Privacy Policy

ClearPlan ("we", "our", or "us) provides integration configuration, deployment, and support services for connecting Ramp and Trimble ERP systems (Vista/Spectrum) via the Trimble App Xchange platform (the "Service").

Information We Process

Our service involves configuring and supporting automated data flows through the Trimple App Xchange platform. We do not host, store, or directly process transactional data – such data flows directly between Ramp, App Xchange, and the customer’s Trimble ERP instance.

We may temporarily access or process limited data solely for configuration, testing, priming Ramp master data (e.g., vendors, jobs, GL accounts), troubleshooting, or support. This may include:

  • Business contact details (e.g. names, emails, or phone numbers associated with vendors/employee records)
  • System configuration data
  • Technical logs or metadata
  • Limited sample/test data provided by the customer for validation
Info icon

Note: We do not collect or use information for marketing or analytics unrelated to service delivery, or any other secondary purpose.

How We Use Information

We use information solely to:

  • Deliver, configure, and maintain the integration
  • Provide support, troubleshooting, and Hyper-Care
  • Ensure system security, performance, and compliance with the Statement of Work
  • Meet contractual and legal obligations

Data Sharing

We do not sell, rent, or share data. Information may be shared only with:

  • The customer
  • Trimble App Xchange (as the integration platform)
  • Ramp Business Corporation (as the expense management platform)
  • Subcontractors/Service providers under strict confidentiality (e.g. hosting/support tools)
  • Authorities if required by law
Info icon

Note: All third-party sharing occurs under obligations equivalent to this policy.

Data Security

We rely on Trimble App Xchange's AES-256 encryption for data in transit/at rest, supplemented by ClearPlan’s internal safeguards. ClearPlan maintains a CMMC Level 2 certified GCCH enclave and a CMMC Level 1 compliant commercial tenant from which all services are provided.

Data Retention

We retain information only as long as necessary to operate the software, meet legal requirements, and resolve technical or contractual matters.

Customer Responsibility

Customers control the data transmitted through the connector and are responsible for ensuring they have the right to share it and for managing access permissions.

International Transfers

If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place in accordance with GDPR requirements, such as the European Commission's Standard Contractual Clauses (SCCs) or reliance on adequacy decisions (e.g., the EU-US Data Privacy Framework where applicable).

Updates

We may update this Privacy Policy from time to time. The latest version will always be posted and available at https://clearsync.app/privacy.

Contact

For questions about this policy, contact us at info@clearplanconsulting.com.