Privacy Policy
Effective date: 17 June 2026
This policy explains how leestly("we", "us") collects, uses and protects your personal data. We are the data controller. Contact: hello@leestly.com.
1. Who we are
leestly is a marketplace that connects people who need home cleaning ("Clients") with independent cleaning professionals ("Cleaners"). We operate two mobile apps — leestly (Client) and leestly Pro (Cleaner) — a web admin panel, and an AI connector that lets you book a cleaning from inside a third-party AI assistant (e.g. Claude, ChatGPT). Payments are processed by Stripe; we never store your full card number.
2. What data we collect
Account & identity
- Name (and, for Cleaners, first/last name and date of birth for identity verification).
- Email and/or phone number. Sign in with Apple may hide your real email via Apple's private relay.
- Password — stored only as a salted bcrypt hash, never in plain text.
- Social sign-in identifiers if you use Google or Apple (a provider user ID, not your password).
- Profile photo (optional).
Addresses & location
- Cleaning addresses you save (label, full address, city, postcode, building/flat, floor, entrance, intercom, access instructions, area, room list) and their geo-coordinates.
- For Cleaners only: a residential address for identity & payout verification (Stripe Connect / KYC).
- The Client app geocodes a typed address into coordinates; the Cleaner app uses device location during an active job for navigation and arrival confirmation.
Orders, payments & communications
- Order details: cleaning type, schedule, price, status, notes, intake answers, reviews and ratings.
- Payments: your Stripe customer ID and, for saved cards, only the last 4 digits, brand and expiry. Full card data is held by Stripe, not by us.
- In-app chat messages between Clients and Cleaners, including photos and voice messages.
Device, technical & AI connector
- Push notification tokens; app language and timezone; notification preferences.
- Security telemetry: last login time, IP address, device / user-agent.
- Crash and diagnostics data and product analytics, where enabled.
- When you connect leestly to a third-party AI assistant, we issue a separate, scoped token and record actions taken through it. The AI provider receives only minimal tool data (e.g. address list, order status) — never your password, full card number, or internal IDs.
3. How we use your data (UK GDPR legal basis)
| Purpose | Legal basis |
|---|---|
| Provide the service (match, schedule, navigate, chat, complete orders) | Performance of a contract |
| Process payments via Stripe (authorize-then-capture) | Performance of a contract |
| Identity & fraud prevention, account security | Legitimate interests / legal obligation |
| Notifications (order updates, chat, reminders) | Contract / consent (per-category opt-out) |
| Marketing & promotions | Consent (opt-in / opt-out) |
| Improve & secure the product (crash reports, analytics) | Legitimate interests |
| AI connector | Consent (you initiate and authorize the connection) |
4. Who we share data with
We do not sell your personal data. We share it only with: Stripe(payments & payouts); cloud and infrastructure providers (hosting, database, media, email, push, maps / geocoding, error monitoring); the other party to an order (the name, address and details needed to complete the job); third-party AI providers (only if you use the connector, minimal tool data); and authorities where legally required. A full sub-processor list is available at hello@leestly.com.
5. International transfers
Some processors may store data outside the UK / EEA, protected by adequacy decisions or Standard Contractual Clauses / the UK IDTA.
6. How long we keep data
We keep your data while your account is active and as needed to provide the service. Order and financial records are retained as required for accounting, tax and dispute resolution. On account deletion, personal data is anonymized (see section 8).
7. Your rights (UK GDPR)
You may access, rectify, erase, restrict, port, and object to processing, and withdraw consent at any time — in the app or via hello@leestly.com. You can also complain to the UK Information Commissioner's Office (ICO) at ico.org.uk.
8. Deleting your account
You can delete your account in the app (Settings → Delete account, confirmed by a code sent to your email / phone). On deletion we anonymize your personal data in place, cancel active subscriptions, remove notifications, and sever links to reviews / financial records (GDPR Article 17). Some records are retained in anonymized form where required by law.
9. Children
leestly is not directed at children under 18 and we do not knowingly collect their data.
10. Security
Passwords are bcrypt-hashed; card data is held by Stripe (PCI-DSS); we use TLS in transit, account lockout on repeated failed logins, scoped tokens for the AI connector, and least-privilege internal access.
11. Changes to this policy
We will post changes here and update the effective date; material changes will be notified in-app or by email.
12. Contact
leestly · hello@leestly.com · see also our Terms of Service.