This Privacy Policy explains how Heros Consulting Inc. ("CleanOS," "we," "us") collects, uses, shares, and protects information when you use the CleanOS platform at herosconsulting.ai and related services (the "Service"). CleanOS is a software tool for commercial cleaning businesses to create bids and proposals, find and contact prospects, manage a deal pipeline, and send invoices.
When you or your clients pay, card and bank details are collected and processed directly by Stripe. CleanOS never sees or stores full card or bank account numbers — we store only a Stripe account identifier and status flags.
We do not sell your personal information.
We share data only with vendors who help us run the Service, under contracts limiting their use:
| Provider | Purpose |
|---|---|
| Stripe | Payment processing, invoicing, payouts |
| Supabase | Database & authentication hosting |
| Netlify | Application & serverless hosting |
| Google (Gmail API) | Sending email from your connected account |
| OpenAI | AI text generation (bids, proposals, emails) |
| AudienceLab | Business prospect data for Lead Finder |
| Resend | Transactional system email |
Some features send the text you provide (e.g. an RFP, brand details, or draft email) to our AI provider to generate output. We instruct providers not to train on your data via API. Do not paste information you are not authorized to share into AI features.
Marketing email you send through CleanOS must comply with the U.S. CAN-SPAM Act: a truthful subject and sender, your physical mailing address, and a working unsubscribe. CleanOS auto-injects your address and an unsubscribe link, and suppresses anyone who opts out. You remain the sender and are responsible for your content and lists.
We keep your information while your account is active and as needed to provide the Service, then delete or anonymize it within a reasonable period, except where longer retention is required by law (e.g. tax/payment records). Email event logs are pruned on a rolling 90-day window.
We protect data with encryption in transit, row-level database isolation so one customer cannot access another's data, scoped access controls, rate limiting, and continuous error monitoring. No method is perfectly secure, but we work to protect your information and notify you of incidents as required by law.
You are the controller of the prospect and client data you bring into CleanOS. You represent that you have the right to provide it and to contact those people, and that your use complies with applicable laws (including CAN-SPAM, TCPA, and Do-Not-Call rules for calls/texts).
The Service is for businesses and is not directed to anyone under 18. We do not knowingly collect data from children.
CleanOS is operated in the United States and currently intended for U.S. users. If you access it from elsewhere, you consent to processing in the U.S.
We may update this policy; we will post the new date above and, for material changes, provide notice in-app or by email.
Heros Consulting Inc.
[Mailing address]
oscar@herosconsulting.com