Privacy Policy

Last updated: April 2026

HumbleSuite is built for small businesses, and we take your privacy seriously. This policy explains what data we collect, why we collect it, and what we do with it. No legal gymnastics — just plain English.

What data we collect

  • Account information — your name, email address, and password (hashed, never stored in plain text).
  • Business data — anything you enter into HumbleSuite: clients, invoices, jobs, inventory, employees, documents, and more. This is your data.
  • Usage analytics — basic metrics like which modules you use and how often, so we can improve the platform. We do not track you across other websites.

How we use your data

Your data is used for one purpose: to provide and improve HumbleSuite for you.

  • To run your business modules (CRM, invoicing, scheduling, etc.)
  • To send you important account notifications (billing, security)
  • To improve performance and fix bugs

We never sell your data. Not to advertisers, not to data brokers, not to anyone. Period.

Data storage and security

Your data is stored in a Supabase PostgreSQL database hosted in the United States. All data is encrypted in transit (TLS) and at rest. Passwords are hashed with bcrypt and are never stored or transmitted in plain text. We use industry-standard security practices and regularly review our infrastructure.

Third-party services

We use a small number of trusted third-party services:

  • Stripe — for payment processing. We never see or store your full credit card number.
  • Resend — for transactional email (account verification, billing receipts, etc.).

Each of these services has their own privacy policy and we only share the minimum data required for them to function.

Your rights

You have full control over your data. At any time, you can:

  • Access — view all data we have about you and your business.
  • Export — download all your data as a JSON file.
  • Delete — permanently remove your account and all associated data.

These rights are available to all users regardless of location. We comply with GDPR and other applicable data protection regulations. To exercise these rights, visit your account settings or contact us directly.

Cookies

We use minimal, functional cookies only. These are required for authentication (keeping you logged in) and basic session management. We do not use advertising cookies, tracking cookies, or any third-party cookie-based analytics. There is nothing to opt out of because we are not tracking you.

Contact

If you have any questions about this privacy policy or your data, reach out to us at steven@poiseopsconsulting.com.

See also: Terms of Service