Crewed by Freelance Studio

Effective Date: 04.18.2026 | Last Updated: 04.18.2026

This Privacy Policy describes how Freelance Studio Ltd Co. (“we,” “us,” or “our”) collects, uses, stores, and shares information when you use Crewed (“the Service”), accessible at crewed.studio. By using the Service, you agree to the practices described in this policy.

If you have any questions, contact us at support@freelancestud.io.

1. Who We Are

Freelance Studio Ltd Co. is a limited liability company registered in the State of Georgia, United States. For legal notices and data protection inquiries, contact us at support@freelancestud.io; for postal correspondence, request our mailing address via email.

For the purposes of the EU General Data Protection Regulation (GDPR) and the UK GDPR, Freelance Studio Ltd Co. is the “data controller” of personal information processed through the Service.

2. Information We Collect

2.1 Information You Provide Directly

When you create an account and use the Service, you provide us with:

  • Account information: name, email address, password (stored as a one-way hash), and any business details you enter (business name, address, phone, website, logo).
  • Business and financial records: clients, crew members, gigs, invoices, expenses, mileage, payment instructions, tax information, and related notes you enter.
  • Payment information: when you subscribe to a paid plan, you provide payment details directly to our payment processor, Stripe. We do not receive or store full credit card numbers. We receive a token and limited metadata (last 4 digits, card brand, expiration, billing ZIP) from Stripe.
  • Content you upload: receipts, logos, and other files you attach to records in the Service.
  • Communications: messages you send to us through support channels.

2.2 Information Collected Automatically

When you use the Service, we automatically collect:

  • Log data: IP address, browser type, device identifiers, pages visited, timestamps, and referring URLs. This data is captured in our server-side logs for security, debugging, and fraud prevention.
  • Availability request metadata: when someone submits a request through your shareable availability link, we capture their IP address and browser user agent alongside the information they enter. This is used to detect and prevent spam and abuse.
  • Cookies and similar technologies: we use strictly necessary cookies to keep you logged in and to remember your preferences. With your consent, we also use Google Analytics to understand how the Service is used.

2.3 Information from Third Parties

If you connect your Google Calendar, we receive calendar data from Google via the Google Calendar API, including calendar names, event titles, start/end times, descriptions, locations, attendees, and colors. See Section 6 for details on our Google API usage.

3. How We Use Information

We use the information we collect to:

  • Provide, operate, and maintain the Service.
  • Process your subscription payments through Stripe.
  • Send transactional emails (account confirmations, password resets, payment receipts, availability request notifications).
  • Provide customer support when you contact us.
  • Detect, investigate, and prevent fraudulent activity, abuse, or security issues.
  • Comply with legal obligations and enforce our Terms of Service.
  • Analyze usage patterns to improve the Service (only with consent where required).

We do not sell your personal information, and we do not use your business or financial data for advertising or to train artificial intelligence models.

4. Legal Basis for Processing (EU/UK users)

If you are located in the European Economic Area, United Kingdom, or Switzerland, we process your personal information under the following legal bases:

  • Contract: processing necessary to provide the Service you signed up for (GDPR Article 6(1)(b)).
  • Legitimate interests: fraud prevention, service security, and minimal product analytics (GDPR Article 6(1)(f)).
  • Consent: optional features such as Google Analytics and marketing communications, which you can withdraw at any time (GDPR Article 6(1)(a)).
  • Legal obligation: compliance with tax, accounting, and other applicable laws (GDPR Article 6(1)(c)).

5. How We Share Information

We share information only with the service providers and in the circumstances described below. We do not sell personal information to third parties.

5.1 Service Providers

  • Stripe (stripe.com): payment processing. Stripe receives and stores your payment information subject to its own privacy policy. We receive limited tokenized payment metadata.
  • Google LLC: Google Calendar API access (only if you connect your Google Calendar) and Google Analytics (only with your consent).
  • Namecheap: our hosting provider, which stores the servers on which the Service runs. Namecheap does not access your data except as required to provide hosting services.

5.2 Legal Requirements

We may disclose information if we believe in good faith that it is necessary to: (a) comply with a legal obligation, court order, or government request; (b) enforce our Terms of Service; (c) protect the rights, safety, or property of Freelance Studio Ltd Co., our users, or others; or (d) detect, prevent, or address fraud or security issues.

