From workers: name, phone number, optional email, county of work, skills, certifications, work history, and resume text (when you upload one). From employers and training organizations: company or organization name, Farm Labor Contractor (FLC) license number, contact details, and (employers only) billing details. Automatically from any visitor: IP address, approximate region derived from IP, browser and device type, pages viewed, and referring URL. From cookies and local storage: session tokens, language preference, and product analytics events. From sign-in providers (Google OAuth, when used): email address, name, and Google account ID — never your contacts, calendar, or drive. We never collect immigration status, social security numbers, or government-issued ID numbers, and we never collect data we don't need to operate the platform.

We use your data to: (1) match workers to jobs and training programs in their area; (2) send transactional notifications about your account (sign-in codes, application status, certificate issuance, billing receipts) and the SMS, email, and push alerts you opt into; (3) generate certificates after training completion; (4) verify employer FLC licenses against state records; (5) detect and prevent fraud, abuse, and security incidents; (6) produce grant-required aggregate reporting (no individual identification); (7) improve the platform through aggregated product analytics. That's it. We do not use your data for advertising, profiling for advertising, or training third-party AI models.

We share your data with: (1) employers — only when you apply to their job, share your skills wallet, or accept their hiring outreach; (2) training organizations — only when you enroll in their program; (3) infrastructure subprocessors that operate the platform on our behalf under written data processing agreements: Supabase (Postgres database and object storage, United States), Google Cloud Platform (application hosting via Google Kubernetes Engine, us-west1 region), Cloudflare (CDN, DNS, and DDoS protection — receives IP address and request metadata), Clerk (authentication, session management, and OAuth handling), Twilio (SMS delivery), Resend (transactional email), Stripe (employer billing only — workers never enter payment details), PostHog (product analytics — IP, device, and event data; you can opt out from your account settings), Sentry (application error diagnostics — IP, user agent, and error context); (4) law enforcement or other government authorities — only in response to a valid court order, subpoena, or warrant, and we publish an annual transparency report summarizing requests received. We never sell, rent, trade, or share your personal information for cross-context behavioral advertising. We never share with data brokers. We never share with U.S. Immigration and Customs Enforcement (ICE) or U.S. Customs and Border Protection (CBP) absent a judicial warrant signed by a judge.

We use cookies and local storage for three purposes only: (1) strictly necessary — keeping you signed in, remembering your language preference, and protecting against cross-site request forgery; you cannot disable these without breaking the platform; (2) security — Cloudflare bot management and rate limiting that protect the service from abuse; (3) product analytics — PostHog, used to understand which features are used and which are broken so we can improve them. Analytics cookies can be turned off from your account settings or by sending the Global Privacy Control (GPC) signal; we honor GPC. We do not use advertising, retargeting, or cross-site tracking cookies. We do not use Google Analytics, Meta Pixel, or any third-party advertising tag.

Active accounts: data kept for the life of the account. Deleted accounts: removed within 30 days, except where retention is legally required (tax records 7 years, audit log 7 years per the Audit Log policy). Inactive accounts (no login for 24 months): we email you, then delete after 30 more days. Backups containing your data are rotated and overwritten on a 35-day cycle. Aggregated, de-identified statistics derived from your data may be retained indefinitely for grant reporting and platform research.

Your data is stored in Supabase (Postgres database and object storage) in the United States, and processed on Google Cloud Platform in the us-west1 region (Oregon). Production data is encrypted in transit (TLS 1.2 or higher) and at rest (AES-256). Database access is row-level isolated by tenant; staff access is logged, role-based, and limited to operational necessity. We follow OWASP guidelines for application security, run automated dependency vulnerability scanning, and require multi-factor authentication for all administrative access. No system is perfectly secure, and no transmission over the internet is guaranteed safe. If we discover a security incident affecting your personal information, we will notify affected California residents in accordance with California Civil Code §1798.82 and notify other users without unreasonable delay, by email, SMS, or in-product notice as appropriate.

AGCONN is for adults. You must be 18 or older to create an account. We do not knowingly collect personal information from children under 13, and the platform is not directed at children. If you are a parent or guardian and believe your child has provided us with personal information, contact [email protected] and we will delete it.

If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) give you specific rights. Categories of personal information we have collected in the past 12 months: identifiers (name, phone, email, IP address, account ID); professional or employment information (work history, skills, certifications, FLC license); commercial information (employer billing only); internet or network activity (page views, device and browser data); coarse geolocation (county-level only, derived from self-reported location or IP); and inferences (job-match relevance scores). Categories disclosed for a business purpose in the past 12 months: identifiers and professional information disclosed to the subprocessors listed in the previous sections, and to employers and training organizations only when you initiate a connection. We do not sell personal information for money. We do not share personal information for cross-context behavioral advertising. You have the right to know, to delete, to correct, to limit the use of sensitive personal information, to opt out of any sale or sharing for advertising (we do neither, but the right is yours), and not to be discriminated against for exercising any of these rights. To exercise any right, email [email protected] or use your account settings; we will respond within 45 days. You may use an authorized agent — we will require written proof of authorization.

Regardless of where you live, you can: (1) view all data we have about you through your account; (2) export it as PDFs; (3) correct anything that's wrong; (4) delete your account at any time; (5) opt out of any non-required communication. Submit a request through your account settings or email [email protected] — response within 30 days. We will not retaliate against you, suspend your account, or charge you for exercising any of these rights.

When we update this policy, we change the 'last updated' date at the top. For material changes — new categories of data we collect, new categories of recipients we share with, or reduced privacy protections — we notify active account holders by email and SMS at least 30 days before the change takes effect, and post a notice in the product. Continuing to use AGCONN after the effective date means you accept the updated policy; if you don't accept it, delete your account before that date and we will treat you as deleted under the retention section above.