Privacy Policy

1. INTRODUCTION AND SCOPE

ECOSHINE PRO (hereinafter referred to as "Company," "we," "us," or "our"), a California-based limited liability company, is committed to protecting the privacy and security of personal information collected from our clients, website visitors, and service users (collectively, "you" or "your"). This Privacy Policy (the "Policy") describes our practices concerning the collection, use, disclosure, retention, and protection of personal information in connection with our professional cleaning services, website, mobile applications, and all related services (collectively, the "Services").

This Policy applies to all personal information collected by the Company through any means, including but not limited to: our website (ecoshine.pro), mobile applications, telephone communications, email correspondence, in-person interactions, booking systems, payment processing systems, and any other channels through which you interact with the Company.

By accessing or using our Services, submitting personal information to us, or engaging our cleaning services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy and consent to our collection, use, and disclosure of your personal information as described herein. If you do not agree with this Policy, you must not use our Services or provide us with any personal information.

This Policy should be read in conjunction with our Terms and Conditions, which govern your use of our Services and are incorporated herein by reference. We reserve the right to modify this Policy at any time, and such modifications shall become effective immediately upon posting to our website or notification to you via email or other reasonable means.

2. DEFINITIONS

For the purposes of this Privacy Policy, the following terms shall have the meanings ascribed below:

• "Personal Information" means any information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular individual or household.
• "Sensitive Personal Information" means personal information that reveals an individual's social security number, driver's license number, passport number, financial account information, precise geolocation, racial or ethnic origin, religious or philosophical beliefs, or health information.
• "Processing" means any operation or set of operations performed on personal information, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, restriction, erasure, or destruction.
• "Third Party" means any individual or entity other than you or the Company, including service providers, business partners, affiliates, and other entities with whom we may share personal information.
• "Data Controller" means the entity that determines the purposes and means of processing personal information.
• "Data Processor" means any entity that processes personal information on behalf of the Data Controller.

3. INFORMATION WE COLLECT

3.1 Information You Provide Directly

We collect personal information that you voluntarily provide to us when you:

• Create an account or register for Services: Name, email address, telephone number, mailing address, username, password, and account preferences
• Book or request Services: Service location address, property details (square footage, number of rooms, property type), access instructions, security codes, parking information, special requirements, and scheduling preferences
• Make payments: Credit card information, debit card information, bank account details, billing address, and payment history
• Communicate with us: Email correspondence, telephone conversations, chat messages, feedback, reviews, testimonials, and any other information you choose to provide
• Participate in surveys or promotions: Survey responses, contest entries, promotional preferences, and marketing communications preferences
• Apply for employment: Resume, cover letter, employment history, education, references, and other application materials

3.2 Information Collected Automatically

When you access or use our Services, we automatically collect certain information, including:

• Device Information: IP address, browser type and version, operating system, device identifiers, mobile network information, and device settings
• Usage Information: Pages viewed, links clicked, features used, time spent on pages, referring/exit pages, search queries, and interaction with our Services
• Location Information: Approximate geographic location derived from IP address, and precise geolocation if you grant permission through your device settings
• Cookies and Similar Technologies: Information collected through cookies, web beacons, pixel tags, local storage, and other tracking technologies (see Section 9 for details)

3.3 Information from Third-Party Sources

We may receive personal information about you from third-party sources, including:

• Service Providers: Payment processors, background check providers, marketing platforms, analytics providers, and other service providers who assist us in operating our business
• Social Media Platforms: If you connect your social media account to our Services, we may receive information from your social media profile
• Public Sources: Publicly available information from government records, public databases, and other public sources
• Business Partners: Referral partners, affiliate partners, and other business partners who may provide information about you in connection with joint offerings or services

3.4 Sensitive Personal Information

We do not intentionally collect Sensitive Personal Information except where necessary to provide Services or where required by law. If you provide Sensitive Personal Information to us, you consent to our processing of such information in accordance with this Policy and applicable law.

