by law, detect, prevent, and investigate fraud, abuse, security incidents, or illegal activity, comply with legal obligations, enforce our Terms and other agreements, and create aggregated or de-identified analytics where permitted by law.

Legal Bases for Processing Under GDPR

If GDPR applies, we process personal data on one or more of the following legal bases: performance of a contract when processing is necessary to provide the Services you requested, legitimate interests such as securing, improving, supporting, and administering the Services provided those interests are not overridden by your rights, consent where required such as for certain marketing or non-essential cookies, legal obligation where processing is necessary to comply with applicable law, and the establishment, exercise, or defense of legal claims where applicable.

Disclosures of Personal Information

We may disclose personal information to hosting and cloud infrastructure providers, authentication and identity providers, payment processors, customer support providers, email delivery and communications providers, analytics providers, security and fraud prevention providers, professional advisors such as lawyers, accountants, insurers, and auditors, government authorities, courts, regulators, or law enforcement where required, and an acquirer, investor, or successor entity in connection with a merger, acquisition, financing, reorganization, or sale of assets.

Service Providers / Processors / Contractors. We may disclose personal information to vendors that process data on our behalf under contract.

Third Parties. We may disclose personal information to third parties where necessary for the purposes described in this Policy or where you direct us to do so.

Sale / Sharing. We do not sell personal information, and we do not share personal information for cross-context behavioral advertising.

Sensitive Personal Information

We do not intentionally collect or use sensitive personal information for purposes other than those permitted by applicable law unless we specifically disclose that use and offer any required rights.

International Data Transfers

We are based in the United States. Personal information may be processed in the United States and in other countries where we or our service providers operate.

If we transfer personal data subject to GDPR outside the EEA, UK, or Switzerland, we rely on appropriate safeguards where required, such as adequacy decisions, Standard Contractual Clauses, or other lawful transfer mechanisms recognized by applicable law.

You may contact us for more information about the safeguards we use.

Data Retention

We retain personal information only for as long as reasonably necessary for the purposes described in this Policy, including to provide the Services, maintain your account, complete transactions, support security, fraud prevention, and auditing, comply with legal, tax, accounting, and recordkeeping obligations, and resolve disputes and enforce agreements.

In general, account data is retained while your account is active and for a reasonable period afterward, billing and transaction records are retained as required by tax and accounting laws, support records are retained for support, training, and dispute resolution, logs and diagnostics are retained based on operational need and security requirements, and marketing data is retained until you unsubscribe or we no longer have a lawful basis to keep it.

Where required by California law, we aim to retain each category of personal information only for as long as reasonably necessary and proportionate for the disclosed purposes.

Your Privacy Rights

California Rights. If you are a California resident, you may have the right to know what personal information we collect, use, disclose, sell, or share, access specific pieces of personal information, delete personal information subject to exceptions, correct inaccurate personal information, opt out of the sale or sharing of personal information, limit the use and disclosure of sensitive personal information where applicable, and not be discriminated against for exercising your privacy rights.

You may also use an authorized agent where permitted by law.

GDPR / EEA / UK / Switzerland Rights. If GDPR or similar law applies, you may have the right to access your personal data, correct inaccurate personal data, delete personal data, restrict processing, object to processing, receive data portability where applicable, withdraw consent at any time where processing is based on consent, and lodge a complaint with your local supervisory authority.

How to Exercise Your Rights

To submit a privacy request, contact us at:

Email:
Web form: https://app.restroomer.app/support
Mail: Mailing address available on request via

We may need to verify your identity before processing your request. We will respond as required by applicable law.

Notice at Collection for California Residents

At or before the point of collection, California residents are entitled to notice of the categories of personal information collected and the purposes for which they are used.

We currently collect the following categories of personal information: identifiers, customer records information, commercial information, internet or other electronic network activity information, geolocation data derived from IP on an approximate basis, professional or employment-related information if you provide it, inferences drawn from usage data in limited cases such as product preferences or support history, and sensitive personal information only if and to the extent specifically described in this Policy.

We collect this information for the business and commercial purposes described in this Policy.

We do not collect additional categories of personal information or use collected personal information for materially different purposes without providing any required additional notice.

Cookies and Similar Technologies

We use cookies and similar technologies for site functionality, authentication, security, performance monitoring, analytics, preferences, and marketing if applicable.

You can control cookies through your browser settings and, where required, through our cookie consent tools.

Automated Decision-Making

We do not use personal information to make solely automated decisions that produce legal or similarly significant effects about individuals.

Children’s Privacy

The Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13. If we learn that we have collected such information, we will take reasonable steps to delete it.

If local law requires a higher age threshold for digital consent, we will comply with that law where applicable.

Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Third-Party Links and Integrations

The Services may contain links to or integrations with third-party services. We are not responsible for the privacy practices of those third parties. Please review their privacy policies separately.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated version and revise the “Last Updated” date. Where required by law, we will provide additional notice or obtain consent.

Contact Us

If you have questions or would like to exercise your privacy rights, contact us at the above emails.