Privacy Policy

Last updated: August 29, 2025

This Privacy Policy describes how we collect, use, and share information when you use our ASP.NET Core cleaning services application (the "Service"). The Service supports booking/scheduling, dispatching crews, routing, before/after photos, messaging, and billing for residential and/or commercial cleaning.

Quick summary

We collect account details, job and location information, messages, and device/usage data needed to run the Service.
We use the data to provide and improve the Service, process payments, route crews, communicate with you, and ensure safety and security.
We do not sell personal information. If we use analytics/ads that could be considered a "sale"/"share" or "targeted advertising" under state laws, you will have opt-out controls. We also honor recognized global opt-out signals.
If we deny a privacy request, you can file a simple appeal; see Your Rights below.

1) Who we are & scope

This policy applies to the web and mobile interfaces of the cleaning Service and any related APIs, notifications, and administrative portals. If you interact with us outside the Service (e.g., as a contractor/vendor), additional terms may apply.

2) Users of the Service

Customers who request or manage cleaning jobs.
Cleaning professionals/crew members who accept jobs, navigate to locations, and complete checklists.
Admins/dispatchers who schedule, assign, and support operations.

3) Information we collect

Account & profile: name, email, phone, password (hashed), role, preferences.
Addresses & job details: service addresses, access notes, instructions, checklists, before/after photos, and job history.
Location data (optional/role-based): precise or approximate location to route crews, show ETA, and verify arrival/departure. Mobile apps request OS permissions; you can manage them in device settings.
Communications: in-app messages, SMS/email notifications, and their delivery metadata.
Payment data: billing name, address, last 4 digits/brand/expiration; full card data is handled by our payment processor and not stored on our servers.
Identity/verification (for crew): documents or checks required for onboarding, where applicable.
Device & usage: IP address, user-agent, OS/browser, crash logs, pages/API calls, timestamps, cookies, and similar technologies. Anti-forgery tokens and session cookies are used for security.

4) Sources of information

Directly from you when you create an account, schedule, upload photos, or communicate.
Automatically from your browser/app and devices (telemetry and logs).
From service providers (e.g., payment, messaging, address validation).

5) How we use information

Provide, operate, and support bookings, scheduling, routing, and messaging.
Authenticate users, authorize roles, prevent fraud/abuse, and maintain security.
Process payments and send receipts and operational emails/SMS/push notifications.
Store and display job records, photos, and checklists for quality assurance.
Monitor performance, fix bugs, and improve reliability and features.
Comply with legal and tax obligations and enforce our terms.

We do not use your data for interest-based advertising within the Service. If we adopt external analytics/marketing tools, we will provide appropriate disclosures and controls.

6) Legal bases (EEA/UK where applicable)

We process data as needed to perform a contract (providing the Service), based on legitimate interests (security, service improvement), to comply with legal obligations, and—where required—based on your consent (e.g., certain notifications, precise location, or marketing).

Service providers (processors) who process data on our behalf under contracts, such as:
- Hosting and infrastructure (e.g., Azure/AWS/IIS for ASP.NET Core)
- Payment processing (e.g., Stripe, Square, or equivalent)
- Email/SMS/push delivery (e.g., SendGrid, Twilio, Firebase/Apple/Google)
- Analytics, logging, error monitoring (e.g., Application Insights, Sentry)
Within the Service: limited sharing necessary to fulfill a job (e.g., a crew member sees the service address and instructions; a customer may see the assigned pro’s name and arrival window).
Legal and safety: to comply with law, respond to lawful requests, or protect rights, safety, and property.

We do not sell personal information. We do not permit third-party advertisers to track you within the Service.