4. HOW WE USE YOUR INFORMATION

We process your personal information for the following purposes, based on the legal grounds described below:

4.1 To Provide and Manage Services

• Schedule, coordinate, and perform cleaning services at your property
• Process payments and maintain billing records
• Communicate with you regarding appointments, service updates, and account information
• Manage your account and preferences
• Provide customer support and respond to inquiries
• Verify your identity and authenticate access to your account

Legal Basis: Performance of contract, legitimate business interests

4.2 To Improve and Develop Services

• Analyze usage patterns and trends to improve our Services
• Conduct research and development for new services and features
• Test and optimize our website, mobile applications, and systems
• Monitor and analyze the effectiveness of our Services
• Develop and improve our business operations and processes

Legal Basis: Legitimate business interests, consent

4.3 For Marketing and Communications

• Send promotional materials, special offers, and marketing communications
• Conduct surveys and request feedback
• Personalize content and recommendations
• Administer contests, sweepstakes, and promotions
• Send newsletters and updates about our Services

Legal Basis: Consent, legitimate business interests (where permitted by law)

4.4 For Legal and Security Purposes

• Comply with legal obligations, court orders, and regulatory requirements
• Enforce our Terms and Conditions and other policies
• Protect against fraud, unauthorized access, and security threats
• Investigate and prevent illegal activities or violations of our policies
• Defend against legal claims and protect our rights and property
• Conduct background checks on employees and contractors

Legal Basis: Legal obligation, legitimate business interests, protection of vital interests

4.5 For Business Operations

• Manage and optimize our business operations
• Conduct internal audits and quality assurance
• Maintain records and documentation
• Facilitate business transactions, including mergers, acquisitions, or asset sales
• Manage relationships with service providers and business partners

Legal Basis: Legitimate business interests, performance of contract

5. HOW WE SHARE YOUR INFORMATION

We may disclose your personal information to third parties in the following circumstances:

5.1 Service Providers and Business Partners

We engage third-party service providers to perform functions on our behalf, including:

• Payment processing and financial services
• Background check and verification services
• Cloud hosting and data storage
• Email and communication services
• Marketing and advertising platforms
• Analytics and data analysis services
• Customer support and CRM systems
• Scheduling and booking management systems

These service providers are contractually obligated to use your personal information only for the purposes of providing services to us and are required to maintain the confidentiality and security of your information in accordance with this Policy and applicable law.

5.2 Legal Requirements and Protection of Rights

We may disclose your personal information when required by law or when we believe in good faith that disclosure is necessary to:

• Comply with legal obligations, court orders, subpoenas, or regulatory requirements
• Enforce our Terms and Conditions or other agreements
• Protect the rights, property, or safety of the Company, our employees, clients, or the public
• Investigate fraud, security breaches, or illegal activities
• Respond to claims or legal proceedings

5.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or substantially all of our assets, your personal information may be transferred to the acquiring entity or successor organization. We will provide notice before your personal information is transferred and becomes subject to a different privacy policy.

5.4 With Your Consent

We may share your personal information with third parties when you have provided explicit consent for such sharing. You may withdraw your consent at any time by contacting us using the information provided in Section 14.

5.5 Aggregated and De-Identified Information

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for research, marketing, analytics, or other purposes. Such information is not considered personal information under this Policy.

6. DATA SECURITY AND PROTECTION

6.1 Security Measures

We implement comprehensive administrative, technical, and physical security measures designed to protect your personal information from unauthorized access, disclosure, alteration, destruction, or loss. These measures include:

• Encryption: We use industry-standard encryption protocols (SSL/TLS) to protect data in transit and encryption at rest for sensitive information
• Access Controls: We restrict access to personal information to authorized personnel who require such access to perform their job functions
• Authentication: We implement multi-factor authentication and strong password requirements for account access
• Network Security: We employ firewalls, intrusion detection systems, and regular security monitoring
• Physical Security: We maintain physical security controls for facilities where personal information is stored
• Vendor Management: We conduct due diligence on third-party service providers and require them to implement appropriate security measures
• Employee Training: We provide regular security awareness training to our employees and contractors
• Incident Response: We maintain an incident response plan to address potential security breaches

6.2 Payment Security

All payment transactions are processed through secure, PCI-DSS compliant payment gateways. We do not store complete credit card numbers or sensitive payment information on our servers. Payment information is encrypted and transmitted directly to our payment processors.

