Home / Privacy Policy

Privacy Policy

Regularly Updated

Effective Date: February 24, 2026  |  Last Updated: February 24, 2026

Your privacy matters to us. This Privacy Policy explains what personal data MaidProfit ("MaidProfit," "we," "us," or "our") collects, how we use it, how we protect it, and what rights you have. This policy applies to all users of our website (maidprofit.com) and our software-as-a-service platform (the "Service").

By accessing or using MaidProfit, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the Service immediately.

1. Information We Collect

1.1 Information You Provide Directly

  • Account information — name, email address, phone number, and business name when you create an account or start a free trial
  • Billing information — payment card details and billing address when you subscribe to a paid plan (processed and stored by our PCI-compliant payment processor; we do not store full card numbers on our servers)
  • Business data — client lists, invoices, job schedules, notes, and other content you enter into the Service ("Customer Data")
  • Communications — messages, feedback, and support requests you send to us

1.2 Information We Collect Automatically

  • Usage data — pages visited, features used, clicks, session duration, and referral URLs
  • Device data — browser type and version, operating system, screen resolution, and device identifiers
  • Log data — IP address, access timestamps, and server logs
  • Location data — approximate location (country or state level) derived from your IP address; we do not collect precise GPS location
  • Cookies and similar technologies — see Section 5 below for full details

1.3 Information from Third Parties

We may receive limited information from third-party services you connect to MaidProfit (for example, if you log in through a third-party authentication provider). We only collect what is necessary to provide the Service.

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data under the following legal bases:

  • Performance of contract — to provide and maintain the Service you signed up for
  • Legitimate interests — to improve our Service, prevent fraud, ensure security, and send non-marketing communications
  • Consent — for marketing emails and non-essential cookies (you may withdraw consent at any time)
  • Legal obligation — to comply with applicable laws, regulations, and legal processes

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Provide and operate the Service — account creation, authentication, scheduling, invoicing, and all core platform features
  • Process payments — billing, subscription management, and refund processing through our payment processor
  • Communicate with you — transactional emails (account confirmations, password resets, billing receipts), product updates, and support responses
  • Send marketing communications — tips, guides, and promotional content (only with your consent; you may unsubscribe at any time)
  • Improve the Service — analytics, A/B testing, troubleshooting bugs, and developing new features
  • Ensure safety and security — fraud detection, abuse prevention, and enforcement of our Terms of Service
  • Comply with legal obligations — responding to lawful requests from authorities, court orders, and regulatory requirements

We never sell your personal data to anyone. We do not share personal data with third parties for their own marketing purposes.

4. How We Share Your Information

We share personal data only in the following limited circumstances:

4.1 Service Providers (Sub-Processors)

We engage trusted third-party companies to perform services on our behalf. Each provider is bound by data processing agreements and may only use your data as instructed by us:

  • Cloud hosting — Google Cloud / Firebase (data stored in U.S. data centers)
  • Payment processing — PCI DSS-compliant processor for secure billing
  • Email delivery — transactional and marketing email services
  • Analytics — Google Analytics (see Section 5.2)

4.2 Legal Requirements

We may disclose your data if required by law, subpoena, court order, or government request, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.

4.3 Business Transfers

If MaidProfit is involved in a merger, acquisition, reorganization, or sale of assets, your personal data may be transferred as part of that transaction. We will notify you via email or prominent notice on our website before your data is transferred and becomes subject to a different privacy policy.

4.4 With Your Consent

We may share your information for any other purpose with your explicit consent.

5. Cookies and Tracking Technologies

Cookies are small text files stored on your device by your browser. We use cookies and similar technologies as described below.

5.1 Types of Cookies We Use

  • Strictly necessary cookies — required for the Service to function (login sessions, security tokens). These cannot be disabled.
  • Analytics cookies — help us understand how visitors use our website so we can improve it. These are only set with your consent.
  • Preference cookies — remember your settings and choices across visits

5.2 Google Analytics

We use Google Analytics 4 (GA4) to collect aggregated, anonymized usage data. GA4 uses cookies to track page views, session duration, and traffic sources. This data does not personally identify you. Google may process this data on servers located in the United States. You can learn more at Google's Privacy Policy and opt out using the Google Analytics Opt-Out Browser Add-On.

