Short version: We collect data needed to run your cleaning business software. We don't sell your data. We don't use it for advertising. Your clients' data belongs to you.
1. Who We Are
Rinsebase LLC, doing business as Rinsebase ("we," "us," "our") operates the Rinsebase cleaning business management platform, accessible at rinsebase.com and via our iOS and Android apps. This Privacy Policy explains how we collect, use, and protect information when you use our Service.
For questions about this policy, contact us at [email protected].
2. Information We Collect
| Category | What we collect | Why |
|---|---|---|
| Account data | Name, email, company name, phone number, password (hashed) | To create and manage your account |
| Business data | Client records, job history, invoices, crew info, schedules | To provide the Service |
| Payment data | Billing address, last 4 digits of card (via Stripe). We never store full card numbers. | To process subscription payments |
| Location data | GPS coordinates from crew app (when clock-in is active) | For mileage tracking and dispatch |
| Usage data | Pages visited, features used, browser type, IP address | To improve the Service and fix bugs |
| Communications | Emails and messages you send us | To provide support |
3. Data Controller and Data Processor
Rinsebase acts in two distinct roles depending on the type of data involved:
- Data Controller — For data related to your account, billing, and use of the platform (your name, email, payment information, and usage data), Rinsebase is the Data Controller. We determine the purposes and means of processing this data as described in this policy.
- Data Processor — For data you input about your own clients (their names, addresses, contact details, job history, and invoices), Rinsebase acts as a Data Processor on your behalf. You, the cleaning business owner, are the Data Controller for that data. We process it solely to provide the Service to you and have no independent right to use it.
If you require a formal Data Processing Agreement (DPA) — for example, to comply with GDPR or state privacy law obligations — please see our Data Processing Agreement or contact us at [email protected].
4. Your Clients' Data
When you use Rinsebase, you may input data about your clients — their names, addresses, contact information, and service history. This data belongs to you. We process it only to provide the Service to you and will not use it for any other purpose.
You are responsible for ensuring you have appropriate rights to store and process your clients' data in our Service, and for complying with applicable privacy laws in your jurisdiction.
5. How We Use Your Information
We use collected information to:
- Provide, maintain, and improve the Service
- Process payments and manage subscriptions
- Send transactional emails (invoices, job notifications, review requests) on your behalf
- Respond to support requests
- Send product updates and service announcements (you can opt out)
- Detect and prevent fraud and abuse
- Comply with legal obligations
We do not sell your data. We do not use your data for advertising. We do not share your data with third parties except as described in this policy.
6. Data Sharing
We share data only with:
- Stripe — for payment processing. Subject to Stripe's Privacy Policy.
- Supabase — our database and authentication provider. Data is stored in secure US-based data centers.
- Resend — for transactional email delivery (invoices, notifications).
- Legal requirements — if required by law, court order, or to protect our legal rights.
We do not share your data with marketing companies, data brokers, or any third party for their own commercial purposes.
7. Data Security
We implement industry-standard security measures including:
- All data encrypted in transit (TLS/HTTPS)
- All data encrypted at rest
- Row-level security on all database tables
- Passwords hashed using bcrypt
- Regular security reviews
No method of transmission over the internet is 100% secure. We cannot guarantee absolute security but take reasonable precautions to protect your data.
8. Data Retention
We retain your data for as long as your account is active. If you cancel your subscription:
- Your data remains accessible for 30 days after cancellation
- After 30 days, your data is scheduled for deletion
- Some data may be retained longer as required by law (e.g., billing records)
You can request a full export of your data at any time by emailing [email protected].
9. Your Rights
Depending on your location, you may have the right to:
- Access — request a copy of the data we hold about you
- Correction — request correction of inaccurate data
- Deletion — request deletion of your data
- Portability — receive your data in a machine-readable format
- Objection — object to certain processing of your data
To exercise these rights, email us at [email protected]. We will respond within 30 days.
10. Cookies
We use essential cookies required for authentication and session management. We do not use tracking cookies or advertising cookies. You can disable cookies in your browser settings, but this may affect your ability to use the Service.
11. Children's Privacy
The Service is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.
12. Location Data
The Rinsebase crew app collects GPS location data when crew members are actively clocked in to jobs. This data is used for mileage tracking and dispatch purposes. Location tracking stops when crew members clock out. Crew members can review their location history in the app.
13. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete your personal information, and the right to opt out of the sale of personal information. We do not sell personal information. To exercise your California rights, contact us at [email protected].
14. International Users
Rinsebase is operated in the United States. If you access the Service from outside the US, your data will be transferred to and processed in the US. By using the Service, you consent to this transfer.
15. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice in the Ser