6.3 Limitations of Security

While we implement reasonable security measures to protect your personal information, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security of your information. You acknowledge and accept that you provide personal information at your own risk.

6.4 Data Breach Notification

In the event of a data breach that compromises your personal information, we will notify you and relevant regulatory authorities as required by applicable law. Notification will be provided without unreasonable delay and will include information about the nature of the breach, the types of information affected, and steps you can take to protect yourself.

7. DATA RETENTION

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, enforce our agreements, and maintain business records. The specific retention period depends on the nature of the information and the purposes for which it is processed.

7.1 Retention Periods

• Account Information: Retained for the duration of your account plus seven (7) years after account closure for legal and tax purposes
• Service Records: Retained for seven (7) years after service completion for business records and legal compliance
• Payment Information: Retained for seven (7) years after transaction for accounting, tax, and legal purposes
• Marketing Communications: Retained until you opt-out or withdraw consent, plus a reasonable period to process your request
• Website Usage Data: Retained for up to twenty-four (24) months for analytics and improvement purposes
• Legal and Compliance Records: Retained for the period required by applicable law or regulation

7.2 Deletion and Anonymization

Upon expiration of the applicable retention period, we will securely delete or anonymize your personal information in accordance with our data retention and deletion policies. You may request deletion of your personal information at any time, subject to certain exceptions. We may retain certain information where required by law, necessary to complete transactions, detect fraud, or for other legitimate business purposes.

8. YOUR PRIVACY RIGHTS

Depending on your jurisdiction, you may have certain rights regarding your personal information. These rights may include:

8.1 Right to Access

You have the right to request access to the personal information we hold about you. Upon verification of your identity, we will provide you with a copy of your personal information in a structured, commonly used, and machine-readable format.

8.2 Right to Correction

You have the right to request correction of inaccurate or incomplete personal information. We will make reasonable efforts to correct your information promptly upon verification of the requested changes.

8.3 Right to Deletion

You have the right to request deletion of your personal information, subject to certain exceptions. We may retain certain information where required by law, necessary to complete transactions, detect fraud, or for other legitimate business purposes.

8.4 Right to Opt-Out

You have the right to opt-out of:

• Marketing communications (via unsubscribe link or contacting us)
• Sale or sharing of personal information for targeted advertising
• Automated decision-making and profiling
• Certain data collection through cookies and tracking technologies

8.5 Right to Data Portability

You have the right to receive your personal information in a portable format and to transmit it to another service provider, where technically feasible.

8.6 Right to Restrict Processing

You have the right to request restriction of processing of your personal information in certain circumstances, such as when you contest the accuracy of the information or object to processing.

8.7 Right to Object

You have the right to object to processing of your personal information based on legitimate interests or for direct marketing purposes.

8.8 Right to Withdraw Consent

Where processing is based on your consent, you have the right to withdraw consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before withdrawal.

8.9 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe we have violated your privacy rights or applicable data protection laws.

8.10 Exercising Your Rights

To exercise any of these rights, please contact us using the information provided in Section 14. We will respond to your request within the timeframe required by applicable law (typically within thirty (30) days). We may require verification of your identity before processing your request to protect your personal information from unauthorized access.

We will not discriminate against you for exercising any of your privacy rights. However, certain rights may be subject to limitations or exceptions under applicable law.

