Privacy Policy

Effective Date: December 27, 2025Last Updated: February 22, 2026

PoolOps ("the App," "we," "us," or "our") is operated by AppEcho Labs, LLC, a Virginia limited liability company located at Alexandria, VA 22304.

This Privacy Policy explains how we collect, use, disclose, and protect your information when you use the PoolOps mobile application and web platform (collectively, the "Service").

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Email address (for authentication and communication)
  • Business name and owner name (for service reports and branding)
  • Support phone number (optional, for customer-facing reports)
  • Business logo (optional, stored in Firebase Storage)
  • Starting address (your home base for route optimization)

    • 1.2 Customer Data You Provide

    When you add customers to PoolOps, you enter:

  • Customer name and phone number
  • Service address (converted to GPS coordinates via Mapbox)
  • Gate codes and access notes (stored encrypted at rest)
  • Pool specifications (size in gallons, pet presence)

    • 1.3 Service Log Data

    When you log a service visit, we collect:

  • Water chemistry readings: pH, alkalinity, chlorine, cyanuric acid (CYA), temperature, calcium hardness, and total dissolved solids (TDS)
  • Chemicals added: Type and quantity
  • LSI (Langelier Saturation Index) score: Calculated locally on your device
  • Service photos: Uploaded to Firebase Storage
  • Service notes: Any text you enter
  • GPS timestamps: Precise location when you start and complete a stop (for proof-of-service)

    • 1.4 Invoicing and Billing Data

    When you use the invoicing feature (Stripe Connect), we collect and process:

  • Customer email addresses used for sending invoices
  • Invoice amounts, descriptions, and payment status
  • Stripe Connect account details (account ID, onboarding status, charges/payouts capability)
  • Stripe Customer IDs created on your connected account for your customers
  • Recurring billing configuration (monthly rate, billing day, next billing date)

    • When homeowners interact with invoices or the billing portal:

  • Email address (for authentication via magic link)
  • Billing preferences (e.g., cancellation of recurring billing)
  • Session data (hashed tokens, IP address, user agent for security)

    • 1.5 Device and Usage Data

    We automatically collect:

  • Device information: Model, operating system version, app version
  • Crash reports: Stack traces and device state when the app crashes (via Firebase Crashlytics)
  • Push notification tokens: For sending route reminders (via Firebase Cloud Messaging)

    • 1.6 Location Data

    We collect precise location data (GPS coordinates) for:

  • Route optimization: Calculating the most efficient order for your service stops
  • Driving distance calculations: Estimating travel time between stops using Mapbox
  • Proof of service: Recording arrival and completion timestamps with GPS accuracy

    • You can disable location access in your device settings, but route optimization features will be unavailable.

    2. How We Use Your Information

    We use the information we collect to:

    PurposeData Used
    Provide and maintain the ServiceAccount info, customer data, service logs
    Optimize your daily routeCustomer addresses, your starting location, GPS
    Calculate water chemistry recommendationsWater readings, pool size
    Generate service reports for your customersService logs, photos, business branding
    Process subscription paymentsEmail, Stripe Customer ID
    Create and send customer invoicesCustomer email, invoice amounts, Stripe Connect account
    Send billing notificationsCustomer email, billing configuration, business name
    Provide homeowner portal accessCustomer email, magic link sessions
    Send push notificationsFCM tokens, notification preferences
    Diagnose and fix crashesCrash logs, device info
    Improve the ServiceAggregated, anonymized usage patterns

    3. Third-Party Services

    We share data with the following third-party service providers:

    3.1 Firebase (Google Cloud)

  • Services used: Authentication, Cloud Firestore (database), Cloud Storage (photos), Crashlytics (crash reporting), Cloud Messaging (push notifications)
  • Data shared: All account data, customer data, service logs, photos, crash reports
  • Privacy Policy: https://firebase.google.com/support/privacy

    • 3.2 Mapbox

  • Services used: Geocoding (address-to-coordinates), Maps display, Route optimization
  • Data shared: Customer addresses, your GPS location
  • Privacy Policy: https://www.mapbox.com/legal/privacy

