MaidFlow
Login

Privacy Policy

Last updated: January 6, 2026

1. Introduction

MaidFlow ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our cleaning business management platform ("Service").

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide when using the Service:

  • Account Information: Name, email address, password, and profile picture
  • Company Information: Business name and description
  • Customer Data: Names, email addresses, phone numbers, physical addresses, and notes about your customers that you enter into the Service
  • Booking Information: Service schedules, appointment details, and payment statuses
  • Payment Information: Billing details processed through our payment provider (Stripe)

2.2 Information Collected Automatically

When you access the Service, we automatically collect certain information:

  • Device Information: Browser type, operating system, device type
  • Log Data: IP address, access times, pages viewed, and referring URL
  • Session Information: User agent and session identifiers for authentication
  • Usage Data: How you interact with the Service, features used, and actions taken

2.3 Information from Third Parties

We may receive information from third-party services:

  • Google: If you sign in with Google, we receive your name, email address, and profile picture from your Google account
  • Stripe: Payment confirmation and subscription status

3. How We Use Your Information

We use the collected information for the following purposes:

  • Provide the Service: To operate, maintain, and improve the Service
  • Account Management: To create and manage your account, authenticate users, and provide customer support
  • Communications: To send transactional emails (booking reminders, password resets, email verifications, team invitations, daily agendas)
  • Payment Processing: To process subscription payments and manage billing
  • Analytics: To understand how users interact with the Service and improve user experience
  • Security: To detect, prevent, and address technical issues and fraudulent activity
  • Legal Compliance: To comply with legal obligations and enforce our Terms of Service

4. Third-Party Services

We use the following third-party services that may collect and process your data:

4.1 Stripe (Payment Processing)

We use Stripe to process subscription payments. Stripe collects and processes your payment information according to their Privacy Policy.

4.2 Google Services

We use several Google services:

  • Google Sign-In: For account authentication
  • Google Maps: For address autocomplete functionality
  • Google Analytics: For website analytics and understanding user behavior

Google's use of your data is governed by their Privacy Policy.

4.3 Resend (Email Delivery)

We use Resend to send transactional emails. Resend processes email addresses and message content according to their Privacy Policy.

4.4 Vercel (Hosting)

The Service is hosted on Vercel. Vercel may collect technical information such as IP addresses and request logs according to their Privacy Policy.

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

  • Maintain your session and keep you logged in
  • Remember your preferences (such as language settings)
  • Analyze website traffic and usage patterns (via Google Analytics)

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of the Service.

Types of Cookies We Use

  • Essential Cookies: Required for the Service to function (authentication, security)
  • Analytics Cookies: Help us understand how visitors interact with the Service

6. Data Sharing and Disclosure

We may share your information in the following circumstances:

  • Service Providers: With third-party vendors who perform services on our behalf (payment processing, email delivery, hosting)
  • Team Members: With other members of your company account as permitted by your role settings
  • Legal Requirements: If required by law, regulation, or legal process
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you have given us permission to share your information

We do not sell your personal information to third parties.

7. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. Specifically:

  • Account Data: Retained while your account is active and for 30 days after cancellation
  • Booking History: Retained for your business records even after customer deletion
  • Payment Records: Retained as required for tax and accounting purposes
  • Log Data: Typically retained for up to 90 days

After account deletion, we may retain certain information as required by law or for legitimate business purposes.

8. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have certain data protection rights under the General Data Protection Regulation (GDPR):

  • Right to Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate personal data
  • Right to Erasure: Request deletion of your personal data under certain conditions
  • Right to Restrict Processing: Request limitation of processing of your personal data
  • Right to Data Portability: Request transfer of your data in a machine-readable format
  • Right to Object: Object to processing of your personal data for certain purposes
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise any of these rights, please contact us at support@maidflowhq.com. We will respond to your request within 30 days.

You also have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been violated.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country.

When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place to protect your data, such as standard contractual clauses approved by the European Commission or reliance on the recipient's certification under recognized frameworks.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

  • Encryption of data in transit (HTTPS/TLS)
  • Secure password hashing
  • Regular security assessments
  • Access controls and authentication
  • Secure hosting infrastructure

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security.

11. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

12. Your Customers' Data

As a user of MaidFlow, you may store information about your own customers in the Service. You are the data controller for this customer data, and we act as a data processor on your behalf.

You are responsible for:

  • Obtaining appropriate consent from your customers to store their data
  • Providing your customers with information about how their data is processed
  • Responding to data subject requests from your customers
  • Ensuring your use of customer data complies with applicable laws

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

For material changes, we will provide notice through the Service or by email. Your continued use of the Service after any changes indicates your acceptance of the updated Privacy Policy.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: support@maidflowhq.com

For GDPR-related inquiries, you may also contact our Data Protection contact at the same email address.