9. COOKIES AND TRACKING TECHNOLOGIES

9.1 Types of Cookies We Use

We use cookies, web beacons, pixel tags, local storage, and similar tracking technologies to collect information about your use of our Services. These technologies help us:

• Essential Cookies: Necessary for the operation of our Services, including authentication, security, and basic functionality
• Performance Cookies: Collect information about how you use our Services to help us improve performance and user experience
• Functional Cookies: Remember your preferences and settings to provide enhanced functionality
• Analytics Cookies: Help us understand user behavior, traffic patterns, and effectiveness of our Services
• Advertising Cookies: Used to deliver relevant advertisements and measure advertising effectiveness

9.2 Third-Party Cookies

We may allow third-party service providers to place cookies on your device for analytics, advertising, and other purposes. These third parties have their own privacy policies governing their use of your information.

9.3 Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to refuse cookies or delete existing cookies. However, disabling cookies may affect the functionality of our Services. You can also opt-out of interest-based advertising through industry opt-out mechanisms.

9.4 Do Not Track Signals

Some browsers transmit "Do Not Track" signals. We currently do not respond to Do Not Track signals because there is no industry standard for how such signals should be interpreted. We will continue to monitor developments in this area.

10. CHILDREN'S PRIVACY

Our Services are not directed to children under the age of eighteen (18), and we do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18 without parental consent, we will take steps to delete such information promptly.

If you are a parent or guardian and believe that your child has provided personal information to us, please contact us immediately using the information provided in Section 14, and we will take appropriate action to remove such information from our systems.

11. INTERNATIONAL DATA TRANSFERS

Your personal information may be transferred to, stored, and processed in countries other than your country of residence, including the United States. These countries may have data protection laws that differ from the laws of your country.

When we transfer personal information internationally, we implement appropriate safeguards to protect your information, including:

• Standard contractual clauses approved by relevant regulatory authorities
• Data processing agreements with third-party service providers
• Compliance with applicable data protection frameworks and regulations
• Technical and organizational security measures

By using our Services, you consent to the transfer of your personal information to countries outside your country of residence, including countries that may not provide the same level of data protection as your country.

12. CALIFORNIA PRIVACY RIGHTS

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including:

12.1 Right to Know

You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you, the categories of sources, the business purposes for collection, and the categories of third parties with whom we share personal information.

12.2 Right to Delete

You have the right to request deletion of personal information we have collected from you, subject to certain exceptions.

12.3 Right to Opt-Out of Sale/Sharing

You have the right to opt-out of the sale or sharing of your personal information for cross-context behavioral advertising. We do not sell personal information in the traditional sense, but we may share information with advertising partners. You can opt-out by contacting us or using available opt-out mechanisms.

12.4 Right to Correct

You have the right to request correction of inaccurate personal information.

12.5 Right to Limit Use of Sensitive Personal Information

You have the right to limit our use and disclosure of sensitive personal information to purposes necessary to provide Services.

12.6 Non-Discrimination

We will not discriminate against you for exercising your CCPA/CPRA rights, including by denying Services, charging different prices, or providing a different level of service quality.

12.7 Authorized Agents

You may designate an authorized agent to make requests on your behalf. We may require verification of the agent's authority and your identity before processing such requests.

12.8 Shine the Light Law

California's "Shine the Light" law permits California residents to request information about our disclosure of personal information to third parties for their direct marketing purposes. We do not share personal information with third parties for their direct marketing purposes without your consent.

13. CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify, amend, or update this Privacy Policy at any time to reflect changes in our practices, Services, legal requirements, or for other operational, legal, or regulatory reasons. Any changes will become effective immediately upon posting the revised Policy on our website or upon notification to you via email or other reasonable means.

We will indicate the "Last Updated" date at the top of this Policy. We encourage you to review this Policy periodically to stay informed about our privacy practices. Your continued use of our Services after any changes to this Policy constitutes your acceptance of the revised Policy.

If we make material changes that significantly affect your rights or how we process your personal information, we will provide prominent notice through our website, email notification, or other appropriate means, and may seek your consent where required by law.

14. CONTACT INFORMATION

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, or if you wish to exercise any of your privacy rights, please contact us at:

We will respond to your inquiry or request within the timeframe required by applicable law. For California residents, we will respond within forty-five (45) days, with a possible extension of up to ninety (90) days if necessary.

If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority or the California Attorney General's Office.