Vertex Field AI

Privacy Policy

Last updated: June 14, 2026

Vertex Field AI (“Vertex Field AI,” “we,” “us”) is a field-operations platform. This policy explains what information we collect, how we use it, and the choices you have. Questions: info@vertexfield.ai.

Information we collect

  • Account information — your name, email address, company, crew, and role, used to sign you in and route your work.
  • Field data you enter — daily production reports, JHA / safety forms, projects, and related operational records.
  • Connected email account (optional) — if you choose to connect Gmail or Outlook, we receive an OAuth access token (and refresh token) scoped to sending email on your behalf only, plus your email address, so the platform can send messages you compose from your own address.

How we use Google and Microsoft account data

When you connect a Google account, we request the https://www.googleapis.com/auth/gmail.send scope (to send email on your behalf) and the https://www.googleapis.com/auth/drive.file scope (to create and manage Google Drive files, Sheets, Docs, and folders the platform creates with you). When you connect an Outlook / Microsoft account, we request only the Mail.Send permission. These permissions let the platform send emails and create documents that you initiate within the platform — for example, emailing a new crew their login from your address, or generating a project spreadsheet in your Drive.

  • We cannot read, search, or access your inbox, contacts, calendar, or any other mailbox content — the send-only scope does not grant that.
  • The Drive drive.file scope is limited to files the platform creates with you or that you explicitly open with it. We cannot see, list, or access the rest of your Google Drive.
  • We only send a message or create a file when you take an explicit action in the app.
  • We do not use this data for advertising, and we do not sell it.
  • We do not use this data to train any generalized AI/ML models.

Vertex Field AI's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

How we store and protect your data

  • OAuth tokens are encrypted at rest (AES-256-GCM) with a key held outside the database, and are never exposed to your browser.
  • Data is stored with our infrastructure providers (Supabase / Vercel) and transmitted over TLS.
  • Access to email-sending tokens is limited to the server code that performs the send you requested.

Disconnecting and deletion

You can disconnect your email account at any time from Settings. Disconnecting revokes our access and deletes the stored tokens. You may also revoke access directly at Google Account permissions or your Microsoft account's app permissions. To delete your account and associated data, contact info@vertexfield.ai.

Sharing

We do not sell your personal information. We share data only with infrastructure providers that process it on our behalf to operate the service, and where required by law.

Changes

We may update this policy; material changes will be reflected by the “Last updated” date above.

Privacy · Terms · © Vertex Field AI