1. Overview
DirectGigs ("we," "us," or "our") is a peer-to-peer gig marketplace operated by Uhlmann Fabrication LLC, a Virginia company. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use the DirectGigs mobile application and website at directgigs.app (collectively, the "Platform").
By creating an account or using the Platform, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Platform.
Plain language summary: We collect what we need to run a safe, local gig marketplace. We never sell your personal data. We never hold or process money between users — all job payments happen directly between individuals.
2. Data We Collect
Account Information
- Full name, email address, and password (hashed)
- Phone number (optional, used for account recovery)
- Date of birth (collected to verify 18+ requirement)
- Profile photo and bio
- Emergency contact information (name and phone number)
- Referral code (if applicable)
Identity Verification Data
To verify your identity and confirm you are 18 or older, we use a third-party identity verification provider (Stripe Identity or Persona). This process may collect:
- Government-issued ID (driver's license, passport, or state ID) — images and extracted data
- A selfie or liveness check photo
- The result of the verification (pass/fail) — we store only the outcome, not the raw ID images
ID verification is required to post jobs or make offers on the Platform. This service is paid for by the user at the time of verification.
Background Check Data
Background checks are conducted through Checkr, Inc. They are optional for workers — but required for ride-related gigs, and job posters may choose to require a background check before hiring any worker. Workers who complete a background check earn a Verified badge, which can be a deciding factor when a poster has set their gig to verified-workers-only. Data submitted to Checkr includes:
- Full legal name, date of birth, Social Security Number
- Address history
Checkr handles this data under their own privacy policy. We receive only a pass/fail result and a badge status. Background check costs are paid by the user.
Location Data
- Approximate location (city/zip): used to surface relevant gigs in your area. Collected when the app is in use.
- Precise location: used only for GPS-tracked ride gigs during an active trip. Location sharing begins when the worker taps "On My Way" and ends when the trip is completed.
- Full job addresses are hidden until mutual acceptance and are never shared before that point.
Job & Transaction Data
- Job posts including title, description, tags, suggested price, photos, and location
- Offer and counter-offer amounts
- Job status history and timestamps
- Completion photos (for home service jobs)
- Check-in GPS timestamps
We do not collect, process, or store any payment information between users. Job payments are made directly between individuals (cash, Venmo, Zelle, Cash App, etc.). We have no visibility into these transactions.
In-App Messages
Messages sent between users within the Platform are stored for up to 30 days. Messages may be reviewed by our moderation team if flagged for abuse, NSFW content, or in response to a report. We use automated scanning to detect prohibited content.
Reviews & Ratings
- Star ratings (1–5) submitted after job completion
- Written review text (minimum 20 characters)
- Public responses to reviews
Device & Technical Data
- Device type, operating system, and app version
- Device identifiers (for push notifications and analytics)
- IP address and approximate geographic location
- Crash logs and error reports
- App usage events and feature interactions
Subscription & Billing Data
Subscriptions and in-app purchases are processed through Apple App Store or Google Play. We use RevenueCat to manage subscription state. We do not store your credit card information — Apple and Google handle all payment processing under their own privacy policies.
The $2 per-post fee for non-subscribers is also processed through the app stores. We receive only a confirmation of payment, not raw payment details.
3. How We Use Your Data
- Account creation and authentication — to create and manage your account securely
- Identity and age verification — to confirm all users are 18+ and who they claim to be
- Gig matching — to show you relevant jobs and workers based on location, tags, and availability
- Messaging — to facilitate communication between hirers and workers
- Safety — GPS tracking during rides, SOS alerts, route deviation detection, emergency contact notification
- Reviews and trust — to display ratings and reviews that help the community make informed decisions
- Platform integrity — to detect fraud, abuse, fake accounts, and banned users attempting to re-register
- Notifications — to send push notifications (via OneSignal) about new gigs, messages, offers, and platform updates
- Analytics — to understand how the Platform is used and improve features (via PostHog)
- Crash reporting — to identify and fix bugs (via Sentry)
- Legal compliance — to comply with applicable Virginia and federal law
- Customer support — to respond to support requests and resolve issues
We do not use your data to train AI or machine learning models. We do not sell your personal data to third parties for marketing.
4. Third-Party Services
DirectGigs integrates with the following third-party services to deliver Platform functionality. Each operates under its own privacy policy:
SupabaseDatabase, auth, file storage
Stripe IdentityID verification
CheckrBackground checks
Google MapsMaps and location
RevenueCatSubscription management
Apple IAPIn-app purchases (iOS)
Google PlayIn-app purchases (Android)
OneSignalPush notifications
SentryCrash reporting
PostHogProduct analytics
We share only the minimum data necessary with each provider to perform their specific function. We do not authorize these providers to use your data for their own marketing purposes.
