← Back

Privacy Policy

Effective 2026-04-25.

Draft. This document captures the operating intent of the platform and is not legal advice. Have qualified counsel licensed in your jurisdiction review and finalize before launch.

This Privacy Policy explains what we collect, how we use it, who we share it with, and the choices available to you. It applies to the platform's public sites, tenant dashboards, signup flows, and APIs.

1. Roles

For tenant business owners (signed-up customers of the platform), we act as a data controller for your account data and a data processor for the customer records, bookings, and content you create on the platform. For end customers (people booking services with one of our tenants), the tenant is the data controller and we are the processor acting on their instructions.

2. What we collect

From tenant owners

  • Business name, owner name, email, phone, service area, plan choice
  • Authentication credentials (password hashes, session tokens)
  • Stripe Connect account identifiers (we never see your raw card data)
  • Custom-domain configuration and DNS verification tokens
  • Operational telemetry: IP, user agent, request timestamps, pages visited

From end customers (your customers, processed for you)

  • Name, email, phone, customer-supplied notes
  • Vehicle / service preferences and booking history
  • Payment metadata returned by Stripe (last4, brand, charge id) — never the full card number

From everyone visiting tenant sites

  • Standard server logs (IP, user agent, paths, response codes, timing)
  • Cookies necessary to keep you signed in or to remember explicit consent

3. How we use it

  • To run the platform: serve sites, route bookings, send confirmations and reminders, process payouts.
  • To bill subscriptions and meter usage (SMS / email allowances and overages).
  • To detect abuse and protect against fraud (rate limiting, anomaly detection).
  • To meet legal obligations (tax reporting, sanctions screening, law-enforcement requests).
  • To improve the product (aggregate, anonymized analytics — no per-customer profiling).

4. Who we share it with

We share only what each subprocessor needs to deliver its service:

  • Stripe — payment processing, subscription billing, Connect payouts.
  • Twilio — outbound SMS for booking confirmations and reminders.
  • Resend — transactional email delivery.
  • Cloudinary — image hosting for tenant logos and gallery uploads.
  • MongoDB Atlas — managed database hosting.
  • Vercel — application hosting and (for the Domain Marketplace) registrar services.
  • Sentry — error monitoring (we scrub PII from breadcrumbs where feasible).

We do not sell personal information. We do not share it for cross-context behavioural advertising.

5. Retention

  • Account data: kept while your subscription is active and for 90 days after cancellation, then deleted.
  • Customer / booking / payment records: kept while your subscription is active. Available for export from your dashboard at any time. After cancellation, retained for 90 days for export, then deleted.
  • Operational logs: kept for up to 90 days then aggregated.
  • Tax / accounting records (subscription invoices): retained for 7 years to meet US recordkeeping requirements.

6. Your rights

Depending on where you live, you may have rights to access, correct, delete, or port your personal data, or to object to certain processing. Tenant owners can exercise these from the dashboard or by emailing the operator. End customers should contact the tenant whose site they used; we will support the tenant's response.

7. International transfers

Our infrastructure and subprocessors operate primarily in the United States. If you access the platform from outside the US, your data will be transferred to and processed in the US.

8. Security

We use HTTPS in transit, hashed passwords (scrypt), tenant-scoped access controls, signed Stripe webhooks, and rate-limited public endpoints. No system is perfectly secure. If we discover a breach affecting your data, we will notify you without undue delay and per applicable law.

9. Children

The platform is not directed at children under 13 (or under 16 in the EEA/UK). We do not knowingly collect their data.

10. Changes

We may update this Privacy Policy. For material changes, we will email the owner address on file at least 30 days before the change takes effect.

11. Contact

Privacy questions: write to the operator at the contact address listed on the platform's contact page or in the signup confirmation email.