5.3 Managing Cookies

When you first visit our website, you will see a cookie consent banner. You can accept or reject non-essential cookies at that time. You may also change your preferences at any time by clicking "Cookie Settings" in the footer of any page. Additionally, your browser settings allow you to block or delete cookies. Note that disabling strictly necessary cookies may prevent parts of the Service from functioning properly.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy:

  • Active account data — retained for the duration of your account plus 30 days after account closure to allow data export
  • Billing records — retained for 7 years after the last transaction as required by tax and accounting regulations
  • Support communications — retained for 3 years after the last interaction for quality assurance and dispute resolution
  • Analytics data — aggregated and anonymized analytics data may be retained indefinitely; identifiable analytics data is deleted after 14 months
  • Marketing consent records — retained for as long as needed to demonstrate compliance

After the applicable retention period, personal data is securely deleted or anonymized. You may request earlier deletion at any time (see Section 7).

7. How We Protect Your Data

We implement technical and organizational security measures designed to protect your personal data:

  • Encryption in transit — all data transmitted between your device and our servers is encrypted using TLS 1.2 or higher
  • Encryption at rest — Customer Data stored in our databases is encrypted using AES-256 encryption
  • Access controls — role-based access controls ensure only authorized personnel can access personal data, and only to the extent required for their role
  • Infrastructure security — our hosting provider maintains SOC 2 Type II certification, physical security controls, and regular third-party audits
  • Incident response — we maintain a security incident response plan and will notify affected users and applicable regulators within 72 hours of discovering a data breach, as required by applicable law

Despite these measures, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security, but we are committed to protecting your data using industry-standard practices.

8. Your Privacy Rights

8.1 Rights for All Users

Regardless of where you are located, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Correction — request that we correct inaccurate or incomplete data
  • Deletion — request that we delete your personal data, subject to legal retention requirements
  • Data portability — request your data in a structured, commonly used, machine-readable format
  • Opt out of marketing — unsubscribe from marketing emails at any time via the link in each email
  • Withdraw consent — where processing is based on consent, withdraw it at any time without affecting prior processing

8.2 Additional Rights for EEA/UK Residents (GDPR)

If you are in the European Economic Area or United Kingdom, you also have the right to:

  • Restrict processing — ask us to limit how we use your data in certain circumstances
  • Object to processing — object to processing based on legitimate interests, including profiling
  • Lodge a complaint — file a complaint with your local data protection authority (supervisory authority)

8.3 Additional Rights for California Residents (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) grants you the following additional rights:

  • Right to know — you may request the categories and specific pieces of personal information we have collected, the sources, the business purposes, and the categories of third parties with whom we share it
  • Right to delete — you may request deletion of your personal information, subject to certain exceptions
  • Right to correct — you may request correction of inaccurate personal information
  • Right to opt out of sale or sharing — MaidProfit does not sell or share your personal information as defined by the CCPA/CPRA. No opt-out is required because we do not engage in these practices.
  • Right to non-discrimination — we will not discriminate against you for exercising any of your CCPA rights
  • Right to limit use of sensitive personal information — we only use sensitive personal information as necessary to provide the Service

To exercise any of these rights, email us at privacy@maidprofit.com. We will verify your identity and respond within 45 days (or 90 days with notice of extension, as permitted by law). You may also designate an authorized agent to make a request on your behalf.

8.4 Do Not Track

Some browsers send a "Do Not Track" signal. There is no industry standard for how websites should respond to this signal. At this time, we do not alter our data collection practices in response to Do Not Track signals.

9. International Data Transfers

MaidProfit is based in the United States. If you access the Service from outside the United States, your personal data will be transferred to and processed in the United States, where data protection laws may differ from those in your country.

For transfers of personal data from the EEA, UK, or Switzerland to the United States, we rely on:

  • Standard Contractual Clauses (SCCs) — approved by the European Commission, incorporated into our data processing agreements with sub-processors
  • Data Processing Agreements (DPAs) — we maintain DPAs with all sub-processors that include appropriate safeguards for cross-border transfers

By using the Service, you consent to the transfer, storage, and processing of your personal data in the United States and other countries where our service providers operate.

10. Children's Privacy

MaidProfit is not directed to individuals under 16 years of age. We do not knowingly collect personal data from children under 16. If we learn that we have inadvertently collected personal data from a child under 16, we will promptly delete that data. If you believe a child under 16 has provided us with personal data, please contact us immediately at privacy@maidprofit.com.

Our website may contain links to third-party websites or services that are not operated by MaidProfit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party websites. We encourage you to review the privacy policy of every website you visit.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:

  • We will update the "Last Updated" date at the top of this page
  • For material changes, we will provide at least 30 days' notice via email to the address associated with your account or through a prominent notice on our website
  • Your continued use of the Service after the effective date of the updated policy constitutes your acceptance of the changes

If you do not agree with the revised policy, you must stop using the Service and may request deletion of your account and personal data.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, contact us:

We will acknowledge your request within 5 business days and provide a substantive response within 30 days (or the timeframe required by applicable law).

If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.