Privacy Policy

Last updated: 27 February 2026

1. Who We Are

Launderly is a multi-tenant software-as-a-service (SaaS) platform that provides point-of-sale, order management, and customer relationship tools to dry cleaning and laundry businesses ("Operators"). Each Operator is the data controller for their customer data. Launderly acts as a data processor on their behalf.

2. Data We Collect

  • Account data: Name, email, phone, hashed password, role
  • Customer data: Name, phone, email, addresses, order history, loyalty points
  • Order data: Items, pricing, status, payment records
  • AI inspection data: Garment photos, analysis results, staff notes
  • Usage data: Login timestamps, feature usage (aggregated), error logs
  • Payment data: Processed via Stripe — we do not store card numbers

3. Legal Basis for Processing

  • Contract performance: Processing orders, managing subscriptions
  • Legitimate interest: Analytics, fraud prevention, platform security
  • Consent: Marketing communications, cookie tracking
  • Legal obligation: Tax records, regulatory compliance

4. How We Use Your Data

  • Process and fulfil laundry/dry cleaning orders
  • Send order status notifications (SMS, email)
  • Manage customer memberships and loyalty programmes
  • AI garment inspection for damage detection and care recommendations
  • Generate business analytics for Operators
  • Process payments via Stripe

5. Data Sharing

We share data only with:

  • Stripe: Payment processing
  • Anthropic (Claude AI): Garment photo analysis (processed, not stored)
  • SendGrid/Twilio: Email and SMS notifications
  • AWS/Cloudflare: Cloud hosting and file storage
  • Sentry: Error monitoring (anonymised)

We never sell personal data to third parties.

6. Data Retention

  • Active account data: retained while account is active
  • Order records: 7 years (tax compliance)
  • AI inspection photos: 90 days after order completion
  • Audit logs: 2 years
  • Erased customer data: anonymised, retained for order integrity

7. Your Rights (GDPR)

If you are in the UK/EU, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Export your data in a machine-readable format
  • Restriction: Limit how we process your data
  • Objection: Object to processing based on legitimate interest

Operators can exercise these rights via the dashboard (Settings → Customers → GDPR Actions). End customers should contact their laundry provider directly.

8. Cookies

We use essential cookies for authentication and session management. Optional analytics cookies are only set with your consent. You can manage your preferences via the cookie banner or browser settings.

9. Security

We implement industry-standard security measures including: encrypted data in transit (TLS 1.3), encrypted data at rest, bcrypt password hashing, JWT token rotation, rate limiting, input sanitisation, and multi-tenant data isolation.

10. Contact

For privacy inquiries or to exercise your rights, contact:

Data Protection Officer
privacy@cleansuitepro.com

© 2026 Launderly. All rights reserved.