Privacy Policy

Effective Date: June 1, 2026

Parking Lot Striping Industry Council, a Delaware public benefit corporation ("PLSIC," "we," "us," or "our"), operates the public website at parkinglotstriping.org and the member application at app.parkinglotstriping.org (together, the "Services"). This Privacy Policy explains what personal information we collect, why we collect it, how we use and share it, how long we keep it, and the choices and rights you have.

We provide the Services to businesses in the parking lot striping industry and to the individuals who act on their behalf. The Services are intended for users in the United States.

1. Who this policy covers

• Members and their personnel: contractors and striping companies, manufacturers and vendors ("partners"), property owners and property managers, and the individuals who create and use accounts on their behalf.
• Visitors to our public website.
• Non-members whose information appears in the Services because a member recorded it, because we compiled a public directory listing, or because we enriched property and site records. Section 7 addresses non-member information specifically.

2. Information we collect

Information you provide

• Account and identity: name, email address, password (stored only as a secure hash), and the role you hold.
• Business profile: company legal name and DBA, business and headquarters addresses, phone, website, services and products offered, certifications, testimonials, special offers, and team members and contacts you add.
• Property and site information (property owners and managers): the properties or sites you own or manage, their addresses and locations, service history, lot drawings (stored as map polygons), notification preferences, and feedback you submit.
• Contractor operations and CRM: crew members and their roles, training and certification records, the sites and service areas you serve, prospect leads you record in the contractor CRM, notes, photos you upload, and quote amounts.
• Community content: posts, replies, questions, answers, comments, reactions, mentions, and your community display profile. Community participation is tied to your real name.
• Payment information: when you purchase or renew a membership, our payment processor (Stripe) collects your card details directly on Stripe's own checkout pages. We never receive or store your full card number or security code. We store references such as a Stripe customer ID, subscription ID, and invoice ID, and payment-event records.
• Communications: messages you send us, including to privacy@parkinglotstriping.org and through contact, consultation, callback, and support forms.

Information we collect automatically

• Usage and device data: IP address, browser type and user agent, referring page, the pages and features you use, and similar log data, collected by our hosting and infrastructure providers for routing, security, and abuse prevention.
• Analytics and session recording: on our public website we use Zoho PageSense to understand how visitors use the site, including aggregated interaction and navigation patterns, heatmaps, and session recordings. Session recordings use input masking, so the content you type into form fields is not captured.
• Directory search queries: when you search our public contractor directory, we log the search you enter, including any address, together with the time and any filters. We use these to operate the directory and to produce aggregated, de-identified analytics about search demand and market activity, as described in Section 4.
• Cookies and similar technologies: see Section 6.
• Internal audit and change logs: we maintain logs that record significant actions and, for certain records, before-and-after snapshots of changes, for security, troubleshooting, and recordkeeping.

Information from third parties and public sources

• Property and site enrichment: we enrich property and site records using third-party and public data sources, including parcel data (Regrid), map and imagery tiles (Mapbox), and geocoding (Google Maps Platform and OpenStreetMap/Nominatim).
• Compiled directory listings: our public directory includes contractor listings we assembled from public and industry sources, some belonging to businesses that have not registered with us. See Section 7.

3. How we use your information

We use personal information for these specific purposes:

• Provide, operate, secure, and improve the Services.
• Authenticate accounts and prevent fraud and abuse, including bot protection through Google reCAPTCHA at signup and certain sensitive actions.
• Process memberships, payments, renewals, and refunds.
• Operate the public directory and connect property owners with contractors.
• Send transactional and service messages, such as account, payment, and membership notices, through our email provider.
• Operate the community, including moderation.
• Maintain internal audit, change, and security logs.
• Produce aggregated, de-identified analytics about search demand, market activity, and industry trends, which PLSIC may publish or commercialize, as described in Section 4.
• Respond to your requests and communications.
• Comply with law and enforce our terms.

We do not use your information for purposes incompatible with those listed above. If we later want to use it for a materially new purpose, we will update this policy and, where the law requires, give you notice or a choice before doing so.

4. Aggregated and de-identified data

We create aggregated and de-identified data from the information described in this policy, including analytics about where contractor services are searched for and performed and where demand is high or unmet. This data does not identify any individual or single business.

We may use, publish, and commercialize aggregated and de-identified data, including providing or selling market-intelligence reports to third parties. When we do, we maintain the data in de-identified form, do not attempt to re-identify it, and contractually require recipients not to re-identify it. We aggregate to a geographic level such as ZIP code or larger and suppress small groups, so that an individual search or record is not exposed.

