Privacy Policy¶
Last updated: 29 March 2026
CWLite ("we", "our", "us") is committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights.
Who We Are¶
CWLite is a field service management application that connects to your organisation's ConnectWise Manage instance. Your organisation's IT administrator controls the CWLite deployment and is the data controller. CWLite processes data on behalf of your organisation.
Data We Collect¶
Account Information¶
When you sign in, we store:
- Name and email address — from Azure AD or provided during local account creation
- Authentication tokens — to keep you signed in securely
Ticket and Work Data¶
CWLite reads and writes data to your organisation's ConnectWise Manage instance:
- Tickets, notes, and time entries you view or create
- This data is stored in ConnectWise Manage and in your organisation's CWLite database
Device Information¶
When you use the iOS app:
- Push notification token — a unique identifier issued by Apple to deliver notifications to your device
- Device type — to format notifications correctly
Location Data (Optional)¶
If your organisationenables technician location tracking and you opt in:
- GPS coordinates — your location while the feature is active
- Site visit history — arrival and departure times at job sites
- Location data is encrypted on your device and automatically deleted after 30 days
You can disable location tracking at any time from the app settings.
Data We Do NOT Collect¶
- Browsing history or app usage analytics
- Contact lists, calendars, or photos
- Biometric data
- Data from other apps on your device
How We Use Your Data¶
- To provide the service — displaying tickets, sending notifications, logging time entries
- To authenticate you — verifying your identity via Azure AD or local credentials
- To send push notifications — alerting you to ticket updates via Apple Push Notification service
- To show technician locations — displaying your location to dispatchers (only when enabled)
We do not sell your data. We do not use your data for advertising. We do not share your data with third parties except as described below.
Third-Party Services¶
| Service | Purpose | Data Shared |
|---|---|---|
| Apple Push Notification service (APNs) | Deliver push notifications | Device token, notification content |
| Microsoft Azure AD | Authentication | Email, name (from your Microsoft 365 account) |
| Cloudflare | CDN and security | IP address, request metadata (standard web traffic) |
| ConnectWise Manage | Ticket data source | Tickets, notes, time entries (your organisation's data) |
Data Storage and Security¶
- All data in transit is encrypted with TLS
- Authentication tokens are stored in the iOS Keychain (hardware-encrypted)
- Location visit history is encrypted on-device using ChaChaPoly
- Server-side data is stored in isolated, per-customer databases
- We comply with ISO 27001 information security standards
Data Retention¶
| Data | Retention |
|---|---|
| Account information | Until account is deleted |
| Ticket and work data | Managed by your organisationin ConnectWise Manage |
| Push notification tokens | Until you sign out or delete the app |
| Location visit history | Automatically deleted after 30 days |
| All local app data | Cleared on sign-out |
Your Rights¶
You have the right to:
- Access your personal data stored by CWLite
- Correct inaccurate personal data
- Delete your account and associated data
- Disable location tracking at any time
- Withdraw consent for push notifications via your device settings
- Export your data — contact your organisation's IT administrator
To exercise these rights, contact your organisation's IT administrator or use the account settings within the CWLite app.
Children's Privacy¶
CWLite is a business application and is not intended for use by children under 13. We do not knowingly collect data from children.
Changes to This Policy¶
We may update this policy from time to time. Changes will be posted on this page with an updated revision date. Continued use of CWLite after changes constitutes acceptance of the updated policy.
Contact¶
If you have questions about this privacy policy, contact your organisation's IT administrator or reach out to us at:
Email: [email protected]