Last updated: April 2025
FieldRep is a CRM tool built for medical device sales representatives. We take data privacy seriously. Your data belongs to you. We do not sell it, share it with advertisers, or use it to train AI models. This policy explains what we collect, how we store it, and your rights.
All data is stored in a secure, encrypted database hosted by Supabase (ISO 27001 certified infrastructure on AWS). Each user's data is isolated using row-level security: no other FieldRep user can access your contacts, accounts, or notes. Data is encrypted at rest and in transit.
FieldRep uses AI to generate prep briefs, follow-up suggestions, and daily summaries. When your data is sent to our AI provider (OpenAI), it is transmitted with store: false — meaning OpenAI does not retain or log the content of your requests, and your data is never used to train AI models. We do not use any AI provider that uses customer data for model training.
Only you can access your data within the app. FieldRep administrators can access the database for technical support purposes (resolving bugs, restoring data) but do not access or review your CRM content in normal operation. We do not share your data with any third parties except as required to provide the service (database hosting, email delivery).
Your data is retained as long as your account is active. If you request account deletion, all of your data — contacts, accounts, visits, tasks, notes, and settings — is permanently deleted from our database. Deletion is irreversible. To request deletion, contact us at the email below.
FieldRep complies with Canada's Anti-Spam Legislation (CASL). We send transactional emails only (brief summaries you have opted into, account notifications). We do not send marketing emails without your explicit consent.
We use session cookies for authentication only. We do not use advertising or tracking cookies.
You have the right to:
Questions about this policy or data requests can be sent to: support@fieldrep.app