5. How we share information

We share personal information with:

• Service providers and sub-processors that operate the Services on our behalf, under contracts that limit their use of the information to providing services to us. Section 9 lists them.
• Other users, where you choose to make information visible, such as public directory listings, public property photos, partner profiles, and community posts and reviews.
• Professional advisors, and in connection with legal compliance, the enforcement of our terms, the protection of rights and safety, or a corporate transaction such as a merger or sale.

We do not sell or share your personal information for cross-context behavioral advertising, and we do not use the Services to serve you targeted advertising. Aggregated and de-identified market data we may commercialize under Section 4 is not personal information and is not a sale of your personal information.

6. Cookies, analytics, and recording

We use cookies and similar technologies in two categories.

• Strictly necessary: the invited-user access token on the public site, the authentication session cookies set by our application provider when you are signed in, and an internal performance-timing cookie. These are required for the Services to function.
• Analytics and recording: on the public website, Zoho PageSense sets cookies and collects interaction data, heatmaps, and masked session recordings, as described in Section 2.

Our public website displays a notice informing visitors that the site uses cookies, including analytics and recording, and links to this policy. You can control or block cookies through your browser settings, though some features may not work without strictly necessary cookies. We do not use advertising or cross-site tracking cookies.

7. Information about non-members

Some information in the Services is about people or businesses who are not our members:

• Prospect leads that contractors record in the contractor CRM.
• Property and site intelligence that we enrich from third-party and public sources.
• Directory listings that we compiled from public and industry sources, including listings for contractors who have not registered with us.

We handle this information consistent with this policy. If you are a non-member and want a directory listing or other information about you corrected or removed, contact privacy@parkinglotstriping.org or use the removal request link associated with the listing. Members who record information about third parties in the Services are responsible for having a lawful basis to do so and for honoring requests to correct or delete it.

8. How long we keep information

We keep personal information for as long as your account is active and for three years after your account is closed, except where a longer period is required by law or to resolve a dispute, and except as follows:

• Transactional email logs and internal audit and change logs: kept as needed for security, deliverability evidence, and recordkeeping.
• Payment-event records received from our payment processor: kept for up to twenty-four months, then deleted or reduced to non-identifying fields needed for reconciliation.
• Community content: retained even after a moderator hides it, for recordkeeping and dispute purposes.
• Aggregated and de-identified data: kept indefinitely, because it does not identify you.

9. Service providers and sub-processors

We use the following providers to operate the Services. We require them to protect personal information and to use it only to provide services to us.

• Netlify: website and application hosting and edge and serverless functions.
• Supabase: database, authentication, and file storage for the application.
• Stripe: payment processing, subscription billing, and the customer portal.
• Cloudflare: form-submission handling for several public-website forms.
• Zoho: transactional email (ZeptoMail), website analytics and recording (PageSense), customer relationship records (CRM), and scheduling (Calendar).
• Google: maps, geocoding, and places (Google Maps Platform); bot protection (reCAPTCHA); and web fonts.
• Regrid: parcel data for property and site enrichment.
• Mapbox: map and imagery tiles.
• OpenStreetMap / Nominatim: geocoding.

10. Your choices and rights

Depending on where you live, you may have the right to access the personal information we hold about you, to correct it, to delete it, to receive a copy, and to appeal if we decline a request. To exercise any of these rights, email privacy@parkinglotstriping.org. We will take steps to verify your request and will respond within the time the law requires. In California, that is generally within 45 days, with one permitted extension. We will not discriminate against you for exercising a right.

For compiled directory listings, you can also use the removal request link associated with the listing. We are building self-service deletion controls within the application; until those are available, we honor access and deletion requests through privacy@parkinglotstriping.org.

11. Security

We use reasonable administrative, technical, and physical safeguards designed to protect personal information. Card data is handled by Stripe on its own systems, and we do not store full card numbers. No method of transmission or storage is perfectly secure, and we cannot guarantee absolute security.

12. Children

The Services are for businesses and the individuals who act on their behalf. They are not directed to children under 13, and we do not knowingly collect personal information from children under 13. Account holders must meet the eligibility requirements in our Terms of Service, including that an authorized adult is the contracting and billing party for any account, including accounts used by owner-operators who are minors.

13. United States only

The Services are intended for users in the United States. We do not offer the Services to individuals located in the European Economic Area or the United Kingdom, and we do not target those regions.

14. Changes to this policy

We may update this policy from time to time. We will post the updated policy with a new effective date and, for material changes, provide additional notice as appropriate.

15. Contact

Parking Lot Striping Industry Council
privacy@parkinglotstriping.org