Privacy Policy

Aire OS is a B2B construction operations platform built and operated by Aire Labs, Inc., doing business as Aire OS, Aire Field, and Aire (“we,” “us,” or “our”), a company registered in Maryland, United States, at 4142 Howard Ave, Suite A, Kensington, MD 20895, United States. This policy applies to the Aire OS web application, the Aire Field mobile app, our marketing site at aire-os.com, and the services that connect to them.

For most customer data we process, our customer — the construction company that licenses Aire OS — is the data controller, and Aire Labs, Inc. acts as a processor on their behalf. For our marketing site, account signups, and billing, Aire Labs, Inc. is the controller. If your company uses Aire OS and you have questions about its data practices, contact your company administrator first.

We collect information in the following categories:

Account and contact data. Name, email address, phone number, company, role, and preferred language when you or your administrator create an account or join a project.

Project and construction data. Plans, drawings and PDFs, takeoffs, schedules, estimates, scopes of work, photos and other media you upload, markups, field progress updates, roadblocks, and the operational rules and standards your company configures in the Cortex.

Voice and audio. When field crews submit spoken updates, we capture the audio recording and process it through speech-to-text (transcription) so it can be parsed and translated between Spanish and English. Audio is processed to deliver the feature you requested; we do not use it to identify you biometrically.

Connected-service data. If you connect an external service such as Google Calendar, we receive only the data needed for that integration (for example, calendar events and availability) and only with your authorization. You can disconnect at any time.

Usage and device data. Log data, IP address, browser and device type, pages and features used, and timestamps, collected to operate, secure, and improve the service.

Cookies.We and our service providers use cookies and similar technologies. You can manage these through the “Consent Preferences” control in our site footer.

We use information to:

Provide and operate Aire OS — routing the right information to the right person, transcribing and translating field communication between Spanish and English, generating governed AI workflows, and enforcing the standards your company configures; authenticate users and secure accounts; provide support and respond to your requests; process billing and payments; monitor, troubleshoot, and improve performance and reliability; and comply with legal obligations.

AI-assisted features (such as transcription, translation, and workflow generation) operate within the rules and standards your company establishes. We do not use your project or field data to train third-party foundation models, and we do not sell your personal information.

Where the GDPR or UK GDPR applies, we rely on these legal bases: performance of a contract (to provide the service you or your employer signed up for); legitimate interests (to secure, maintain, and improve the service, balanced against your rights); consent (for example, optional integrations or certain cookies, which you may withdraw at any time); and legal obligation (for example, tax and accounting records).

We do not sell personal information, and we do not share it for cross-context behavioral advertising. We share information only as follows:

Within your organization. Project data is visible to authorized members of your company and the subcontractors, clients, and collaborators your company grants access to, according to their role.

Service providers. We use vetted vendors who process data on our behalf under contract, including: Supabase (database, authentication, and file storage), Vercel (web application hosting), Railway (background job and worker infrastructure), speech-to-text providers for transcription, and our payment processor for billing. These providers may process data only to perform services for us.

Integrations you enable. Services you connect, such as Google Calendar, receive only the data required for that integration and only while it is connected.

Legal and safety. We may disclose information if required by law, to enforce our agreements, or to protect the rights, safety, and security of our users and the public.

Business transfers. If Aire Labs, Inc. is involved in a merger, acquisition, or sale of assets, information may be transferred subject to this policy.

We keep personal and project information for as long as your account or your company’s account is active and as needed to provide the service, then for the period required to meet legal, tax, accounting, and dispute-resolution obligations. When data is no longer needed, we delete or anonymize it. Your company can also request deletion of its data on termination, subject to those legal retention requirements.

We use technical and organizational measures to protect information, including encryption in transit, access controls and role-based permissions, row-level security on tenant data, and least-privilege access for our staff. No system is perfectly secure, but we work to protect your data and to respond promptly to incidents. If a breach affects your personal information, we will notify you and the relevant authorities as required by law.

We operate from, and use service providers in, the United States. If you access Aire OS from outside the United States, your information may be transferred to and processed in the U.S. and other countries whose data-protection laws may differ from yours. Where required, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses for these transfers.

California (CCPA/CPRA). If you are a California resident, you have the right to know what personal information we collect and how we use and disclose it, to request access to and deletion of your personal information, to correct inaccurate information, and to not be discriminated against for exercising these rights. We do not sell or share personal information as those terms are defined under California law, so there is no need to opt out of a sale — but you can still manage cookies through our Consent Preferences control.

EEA, UK, and similar jurisdictions (GDPR). You have the right to access, correct, delete, restrict, or object to processing of your personal data; the right to data portability; and the right to withdraw consent where processing is based on consent. You also have the right to lodge a complaint with your local data protection authority.

To exercise any of these rights, email us at Support@aire-os.com. We will verify your request and respond within the time required by applicable law. If your data is held on behalf of your employer’s Aire OS account, we may direct your request to them as the controller.

Aire OS is a business tool intended for users who are at least 18 years old, and it is not directed to children. We do not knowingly collect personal information from anyone under 18. If you believe someone under 18 has provided us information, contact us and we will delete it.

We may update this policy as our practices or the law change. When we make material changes, we will update the effective date above and, where appropriate, provide additional notice. Your continued use of Aire OS after an update means you accept the revised policy.

Questions, requests, or concerns about this policy or your data? Reach us at Support@aire-os.com.

Aire Labs, Inc. (d/b/a Aire OS) — 4142 Howard Ave, Suite A, Kensington, MD 20895, United States