5. Data Sharing
We do not sell, rent, or trade your personal information. We may share your information in the following limited circumstances:
- Between matched users: When a job is mutually accepted, the full job address and basic profile information are shared with the matched worker/hirer. Prior to acceptance, only approximate location (city/area) is visible.
- Service providers: As described in Section 4, we share data with our third-party vendors solely to provide Platform services.
- Legal requirements: We may disclose information if required by law, subpoena, court order, or to protect the rights, safety, or property of DirectGigs, our users, or the public.
- Business transfers: If DirectGigs is acquired or merges with another company, your information may be transferred as part of that transaction. You will be notified via email and/or a prominent notice on the Platform.
- Safety emergencies: If we have a good-faith belief that disclosure is necessary to prevent imminent harm or injury, we may share relevant information with emergency services or law enforcement.
6. Data Retention & Deletion
Retention Periods
- Account data: Retained while your account is active and for 90 days after deletion request
- In-app messages: Automatically deleted after 30 days
- Job posts: Archived after completion; retained for up to 2 years for dispute and legal purposes
- Reviews: Retained indefinitely as part of the public platform record (anonymized upon account deletion)
- Crash and analytics logs: Retained for up to 12 months
- Verification results: Pass/fail outcome retained to enforce bans; raw ID images are not stored by us
Account Deletion
You may delete your account at any time from within the app (Settings → Account → Delete Account) or by emailing us at phillip@directgigs.app. Upon deletion:
- Your profile, photos, and personal details are removed within 30 days
- Messages are deleted
- Reviews you left are anonymized (not deleted, as they are part of the public trust system)
- A ban record may be retained if your account was terminated for policy violations, to prevent re-registration
7. Security
We take data security seriously and implement industry-standard safeguards including:
- Encrypted data transmission (HTTPS/TLS)
- Encrypted data storage via Supabase with row-level security
- Hashed passwords (never stored in plain text)
- Access controls limiting which team members can access user data
- Screenshot prevention on sensitive screens within the app
No method of transmission or storage is 100% secure. If you believe your account has been compromised, contact us immediately at phillip@directgigs.app.
8. Minors
DirectGigs is strictly for users 18 years of age and older. We require ID verification as part of the account activation process. We do not knowingly collect personal information from anyone under 18. If we become aware that we have collected data from a minor, we will immediately delete that account and its associated data.
If you believe a minor has registered on the Platform, please contact us at phillip@directgigs.app.
9. Virginia & VCDPA Rights
DirectGigs is headquartered in Virginia. As a Virginia resident, you have the following rights under the Virginia Consumer Data Protection Act (VCDPA):
- Right to Know: You may request to know what personal data we have collected about you.
- Right to Correct: You may request correction of inaccurate personal data.
- Right to Delete: You may request deletion of your personal data (subject to legal retention requirements).
- Right to Portability: You may request a copy of your personal data in a portable format.
- Right to Opt Out: You may opt out of the sale or sharing of your personal data for targeted advertising. We do not sell your data.
- Right to Appeal: If we deny your request, you may appeal our decision.
To exercise any of these rights, email phillip@directgigs.app with your name, account email, and the right you wish to exercise. We will respond within 45 days.
10. California & CCPA Rights
Although DirectGigs is currently geo-locked to Virginia, if you are a California resident using the Platform, you have rights under the California Consumer Privacy Act (CCPA) / CPRA:
- Right to know what personal information is collected, used, shared, or sold
- Right to delete personal information
- Right to opt out of the sale of personal information — we do not sell personal data
- Right to non-discrimination for exercising your privacy rights
To submit a CCPA request, email phillip@directgigs.app.
11. GDPR / International Users
DirectGigs is currently available only in Virginia, United States. We do not intentionally offer services to residents of the European Economic Area (EEA), United Kingdom, or other jurisdictions with distinct data protection laws. If you access the Platform from outside the United States, you do so at your own risk and acknowledge that your data will be processed and stored in the United States.
If you are an EEA resident and believe your GDPR rights apply, please contact us at phillip@directgigs.app and we will make a reasonable effort to assist.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Posting the updated policy with a new effective date on this page
- Sending an in-app notification or email to registered users
Continued use of the Platform after the effective date of a revised policy constitutes your acceptance of the changes. We track the version of the Terms of Service and Privacy Policy each user has accepted and will prompt re-acceptance when material changes occur.