Every legal document we publish has a short, honest summary at the top. The fine print is still binding — but you shouldn't have to read a 14-page PDF to understand what we will and won't do with your data.
Not aggregated, not anonymized, not in any form. Disclosed plainly in our privacy policy.
Export everything, anytime, in structured formats. Termination triggers a 60-day export window.
We're the processor. You decide what's collected, who sees it, and when it's deleted.
Material changes to any agreement get 30 days' written notice, every time.
The full, current text of each agreement. Older versions are archived and available on request — we'll send the exact version that was in effect when your camp signed up.
What we collect, why, and who can see it. Plain English: we collect what camps log about incidents and what their staff use to access the product. We don't track campers — they don't have accounts. We don't sell data. Parents can request access or deletion through their camp.
The contract between PineReport and your camp. Plain English: we provide the service, you pay for it, both sides can terminate with notice. Annual plans pro-rated on early termination. We don't use your data for anything except providing the service. Limitation of liability is reasonable.
Required if your jurisdiction needs one (Quebec, EU equivalent regs, several US states). Plain English: camp is data controller; PineReport is data processor. Covers PIPEDA, Quebec Law 25, CCPA/CPRA, and state-equivalents. Sub-processor list is incorporated by reference. Available pre-signed; we'll counter-sign yours.
For camps that are HIPAA covered entities or treated as such by their carriers. Plain English: aligns our handling of medical incident data with HIPAA standards. Breach notification within 72 hours of confirmed exposure. Available on request — included on Standard and Large tiers at no extra cost.
Every third-party we use to deliver PineReport. Plain English: AWS (hosting · US/CA regions), Sentry (error logging), Resend (transactional email), Stripe (billing), Notion (internal docs only, no customer data). Customers get 30 days' advance notice for additions or replacements.
What you can and can't use PineReport for. Plain English: you can use it to log incidents at your camp. You can't use it to harass anyone, store records outside the camp-safety scope, attempt to break our security controls, or share login credentials across multiple staff accounts.
What cookies the marketing site and app use. Plain English: session cookies for staying logged in. Analytics cookies (Plausible, self-hosted, no cross-site tracking). Zero third-party advertising cookies. Configurable on the marketing site via the consent banner.
A non-legal page for camp parents who want to understand what's stored about their child. Plain English: what gets recorded if an incident involves your child, who can see it, how long it's kept, and how to request access or deletion through your camp. Designed to be readable in five minutes.
Every right we promise comes with a concrete path to exercise it. If any of these don't work as described, write us — we'll fix it the same week.
.zip containing all incidents, attachments, audit log, and configuration as structured JSON + CSV. Available to camp admins at any time, no charge.deleted_by, deleted_at, and reason.The full security and compliance write-up is on the security page. This is the lawyer-friendly summary.
Three direct channels. Real response times. No tickets disappearing into a queue.
DPO inquiries, parent access escalations, regulator correspondence. We respond within one business day.
privacy@pinereport.comDPA negotiation, MSA changes, redlines on standard agreements. Slower (3–5 business days) but real engagement, not boilerplate.
legal@pinereport.comVulnerability reports, suspected breach, security questionnaire requests. 24-hour response target, 365 days a year.
security@pinereport.com