Privacy Policy

1. Introduction

GroundOps ("GroundOps", "we", "us", or "our") is a platform operated by GroundOps Kenya Ltd. that provides managed errand execution, property care, relocation, and diaspora support services by connecting clients with vetted service agents. This Privacy Policy applies to our website, our iOS and Android mobile applications, and any related services (together, the "Services").

By using the Services, you agree to the collection and use of information in accordance with this Policy. If you do not agree, please do not use the Services.

2. Information We Collect

a. Information you provide to us

• Account information — name, email address, phone number, password, and profile photo.
• Agent verification (KYC/KYB) — for service agents, identity and business documents we require to verify and onboard you.
• Task and booking details — descriptions, locations/addresses, schedules, documents, and other information you submit to request or perform a task.
• Payment information — billing details you provide to complete a transaction (processed by our payment partners; see Section 6).
• Communications — messages, chat content, ratings, reviews, support requests, and contact-form submissions.

b. Information we collect automatically

• Device information and identifiers — including a device identifier we use for account security and device-approval checks.
• Usage and log data — actions taken in the app, timestamps, diagnostics, and error reports.
• Location data — with your permission, approximate or precise location to tag proof of work and track task progress (see Section 7).

c. Media and proof of work

When an agent completes a task, the app may capture photos or videos as proof of work. These media files may include time and location metadata and are shared with the relevant client and retained for service, quality, and dispute-resolution purposes.

d. Push notification tokens

We collect a push notification token (via Google Firebase Cloud Messaging) so we can deliver notifications to your device. You can disable notifications at any time in your device settings.

3. How We Use Your Information

• Create and manage your account and authenticate you, including one-time passcodes (OTP) and device-approval checks.
• Operate the Services — match clients with agents, manage bookings, tasks, and contracts.
• Process payments, payouts, refunds, and maintain transaction records.
• Verify the identity and eligibility of agents (KYC/KYB).
• Capture and share proof of work and enable ratings and reviews.
• Send service communications, security alerts, and (where permitted) push notifications.
• Provide customer support and respond to your requests.
• Detect, prevent, and address fraud, abuse, and safety or security issues.
• Improve, personalise, and develop the Services.
• Comply with legal obligations and enforce our Terms of Service.

4. Legal Bases for Processing

Where the Kenya Data Protection Act, 2019, the EU/UK GDPR, or similar laws apply, we process personal data on the following bases: performance of a contract with you; your consent (which you may withdraw at any time); our legitimate interests in operating, securing, and improving the Services; and compliance with legal obligations.

5. How We Share Information

We do not sell your personal data. We share information only as described below:

• Between clients and agents — to the extent necessary to arrange and perform a task (for example, an agent receives the task location and relevant details).
• Service providers — cloud hosting, email delivery, and Google Firebase (for push notifications and related infrastructure) that process data on our behalf.
• Payment processors — Stripe and M-Pesa (Safaricom) to process payments and payouts.
• Professional advisors — auditors, lawyers, and insurers where necessary.
• Legal and safety — to comply with the law, respond to lawful requests, or protect the rights, property, or safety of GroundOps, our users, or the public.
• Business transfers — in connection with a merger, acquisition, or sale of assets, subject to this Policy.

6. Payments

Payments are processed by our third-party payment partners, Stripe and M-Pesa (Safaricom). When you make a payment, your payment details are collected and processed by these providers under their own privacy policies. We do not store full payment card numbers on our systems.

7. Location Data

With your permission, we use device location to tag proof of work and to reflect task progress. Location is collected while you use the app for these features. You can control or revoke location access at any time through your device settings; some task features may not function correctly without it.

8. Push Notifications

We may send push notifications about your account, tasks, messages, and payments. You can opt out at any time by disabling notifications in your device or app settings.

9. Cookies & Similar Technologies

Our website uses strictly necessary cookies to keep you signed in and to maintain the security and integrity of your session. We may also use limited analytics to understand and improve how the Services are used.

10. Data Retention

We retain personal data for as long as your account is active and for as long as necessary to provide the Services, comply with our legal obligations, resolve disputes, prevent fraud, and enforce our agreements. When data is no longer required, we delete or anonymise it.

11. Data Security

We use technical and organisational measures designed to protect your information, including encryption of data in transit, secure storage of authentication tokens, one-time passcodes, device-approval controls, and access restrictions. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

12. Your Rights

Subject to applicable law, you may have the right to:

• Access the personal data we hold about you and request a copy.
• Request correction of inaccurate or incomplete data.
• Request deletion of your data ("right to be forgotten").
• Object to or request restriction of certain processing.
• Request portability of data you provided to us.
• Withdraw consent at any time, without affecting prior lawful processing.

To exercise these rights, contact us at support@homebridgegroup.africa. You also have the right to lodge a complaint with the Office of the Data Protection Commissioner (Kenya) or your local data-protection authority.

13. Children's Privacy

The Services are not directed to individuals under 18, and we do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can remove it.

14. International Transfers

Some of our service providers (such as Google and Stripe) may process data on servers located outside Kenya. Where we transfer personal data internationally, we take steps to ensure it receives an adequate level of protection consistent with applicable law.

15. Third-Party Services

The Services rely on or link to third-party services (including Google Firebase, Stripe, and M-Pesa). Their handling of your information is governed by their own privacy policies, and we encourage you to review them.

16. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date above and, where appropriate, notify you through the Services. Your continued use of the Services after changes take effect constitutes acceptance of the revised Policy.

17. Contact Us

If you have questions about this Policy or your personal data, contact us:

• GroundOps Kenya Ltd.
• Headquarters: Nairobi, Kenya
• Email: support@homebridgegroup.africa
• Phone: +254 787 427 476