Cleanwich
Software Overview Pricing
Get Started
Legal

Privacy Policy

This Privacy Policy explains how OELB Ltd trading as Cleanwich collects, uses, stores, shares and protects personal data when you use our website, public directory, booking tools, provider dashboard, staff tools, customer portal, mobile applications and related services.

Effective date
02 April 2026
Controller
OELB Ltd
Contact
privacy [at] cleanwich.co

1. Who we are

OELB Ltd, trading as Cleanwich, is the operator of the Cleanwich platform. In this Privacy Policy, “Cleanwich”, “we”, “us” and “our” mean OELB Ltd.

We operate a platform that may include a public website, provider directory pages, booking and payment flows, user dashboards, contact forms, review features, internal operational tools and mobile applications.

2. Scope of this Privacy Policy

This Privacy Policy applies to personal data collected through:

  • our main website and public pages;
  • provider profile pages and public booking pages;
  • embedded booking widgets and hosted booking pages;
  • provider, staff and customer dashboards;
  • our iOS and Android mobile applications;
  • email, SMS, support and contact interactions;
  • any related services, integrations, forms or communications we provide.

This Privacy Policy does not override any separate agreement we may have with providers, suppliers, contractors or enterprise customers where more specific data processing terms apply.

3. Personal data we may collect

Depending on how you use the service, we may collect the following categories of personal data:

  • Identity data: first name, last name, display name, initials, job title, company name and account name.
  • Contact data: email address, phone number, billing address, service address, city, postcode and website.
  • Account data: login credentials, password hashes, authentication events, account settings, role type, subscription status and account preferences.
  • Booking and service data: service selections, property details, extra services, preferred dates and times, booking notes, cancellation reasons, rescheduling data, invoice and review details.
  • Provider business data: company profile information, business contact details, working hours, service areas, branding assets, media uploads and service pricing settings.
  • Staff and contractor data: work availability, assignment records, payroll information, time records, holiday information and job-related notes.
  • Communications data: support requests, contact form messages, email content, in-app messages, SMS content, notification preferences and communication logs.
  • Transaction and payment-related data: payment status, payment method, Stripe-related identifiers, deposits, fees, invoice amounts and billing history.
  • Technical and device data: IP address, browser type, operating system, app version, device identifiers, crash information, push token, session data and log events.
  • Usage data: page views, feature interactions, click paths, referring URLs, timestamps and service performance data.
  • Marketing and consent data: opt-in status, communication preferences and consent records where required by law.

4. How we collect personal data

  • directly from you when you register, book a service, contact us or update your profile;
  • from providers, staff members or customers using the platform;
  • automatically through your browser, device, app usage and server logs;
  • from payment processors and infrastructure partners involved in delivering the service;
  • from cookies, pixels, SDKs and similar tracking technologies where used lawfully;
  • from third-party integrations you or your organisation connect to the service.

5. How we use personal data

We use personal data only where necessary for legitimate business and service purposes, including:

  • to create and manage accounts;
  • to provide directory listings and provider profile pages;
  • to process bookings, scheduling, rescheduling and cancellations;
  • to process subscription and booking-related payments;
  • to provide provider, customer and staff dashboards and app functionality;
  • to send confirmations, reminders, receipts, service updates and operational notices;
  • to provide support and respond to enquiries;
  • to prevent fraud, abuse, spam, unauthorised access and misuse of the platform;
  • to maintain, secure, debug and improve our website, apps and infrastructure;
  • to comply with applicable laws, tax rules, accounting obligations and law enforcement requests;
  • to establish, exercise or defend legal claims.

6. Lawful bases for processing

Where the UK GDPR or EU GDPR applies, we process personal data on one or more of the following bases:

  • Contract: where processing is necessary to provide the service you requested.
  • Legitimate interests: where necessary to operate, secure and improve our services.
  • Legal obligation: where we must comply with applicable law or regulation.
  • Consent: where consent is required, including certain marketing or device permissions.

Where we rely on consent, you may withdraw it at any time, but this will not affect processing already carried out before withdrawal.

7. Payments and financial data

Payments may be processed by third-party payment providers such as Stripe. We do not store full card numbers or full card security codes on our own servers unless explicitly stated otherwise in a separate, service-specific notice.

We may store limited payment-related metadata such as payment status, transaction references, customer IDs, subscription IDs, invoice data, deposit status, refund status and related billing records as needed to run the service, manage subscriptions, handle disputes and maintain accounting records.

8. Email, SMS, push notifications and support communications

We may send operational messages necessary to provide the service, including booking confirmations, reminders, account security notices, password reset emails, provider notifications, customer updates, support responses and service announcements.

Where enabled, we may also send SMS messages or app push notifications for service-related events, reminders, booking updates and account activity. Push notifications may require device-level permission, which can usually be managed in your device settings.

Marketing messages will only be sent where lawful and, where required, with appropriate consent or another valid legal basis. You can opt out of marketing communications at any time.