    • 3.3 Stripe

  • Services used: Platform subscription billing, Stripe Connect for customer invoicing
  • Data shared: Email address, billing information, customer names and emails (for invoicing), invoice amounts and payment status
  • Note: Pool pros use Stripe Connect Express accounts to invoice their customers. PoolOps facilitates this but does not process payments directly.
  • Privacy Policy: https://stripe.com/privacy

    • 3.4 RevenueCat

  • Services used: Mobile subscription management (App Store and Google Play)
  • Data shared: Anonymous user ID, subscription status, product identifiers
  • Privacy Policy: https://www.revenuecat.com/privacy

    • 3.5 Google Sign-In

  • Services used: Optional authentication method
  • Data shared: Email address, display name, profile photo URL (if you choose Google Sign-In)
  • Privacy Policy: https://policies.google.com/privacy

    • 3.6 Brevo (Transactional Email)

  • Services used: Transactional emails (welcome, subscription confirmations, service reports, billing notifications, magic links, team invitations)
  • Data shared: Email address, business name, customer names and emails (for billing notifications and service reports)
  • Privacy Policy: https://www.brevo.com/legal/privacypolicy/

    • 3.7 PostHog

  • Services used: Product analytics, feature flags
  • Data shared: Anonymous usage events, feature flag evaluations, user ID (hashed)
  • Note: We use PostHog to understand how the Service is used and to gradually roll out new features. No customer data or service logs are shared with PostHog.
  • Privacy Policy: https://posthog.com/privacy

    • 4. SMS and Communications

    PoolOps uses the native SMS application on your device to send pre-filled service report messages to your customers.

    Important clarifications:

  • We do not read, access, or store your text messages
  • We do not send SMS messages on your behalf from our servers
  • The App simply opens your device's default messaging app with a pre-filled message; you press "Send"
  • Message content and delivery is handled entirely by your mobile carrier

    • 5. Data Storage and Security

  • Storage location: All data is stored in Firebase (Google Cloud) data centers in the United States
  • Encryption: Data is encrypted in transit (TLS 1.2+) and at rest (AES-256)
  • Access controls: Your data is isolated by your user ID; only you can access your customers and logs
  • Photo storage: Service photos are stored in Firebase Storage with secure, time-limited download URLs
  • Gate codes: Stored alongside customer data; we recommend using generic codes where possible

    • 6. Data Retention

    We retain your data for as long as your account is active. After account deletion:

  • Account data: Deleted within 30 days
  • Service logs and photos: Deleted within 30 days
  • Crash reports: Retained for up to 90 days for debugging purposes
  • Aggregated analytics: May be retained indefinitely in anonymized form

    • 7. Your Rights and Choices

    7.1 Access and Portability

    You can view all your data within the App (customers, service history, settings).

    7.2 Correction

    You can edit customer information and service logs directly in the App.

    7.3 Deletion

    You have the right to request deletion of your account and all associated data.

    To request account deletion:

  • Email support@poolops.app with the subject line "Account Deletion Request"
  • Include the email address associated with your PoolOps account
  • We will process your request within 30 days and confirm deletion via email

    • 7.4 Opt-Out of Push Notifications

    You can disable push notifications in the App settings or your device settings at any time.

    7.5 Location Permissions

    You can revoke location permissions in your device settings. This will disable route optimization features.

    8. Children's Privacy

    PoolOps is a business tool intended for pool service professionals aged 18 and older. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us at support@poolops.app.

    9. Changes to This Privacy Policy

    We may update this Privacy Policy from time to time. We will notify you of significant changes by:

  • Posting the new Privacy Policy in the App
  • Updating the "Last Updated" date at the top of this page
  • Sending an email notification for material changes

    • 10. Contact Us

    If you have questions about this Privacy Policy or our data practices, please contact us:

    AppEcho Labs, LLC

    Alexandria, VA 22304

    Email: support@poolops.app

    11. Additional Disclosures

    For California Residents (CCPA)

    You have the right to know what personal information we collect, request deletion, and opt-out of the sale of your data. We do not sell your personal information.

    For European Users (GDPR)

    If you are in the European Economic Area, you have additional rights including data portability and the right to lodge a complaint with a supervisory authority. Our legal basis for processing is contract performance (providing the Service) and legitimate interests (improving the Service).