Privacy Policy

    Effective Date: February 26, 2026

    Domin8 Commerce LLC (d/b/a LienFlash)
    407 Lincoln Rd, Ste 6H #490, Miami Beach, FL 33139
    Email: privacy@lienflash.app

    1. Information We Collect

    • Account Information: Name, email address, company name, trade type, and password (hashed via Supabase Auth bcrypt).
    • Project Information: Property addresses, owner names, project descriptions, contract amounts, and uploaded documents used for notice generation.
    • Payment Information: Payment details are processed and stored securely by Stripe. LienFlash does not store credit card numbers, CVVs, or full card details on our servers.
    • Usage Data: Pages visited, features used, timestamps, device type, browser information, and IP addresses for analytics and security purposes.
    • Communication Data: Emails sent and received through our transactional email system, including support correspondence.

    2. How We Use Your Information

    • Generate and mail preliminary lien notices on your behalf
    • Process payments and manage your subscription
    • Send transactional emails (welcome, draft-ready notifications, payment receipts)
    • Improve our service, fix bugs, and develop new features
    • Comply with legal obligations and enforce our Terms of Service
    • Verify addresses through CASS-certified verification
    • Analyze documents using AI to extract project information

    3. How We Share Your Information

    We share your information only with the following service providers, strictly for the purpose of delivering our service:

    • PostGrid: Our mailing partner that handles printing and USPS Certified Mail delivery of your notices. PostGrid receives recipient addresses and notice content.
    • Stripe: Our payment processor that securely handles all billing transactions. Stripe receives your payment method and billing details.
    • Resend: Our email delivery provider that sends transactional emails. Resend receives your email address and email content.
    • OpenAI: Used for AI-powered document analysis. Uploaded documents may be processed by OpenAI's API for data extraction.
    • Lob: Used for CASS-certified address verification. Addresses are sent to Lob for validation.

    We do NOT sell, rent, or trade your personal information to any third parties.

    4. Data Security

    • All data transmitted between your browser and our servers is encrypted using HTTPS/TLS
    • Database access is protected with Supabase Row Level Security (RLS)
    • User passwords are hashed using bcrypt via Supabase Auth
    • API keys and secrets are stored securely in environment variables, never in source code
    • We employ commercially reasonable security measures to protect your data

    While we strive to protect your information, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.

    5. Data Retention

    • Account Data: Retained for as long as your account is active. Upon account deletion, personal data is removed within 30 days.
    • Notice Records: Retained for a minimum of 7 years for legal compliance and audit purposes, as these records may serve as evidence of notice delivery in legal proceedings.
    • Payment Records: Retained as required by applicable tax and financial regulations.

    To request data deletion, contact us at privacy@lienflash.app.

    6. Your Rights (CCPA)

    If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

    • Right to Know: You may request details about the personal information we collect, use, and share.
    • Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
    • Right to Opt-Out of Sales: We do not sell personal information. There is nothing to opt out of.
    • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

    To exercise these rights, contact us at privacy@lienflash.app.

    7. Cookies

    LienFlash uses only essential cookies required for authentication and session management. We do not use third-party tracking cookies or advertising cookies. Our analytics are provided by Plausible Analytics, which is privacy-focused and does not use cookies.

    8. Children's Privacy

    LienFlash is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly.

    9. Changes to This Policy

    We may update this Privacy Policy from time to time. Updated policies will be posted on this page with a revised effective date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

    10. Contact

    For questions or concerns about this Privacy Policy, please contact us at:

    privacy@lienflash.app