8) Data retention

We retain data while your account is active and as needed for operations, disputes, and legal/tax requirements, then delete or de-identify it. Examples by category:

Category	Examples	Typical retention	Purpose / criteria
Identifiers	Name, email, phone	Account life + up to 2 years	Support, dispute resolution
Addresses & job history	Service addresses, instructions	~3–5 years	Operations, QA, tax/records
Photos & checklists	Before/after images, forms	~2 years	Quality assurance, proof of service
Geolocation	Arrival/departure, routing	≤ 90 days	Dispatch, audit/security
Payment identifiers	Last 4, brand, receipts	Up to 7 years	Accounting/tax law
Messages	In-app, email, SMS metadata	~1–2 years	Customer support, audit trail
Telemetry/logs	Error/perf logs	~90–180 days	Reliability, security

If a category requires a different period, we disclose it at or before collection or apply criteria such as the amount, nature, and sensitivity of the data; the risk of harm; and legal requirements.

9) Security

We use industry-standard safeguards, including encryption in transit (HTTPS), ASP.NET Core Data Protection, role-based access controls, least-privilege administration, audit logging, and regular patching. No method is 100% secure; please use a strong, unique password and keep your credentials confidential.

Payments. We do not store full payment card numbers on our servers. Our payment processor is contractually required to maintain PCI DSS compliance.

Security incidents. If a data breach implicating your personal information occurs, we will notify you and, when required, regulators/authorities consistent with applicable state laws and describe steps you can take to protect yourself.

10) Cookies & similar technologies

We use essential cookies (authentication/session, anti-forgery) and may use first-party analytics/caching cookies to keep the Service reliable and performant. You can manage cookies in your browser settings; some features may not work without essential cookies.

11) Location services

When enabled, the mobile app may collect precise location to route and verify visits. You can control location permissions in your device settings. Crew tracking runs only when needed for active jobs and dispatch operations. In some states, precise geolocation is treated as Sensitive Personal Information; we use it only to provide the Service. Where required, you may limit our use of sensitive information via in-app settings or the link below.

Limit My Sensitive Information

12) Your privacy choices & rights

Access, correction, deletion: You can request access to or deletion/correction of your personal data, subject to legal exceptions. To protect your information, we verify requests (e.g., via your account or email confirmation). Authorized agents may submit requests where permitted by law with proof of authority.
Do Not Sell or Share / Targeted Advertising: We do not sell personal information. If we use partners that constitute a "sale," "sharing," or "targeted advertising" under state laws, you can opt out in-app and via the link below. We honor browser-based opt-out signals where required, including Global Privacy Control (GPC) and recognized universal mechanisms (e.g., Colorado).
Limit Sensitive Info: In states that provide this right, you can limit our use of sensitive personal information (e.g., precise location) to what is necessary to provide the Service.
Communications: Manage notification and marketing preferences in the app or by using unsubscribe links.
Appeal process: If we deny your privacy request, you may appeal by emailing privacy@losguerracleaning.com with subject line Privacy Appeal. We will respond in writing within 60 days explaining the outcome. Virginia residents may contact the Virginia Attorney General if they disagree with our decision.

Your Privacy Choices (Opt-Out & Limit)

Text messaging (SMS). By providing a mobile number, you agree to receive Service-related texts. Message frequency varies. Message & data rates may apply. Reply STOP to opt out and HELP for help. Marketing texts (if any) require prior express written consent and comply with applicable telemarketing and carrier rules (including A2P 10DLC registration).

13) Children’s privacy

The Service is not directed to children under 13, and we do not knowingly collect personal information from them. If you believe a child provided us data, contact us to delete it.

14) International transfers

If you access the Service from outside the country where our servers are located, your data may be transferred internationally. Where required, we use approved transfer mechanisms and safeguards.

15) Automated decision-making

We may use automated logic for scheduling, routing, and fraud detection. These processes are designed to support—not replace—human decision-making. You can contact us to request a review of significant automated decisions, where applicable.

16) Changes to this policy

We may update this policy to reflect legal, technical, or business changes. We will post the updated policy here and adjust the "Last updated" date. Material changes will be communicated through appropriate channels.

17) Contact us

Questions or requests? Contact our privacy team at privacy@losguerracleaning.com. If your request pertains to account data, we may ask you to verify your identity. If you need this notice in an alternative format or language, contact us—we strive to make our notices reasonably accessible (e.g., WCAG 2.1 AA).