9. When we share personal data

We do not sell personal data. We may share personal data only where necessary with:

  • payment processors and financial infrastructure providers;
  • cloud hosting, storage, database, email, SMS, analytics and security vendors;
  • providers, staff members, customers or contractors where required to perform a booking or account function;
  • professional advisers such as lawyers, accountants, auditors and insurers;
  • courts, regulators, public authorities or law enforcement where required by law or legal process;
  • a buyer, investor or successor in connection with a merger, acquisition, reorganisation or asset sale.

Any sharing is limited to what is reasonably necessary for the relevant purpose.

10. International data transfers

Your personal data may be processed in countries outside your own jurisdiction. Where required by applicable data protection law, we implement appropriate safeguards for international transfers, including contractual protections and other recognised transfer mechanisms.

11. Data retention

We retain personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide services, maintain records, resolve disputes, enforce agreements, comply with legal obligations and defend legal claims.

  • account data is generally retained while your account remains active and for a reasonable period after closure;
  • booking, billing, invoice and transactional records may be retained longer to satisfy tax, accounting or legal obligations;
  • support and communication records may be retained for audit, quality and dispute-handling purposes;
  • technical logs are retained for a limited period unless longer retention is necessary for security or compliance reasons.

12. Data security

We use reasonable technical, organisational and administrative measures designed to protect personal data against unauthorised access, misuse, loss, alteration, disclosure or destruction.

However, no platform, app, website, email transmission or storage system can be guaranteed to be completely secure. You are responsible for keeping your password and account credentials confidential.

13. Cookies and similar technologies

We may use cookies, local storage, pixels, SDKs and similar technologies to keep you signed in, remember preferences, secure the service, understand usage patterns, measure performance and improve functionality.

Where required by law, non-essential cookies or trackers will be used only after appropriate notice and consent. You can also manage certain cookie settings through your browser or device.

14. Do Not Track signals

Some browsers may send “Do Not Track” signals. At this time, there is no universally accepted standard for responding to such signals, and our services may not respond to them.

15. Your privacy rights

Subject to applicable law, you may have the right to:

  • request access to personal data we hold about you;
  • request correction of inaccurate or incomplete personal data;
  • request deletion of personal data in certain circumstances;
  • request restriction of processing in certain circumstances;
  • object to certain processing based on legitimate interests;
  • request portability of certain personal data;
  • withdraw consent where processing is based on consent;
  • complain to a relevant supervisory authority.

To exercise any of these rights, contact us at privacy [at] cleanwich.co . We may need to verify your identity before completing your request.

16. Additional rights for US residents

If you are a resident of certain US states, including California, you may have additional rights under applicable privacy laws, including the right to:

  • request disclosure of categories and specific pieces of personal data collected;
  • request deletion of personal data;
  • request correction of inaccurate data;
  • opt out of the sale or sharing of personal data, where applicable;
  • limit the use of sensitive personal information, where applicable.

We do not sell personal data for monetary consideration.

17. Children

Our services are not directed to children and are not intended for use by anyone who is under the age at which they can lawfully consent under applicable local law. If you believe that a child has provided personal data to us unlawfully, please contact us so we can take appropriate action.

16. Third-party websites, integrations and services

Our website, apps or dashboards may contain links to third-party websites or use third-party services, plug-ins, SDKs or integrations. We are not responsible for the privacy, security or content practices of those third parties. Their own terms and privacy notices will apply to your use of those services.

19. Provider, customer and staff role-specific information

Because Cleanwich supports provider businesses, customer bookings and staff access, personal data may be visible or accessible within role-based areas of the platform where needed for the service to work.

  • providers may access customer and booking data necessary to manage bookings and service delivery;
  • staff users may access only the booking, scheduling and job information necessary for their assigned work;
  • customers may access their own booking, account, payment and profile information;
  • internal administrators may access data where necessary for security, support, billing, fraud prevention and compliance.

In multi-tenant service areas, provider data may be logically separated by account structure and internal access controls. Access is limited according to operational need and role permissions.

20. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, technology, legal obligations or business operations. When we do, we will update the “Effective date” shown above. Material changes may also be communicated through the website, the app, email or other appropriate means.

21. Contact us

If you have questions, concerns or requests relating to this Privacy Policy or our privacy practices, you can contact us at:

This Privacy Policy is intended to comply with applicable data protection laws including the UK GDPR, EU GDPR, US state privacy laws, Canadian PIPEDA, and the Australian Privacy Act where applicable.

OELB Ltd
Trading name: Cleanwich
Email: privacy [at] cleanwich.co
Applicable law reference: England and Wales

If you are located in the United Kingdom or European Economic Area and believe that your personal data has been handled unlawfully, you may also have the right to lodge a complaint with the relevant data protection authority.

We use cookies to ensure that we give you the best experience on our website. Read cookies policies.

Cookie Preferences

Required for website functionality. Always enabled.

Help us improve your experience.