Privacy Policy

1. Who This Policy Covers

This Policy applies to:

• Account holders — property owners, landlords, hosts, and property managers who register for Structure
• Collaborators — co-owners, professionals, contractors, and others invited by an account holder
• Guests — individuals whose information is entered into Structure by an account holder for stay management, and who may receive guest portal access
• Visitors — anyone who visits our marketing website

If your information is in Structure because an account holder added it (for example, you are a guest at a property), the account holder is the party that controls how your information is used in their workspace. We process that information on their behalf. Contact the account holder directly for requests related to their workspace; we will assist where appropriate.

2. Information We Collect

Information you provide

• Account information: name, email address, password, phone number, billing details, business or property affiliation
• Property information: addresses, property type, photos, documents, project details, schedules, expenses, inventory records, notes
• Guest information entered by account holders: guest name, contact details, stay dates, custom fields such as Wi-Fi codes, door codes, and check-in notes
• Communications: messages you send through the Service, including attachments
• Support requests and any other information you provide when contacting us

Information collected automatically

• Usage data: pages and features accessed, actions taken, timestamps, referring URLs
• Device and technical data: IP address, browser type, operating system, device identifiers, language preferences
• Cookies and similar technologies: see Section 8

Information from third parties

• Payment processors: transaction confirmations, partial card details (we do not store full card numbers)
• Authentication providers: if you sign in via a third-party identity provider, basic profile information
• Service providers that help us operate, secure, or improve the Service

3. How We Use Information

We use information to:

• Provide, operate, and maintain the Service
• Create and manage accounts, authenticate users, and process payments
• Power features such as projects, guest management, file storage, sharing, messaging, and AI-assisted tools
• Communicate with you about your account, updates, security alerts, and support
• Send marketing communications where permitted (you can opt out at any time)
• Improve and develop the Service, including measuring performance and analyzing usage
• Detect, prevent, and respond to fraud, abuse, security incidents, and violations of our Terms
• Comply with legal obligations and enforce our rights

We may aggregate or de-identify information so it can no longer reasonably be linked to you, and use that aggregated information for any lawful purpose.

4. AI-Assisted Features

Structure includes AI-assisted features, including Mason, our in-product AI assistant. To provide these features:

• Your User Content (such as project details, file metadata, and messages) may be processed by our systems and by trusted third-party AI service providers we engage
• AI providers process this information under contractual terms requiring confidentiality and limited use
• We do not sell your User Content, and we do not permit AI providers to train their general-purpose models on your User Content unless you have explicitly consented or unless data has been de-identified in accordance with this Policy
• AI outputs may not be accurate or complete, and they are not professional advice; you remain responsible for reviewing them before acting on them

We may use de-identified or aggregated information to improve our own AI-assisted features, monitor quality, and develop new functionality.

5. How We Share Information

We share information only as described below.

With people you choose. When you invite collaborators, share projects, grant guest portal access, or generate shareable links, the information you designate is shared with those recipients. You control what is shared and at what access level.

With service providers. We work with vendors who help us operate the Service — including hosting, storage, analytics, payment processing, customer support, email delivery, and AI providers. These vendors may access information only as needed to perform their services and are bound by confidentiality and security obligations.

For legal and safety reasons. We may share information when we reasonably believe it is necessary to (a) comply with a law, regulation, subpoena, court order, or other legal process; (b) protect the rights, property, or safety of Structure, our users, or the public; (c) detect, prevent, or address fraud, security, or technical issues; or (d) enforce our Terms.

In a business transaction. If we are involved in a merger, acquisition, financing, reorganization, or sale of assets, information may be transferred as part of that transaction. We will notify you of any change in ownership or use of your information.

With your consent. We may share information for any other purpose disclosed to you and with your consent.

We do not sell your personal information in the traditional sense, and we do not share it for cross-context behavioral advertising as those terms are defined under applicable U.S. state privacy laws.

6. Our Right to Access and Manage Data

To operate the Service, enforce our Terms, comply with law, and maintain platform quality, we reserve the right to access, review, and process information in your account. This includes investigating suspected violations, responding to support and abuse reports, and removing content that does not meet our operational, legal, or quality standards. Access by Structure personnel is limited to authorized employees and contractors with a legitimate operational reason.

See our Terms of Service for further details on content review and removal.

7. Data Retention

We retain information for as long as your account is active and as needed to provide the Service. After account closure, we retain User Content for a reasonable period to allow recovery, then delete or de-identify it, except where longer retention is required by law (for example, to meet tax, accounting, fraud-prevention, or legal-hold obligations) or to enforce our agreements.

You may request deletion of specific information at any time, subject to the rights described in Section 10.

8. Cookies and Similar Technologies

We use cookies and similar technologies to keep you signed in, remember preferences, measure usage, and improve the Service. You can control cookies through your browser settings; some features may not function properly if you disable them. If we use any analytics or marketing cookies that require consent under applicable law, we will request that consent through a banner or in-product control.

9. Security

We use technical and organizational measures designed to protect information, including encryption in transit, access controls, and infrastructure security practices. No system is completely secure, and we cannot guarantee absolute security. You are responsible for safeguarding your account credentials and for the security of any device you use to access the Service.

If we become aware of a security incident affecting your information, we will notify you and applicable authorities as required by law.

10. Your Rights and Choices

Depending on where you live, you may have rights regarding your personal information, including:

• Access — request a copy of personal information we hold about you
• Correction — request that we correct inaccurate or incomplete information
• Deletion — request that we delete personal information, subject to exceptions
• Portability — request a copy of your information in a portable format
• Objection or restriction — object to or limit certain types of processing
• Withdrawal of consent — where processing relies on consent
• Non-discrimination — not be discriminated against for exercising privacy rights

To make a request, contact us at contact [at] usestructure.com. We will verify your identity before responding and will respond within the timeframe required by applicable law. You may also designate an authorized agent to act on your behalf.

If your information was added to Structure by an account holder (for example, as a guest), please direct requests to that account holder; we will assist them in fulfilling your request.

You can opt out of marketing emails at any time using the unsubscribe link in those messages or by contacting us. We will still send necessary service communications.

11. U.S. State Privacy Rights

Residents of California, Colorado, Connecticut, Virginia, Utah, and other states with comprehensive privacy laws may have additional rights, including the rights described in Section 10. To exercise those rights, contact us at contact [at] usestructure.com. We do not sell personal information or engage in cross-context behavioral advertising as those terms are defined under applicable state laws.

California residents may also request information about disclosures of personal information to third parties for direct marketing purposes under California's Shine the Light law.

12. International Users

Structure is operated from the United States. If you access the Service from outside the United States, your information may be transferred to, stored in, and processed in the United States or other countries where we or our service providers operate. These countries may have data protection laws different from those in your jurisdiction. By using the Service, you consent to these transfers.

Where required, we use appropriate safeguards (such as standard contractual clauses) for international transfers.

13. Children's Privacy

Structure is not directed to children under 16, and we do not knowingly collect personal information from children under 16. If you believe a child has provided us personal information, contact us at contact [at] usestructure.com and we will take appropriate steps to delete it.

14. Third-Party Links and Services

The Service may contain links to third-party websites, services, or content. We are not responsible for the privacy practices of third parties. Review their privacy policies before sharing information with them.

15. Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will notify you by email or through the Service before the changes take effect. The "Last Updated" date at the top reflects the most recent revision. Your continued use of the Service after the effective date constitutes acceptance of the updated Policy.

16. Contact Us

Questions or requests about this Privacy Policy or your information? Reach us at: