Privacy Policy

Last updated: February 19, 2026

HRS Systems, Inc. Privacy Policy

HRS Systems, Inc. ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our software and services.

1. Information We Collect

1.1 Information You Provide

We collect information you voluntarily provide when you:

  • Create an account or register for our services
  • Purchase a subscription
  • Contact our support team
  • Participate in surveys or promotions

This may include your name, email address, company name, billing address, and any other information you choose to provide.

1.2 Payment Information

Important: We do not collect, process, or store your payment card details (credit card numbers, CVV, expiration dates). All payment card information is collected directly by our third-party payment processor through a secure payment interface. This information is transmitted directly to the payment processor and never passes through or is stored on our servers.

What we may receive from our payment processor:

  • Your name and email address (for account association)
  • Billing address (for tax calculation and invoicing)
  • Last four digits of your payment card (for display purposes only)
  • Card type and expiration month/year (for display purposes only)
  • Subscription status, payment history, and invoice records

1.3 Information Collected Automatically

When you use our services, we may automatically collect certain information, including but not limited to:

  • Device information (browser type, operating system)
  • Log data (access times, pages viewed, IP address)
  • Usage information (features used, actions taken)
  • Session diagnostics and replay telemetry used for product reliability and support workflows

1.4 Your Project Data

We store project data, files, and calculation outputs required to provide the Service. This data remains your property and is processed to operate, secure, and support your account and organization.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process transactions and send related information
  • Send technical notices, updates, and support messages
  • Respond to your comments, questions, and requests
  • Monitor and analyze trends, usage, and activities
  • Detect, investigate, and prevent fraudulent transactions and abuse
  • Personalize and improve your experience

3. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

3.1 Third-Party Service Providers

We use trusted third-party service providers to operate our platform, including:

  • Payment Processing Providers: Payment processing providers collect payment card information directly through secure interfaces. We may share your name, email, and billing address as needed to process transactions and manage subscriptions.
  • Authentication and Identity Providers: We use authentication and identity providers for secure sign-in and organization management. Account credentials and profile information may be processed by these providers.
  • Product Analytics and Telemetry Providers: We use analytics and telemetry providers to measure product usage, troubleshoot issues, and analyze reliability trends. Depending on organization and consent settings, session replay may run with masking controls applied to interface text and metadata labels. Replay and analytics payloads are processed using de-identification and field-redaction controls where configured.
  • Cloud Hosting and Infrastructure Providers: Our services and project data are hosted on secure cloud infrastructure in the United States.
  • Other Service Providers: We may use additional service providers from time to time for support, operations, and security functions consistent with this Privacy Policy.

3.2 Bug Reports and Diagnostic Data

If you submit a bug report from within the Service, we may collect diagnostic metadata and related technical telemetry needed to investigate the issue. When a bug report includes a project file copy, the file identity is anonymized before sharing with support workflows.

3.3 Other Disclosures

  • Legal Requirements: We may disclose information if required by law or in response to valid legal requests from public authorities.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.
  • With Your Consent: We may share information with your consent or at your direction.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. This includes:

  • Encryption of data in transit (TLS/HTTPS) and at rest
  • Secure authentication through third-party identity and access providers with support for multi-factor authentication
  • Payment card data handled exclusively by PCI-DSS compliant third-party processors—we never see or store your card numbers
  • Regular security assessments and access controls
  • Secure cloud infrastructure hosted by third-party cloud providers

However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

5. Data Retention

We retain data only as long as needed for service delivery, legal obligations, and legitimate business purposes.

  • Account profile and organization records: retained while account is active and for a reasonable period after closure to handle support, compliance, and fraud prevention.
  • Billing and tax records: retained for legally required accounting and tax periods.
  • Audit and security logs: retained for security monitoring and abuse prevention for limited operational periods.
  • Session replay and product telemetry: retained for limited operational and product-improvement windows, then deleted or de-identified according to internal retention schedules.
  • Bug report diagnostics: retained for support and root-cause analysis periods, then archived or deleted in accordance with legal and operational requirements.
  • Project data: retained while your account or organization is active; after termination, we may retain data for a limited export/recovery window and then securely delete or anonymize it.

6. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

  • Access and receive a copy of your personal data
  • Correct inaccurate or incomplete information
  • Request deletion of your personal data
  • Object to or restrict certain processing activities
  • Data portability (receive your data in a structured format)
  • Withdraw consent where processing is based on consent

To exercise these rights, please contact us using the information provided below.

We may request reasonable information to verify your identity and authority before completing rights requests. Where permitted by law, you may also designate an authorized agent to submit requests on your behalf.

7. Cookies and Tracking Technologies (Cookie Policy)

We use cookies and similar tracking technologies to track activity on our service and hold certain information. This section explains what cookies are, how we use them, and your choices regarding cookies.

7.1 What Are Cookies?

Cookies are small text files that are placed on your device (computer, tablet, or mobile) when you visit a website. They are widely used to make websites work more efficiently and to provide information to website owners. Cookies can be "session" cookies (which expire when you close your browser) or "persistent" cookies (which remain on your device until they expire or you delete them).

7.2 Types of Cookies We Use

We use the following categories of cookies:

  • Essential Cookies: These cookies are necessary for the website to function properly. They enable core functionality such as security, session management, and authentication. You cannot opt out of these cookies as the service will not function without them.
  • Authentication Cookies: Set by authentication providers to keep you signed in and maintain your session across pages. These are essential for accessing your account.
  • Preference Cookies: These cookies remember your preferences and settings (such as theme preferences) to provide a more personalized experience.
  • Analytics Cookies: We use analytics services and other service telemetry tooling) to understand how visitors interact with our service. These cookies collect information about page visits, time spent on pages, and any errors encountered. This information helps us improve our service.

7.3 Third-Party Cookies

Some cookies are placed by third-party services that appear on our pages:

  • Authentication Providers: Authentication and session management cookies.
  • Payment Processing Providers: Payment processing cookies for checkout sessions.
  • Analytics and Telemetry Providers: Performance, diagnostics, and usage telemetry used to improve reliability and usability.
  • Other Providers: Additional third-party providers may place cookies as needed to support operations and security functions.

7.4 Managing Cookies

Most web browsers allow you to control cookies through their settings. You can usually find these settings in the "Options" or "Preferences" menu of your browser. However, please note that if you disable essential cookies, you may not be able to use some or all features of our service, including signing in to your account.

For more information about how to manage cookies in popular browsers:

7.5 Your Consent

Essential cookies are required for account login, security, and core functionality. Where required by applicable law, optional analytics or non-essential cookies are used only with your consent, which you may withdraw at any time through browser controls or available consent settings.

8. Children's Privacy

Our services are not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information.

9. Organization Accounts and Data Roles

If you use HassCloud through an employer or other organization, that organization may control your access, account settings, and certain data processing decisions.

Depending on context, HRS may act as a data controller (for example, for billing, fraud prevention, and security operations) and/or as a processor on behalf of your organization for Service delivery.

Organization administrators may control selected privacy settings, including whether de-identified product-improvement collection is enabled for their organization. In collaborative and cross-organization file contexts, stricter organization-level privacy controls may be applied to session diagnostics and replay behavior.

10. U.S. State Privacy Disclosures

We do not sell personal information for monetary consideration. We also do not knowingly share personal information for cross-context behavioral advertising.

Residents of certain U.S. states may have rights to access, correct, delete, and obtain a copy of personal information, and to appeal denial of a rights request, subject to legal exceptions.

11. International Data Transfers

Your information may be processed in the United States and other countries where we or our service providers operate.

Where required by law, we implement appropriate safeguards for international transfers, such as contractual protections with vendors and affiliates.

12. Legal Bases for Processing (Where Applicable)

Where required by applicable law (such as GDPR/UK GDPR), we process personal data based on:

  • Performance of a contract (providing and supporting the Service)
  • Legitimate interests (security, fraud prevention, product improvement)
  • Legal obligations (tax, accounting, compliance requirements)
  • Consent (for optional cookie categories and certain communications)

13. Do Not Track and Global Privacy Control

Browser "Do Not Track" settings may not operate consistently across services. Where required by applicable law, we process recognized privacy preference signals (such as Global Privacy Control) in accordance with legal requirements.

14. Security Incident Response

We maintain incident response processes designed to detect, investigate, and respond to security incidents.

If we determine that an incident affecting your personal information requires notice, we will provide notice as required by applicable law and, where appropriate, to relevant regulators.

15. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

16. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Submit a request through our support ticket page.