← Back home

LEGAL

Privacy Policy

Effective: May 16, 2026

Down to Detail ("we," "us," "our") is a software-as-a-service product built for independent cleaning businesses. This policy explains what information we collect, how we use it, and the choices you have. Plain English, no dark patterns.

What we collect

  • Account info you give us: name, business name, email, phone, address, password (hashed), profile photo, social links.
  • Cleaning business data you create: clients, schedule stops, photos, tips, notes, walkthroughs, supply inventory, financial figures you enter (rates, tips).
  • Payment metadata: Stripe handles your card directly. We only store the customer ID and subscription status, never the card number, CVV, or full bank info.
  • Usage metrics: which AI features you use, how often, plus basic page-view counts for product analytics.
  • Optional location: if you enable Auto-SMS on Departure in Settings, your browser shares GPS coordinates with the app to detect when you leave a client's address. Coordinates are processed in memory only, never stored.
  • Voice transcripts for walkthrough memos: stored in your account so you can replay/edit them. Sent to Anthropic only for structuring into per-room checklists.

What we don't collect

  • Background location (the app cannot track you when closed)
  • Browsing history outside our app
  • Your phone's contact list, photos library, or microphone except when you explicitly tap record
  • Any health, financial-account, or government-ID data

How we use it

  • Run the features you signed up for (schedule, SMS, AI, finances)
  • Process payments via Stripe
  • Send transactional emails (welcome, password reset, trial reminders, receipts)
  • Aggregate, anonymized analytics to improve the product
  • Reach out to you about your account (rare; we don't spam)

We do not sell your data. We do not share it with advertisers. We do not use client lists or schedule data to train any AI model. Period.

Who sees it

  • You: full access to all your data, exportable any time from Settings → Privacy & Security → Export.
  • Workspace members you invite: see the same data you do, per the permission toggles you set on the Team page.
  • Service providers: Supabase (database hosting), Vercel (web hosting), Stripe (payments), Resend (transactional email), Anthropic (AI inference), Meta (advertising attribution, public marketing pages only, see "Advertising & analytics" below). Each handles only what's necessary for their function and is contractually bound to confidentiality.
  • Nobody else, except where legally required (court order, etc.).

Your rights

  • Export: download all your data as JSON anytime (Settings → Privacy & Security).
  • Delete: erase your account + every byte we hold (Settings → Privacy & Security). Cannot be undone.
  • Correct: edit profile, business details, all client data from inside the app.
  • Opt out of marketing: every marketing email has unsubscribe. Transactional emails (receipts, password resets) can't be opted out without closing your account.

Advertising & analytics

When you visit our public website (e.g. downtodetail.app, our pricing page, our landing pages), we may use the Meta Pixel and the corresponding Conversions APIto measure the effectiveness of our Facebook and Instagram ads. This helps us understand which ads led to signups so we don't waste money on ads that don't resonate.

  • What's tracked: page visits, clicks on "Subscribe," account creation, and successful subscription purchases.
  • What's shared with Meta: hashed (SHA-256) email, phone, name, city/state/zip, and event metadata. Plain-text values are never transmitted.
  • What's never shared: your client list, schedule, notes, photos, finances, or any data inside the app after login.
  • If you don't want to be tracked, you can install a browser ad-blocker (e.g. uBlock Origin), use a privacy-focused browser, or opt out of personalized ads at Facebook's Ad Preferences.

Security

  • HTTPS for everything in transit. Encrypted at rest in Supabase.
  • Passwords stored hashed with industry-standard algorithms. We cannot see or recover your password.
  • Per-row security policies (RLS) prevent users from reading each other's data even at the database level.
  • Stripe is PCI-DSS Level 1; we never see your card.

No system is unbreakable. We'll notify affected users within 72 hours of confirming a data breach that puts personal data at risk.

Children

Down to Detail is for adults running cleaning businesses. We don't knowingly collect data from anyone under 18. If you believe a child has signed up, email us and we'll delete the account.

Changes

We may update this policy as the product grows. Material changes will be announced via email + an in-app notification. The "Effective" date at the top tracks the current version.

Contact

Questions, concerns, or want to exercise a privacy right? Email support@downtodetail.app. We aim to respond within 3 business days.

See also: Terms of Service