5.3 Business Transfers

If Freelance Studio Ltd Co. is acquired, merges with another company, or sells all or substantially all of its assets, your information may be transferred as part of that transaction. We will provide notice before your information becomes subject to a different privacy policy.

6. Google API Services User Data Policy

Crewed’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, when you connect your Google Calendar:

  • We access your calendar data only for the purpose of providing the calendar features you see in the Service: displaying events, checking availability for requests sent through your shareable link, and (if you use this feature) creating events in response to confirmed availability requests.
  • We do not use Google Calendar data to serve advertisements.
  • We do not transfer Google Calendar data to third parties except to provide the Service, comply with applicable law, or as part of a merger, acquisition, or asset sale (in which case we will provide notice).
  • We do not allow humans to read Google Calendar data unless we have your affirmative consent, it is necessary for security purposes (for example, investigating abuse), to comply with applicable law, or our use is for internal operations and the data (including derivations) has been aggregated and anonymized.

You can revoke Crewed’s access to your Google Calendar at any time by disconnecting from the Integrations section of your Crewed settings, or by visiting your Google Account permissions at myaccount.google.com/permissions.

7. International Data Transfers

Our servers and most of our service providers are located in the United States. If you access the Service from outside the United States, your information will be transferred to, stored, and processed in the United States.

For transfers of personal information from the European Economic Area, United Kingdom, or Switzerland to the United States, we rely on the European Commission’s Standard Contractual Clauses and, where applicable, our service providers’ participation in the EU-U.S. Data Privacy Framework.

8. Data Retention

We retain your information for as long as your account is active. When you close your account, we retain your data for an additional six (6) months to allow for account recovery and to comply with operational requirements. After this six-month period, we permanently delete or anonymize your personal data, except:

  • Transactional records (invoices, payment receipts) retained as required by tax, accounting, and other applicable laws (typically seven years in the United States).
  • Aggregated or anonymized data that cannot be used to re-identify you, which we may retain indefinitely.
  • Data required for ongoing legal proceedings, regulatory obligations, or dispute resolution.

9. Your Rights

Depending on where you live, you have certain rights regarding your personal information. Regardless of location, all Crewed users can:

  • Access and export their data through the Export function in Settings.
  • Correct their data directly in the Service.
  • Delete their account by contacting support@freelancestud.io.
  • Disconnect Google Calendar at any time from the Integrations section.

9.1 EU/UK/Swiss Residents

Under the GDPR and UK GDPR, you additionally have the right to:

  • Request access to, correction of, or deletion of your personal data.
  • Object to or restrict our processing of your data.
  • Data portability — receive your data in a structured, machine-readable format.
  • Withdraw consent where processing is based on consent.
  • Lodge a complaint with your local data protection authority.

9.2 California Residents

Under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), California residents have the right to know what personal information we collect, to delete it, to correct it, and to opt out of its sale or sharing for cross-context behavioral advertising. We do not sell personal information and we do not share it for cross-context behavioral advertising.

9.3 How to Exercise Your Rights

To exercise any of these rights, email support@freelancestud.io. We will respond within 30 days (or as required by applicable law). We may need to verify your identity before fulfilling certain requests. We will not discriminate against you for exercising your rights.

10. Security

We take reasonable and appropriate measures to protect your information:

  • All traffic is encrypted in transit using HTTPS/TLS.
  • Passwords are stored using one-way cryptographic hashes.
  • Google Calendar OAuth tokens are encrypted at rest using industry-standard algorithms (libsodium or AES-256).
  • Each Crewed account is isolated from other accounts — your data is never visible to other users.
  • Access to production systems is limited to authorized personnel and is logged.

No method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. You are responsible for keeping your account password confidential.

11. Children’s Privacy

The Service is not intended for anyone under 18 years of age. We do not knowingly collect personal information from children under 18. If you believe a child under 18 has provided us with personal information, please contact us at support@freelancestud.io and we will delete the information promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and update the “Last Updated” date at the top of this policy. Continued use of the Service after a change means you accept the updated policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, contact us at:

Freelance Studio Ltd Co.

Marietta, GA, United States

Email: support@freelancestud.io

Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
None
Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
None
Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
None
Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
None