Legal
Privacy Policy
Last updated: July 2026
This Privacy Policy is a working draft, published for transparency. It has not yet been reviewed by legal counsel and is not a final or binding legal document. We'd rather be open about our intentions than leave you guessing — a reviewed version will replace this before it governs any binding relationship.
HeartTech Soulutions LLC ("HeartTech Soulutions," "we," "us") is the data controller responsible for the personal information described here. The Heart of Peace Foundation is our mission partner and promoter only — it is not the controller of, and does not process, the data you provide to us. This policy explains what we collect, why, and the choices you have.
Who controls your data
HeartTech Soulutions LLC, a limited liability company established in North Carolina, USA, is the data controller. Questions about how your data is handled should come to us directly, at the address below — not to The Heart of Peace Foundation, which promotes our work but does not operate the platform or hold your data.
Information we collect
We collect only what we need to give you access and run the service: your email address when you sign in with a magic link; your name, email address, and profile photo from Google if you choose to sign in with Google; and the organization and business information you and your team enter once you begin using the UsOS platform. We do not buy personal data from third parties or build advertising profiles.
How we use your information
We use your information to verify who you are, to provide and maintain the platform, to respond when you contact us, and to send service messages such as sign-in links. We do not sell your personal information, and we do not use it for third-party advertising.
Providers who process data for us
We rely on a small number of trusted providers. Supabase provides our authentication and database infrastructure and stores account and platform data on our behalf. Google processes sign-in when you choose it as your login method. Our email delivery provider carries magic-link and service messages. Each acts on our instructions under its own security commitments, and we share only what each needs to do its job.
Cookies and similar technologies
We use cookies that are necessary to keep you signed in and to keep the platform secure. We do not use advertising or cross-site tracking cookies. You can clear or block cookies in your browser, though doing so may prevent you from staying signed in.
Your rights and choices
You can ask us to show you the personal data we hold about you, correct it if it's wrong, delete it, or provide it in a portable form. You can also object to certain uses. To exercise any of these, contact us at the address below; we'll respond within a reasonable time and won't charge you for a routine request.
Data retention and security
We keep your information for as long as your account is active and as long as we need it to meet legal and operational obligations, then delete or anonymize it. We protect it with encryption in transit, access controls, and the security measures our infrastructure providers maintain — while recognizing that no system is ever perfectly secure.
Children's privacy
The platform is built for organizations and the adults who run them. It is not directed at children, and we do not knowingly collect personal information from anyone under 13. If you believe a child has given us their information, contact us and we'll remove it.
Changes to this policy
As the platform grows, this policy will change. When it does, we'll update the date at the top, and for material changes we'll make a reasonable effort to let you know before they take effect.
Contact us
For any privacy question or request, write to us at hello@hearttech.solutions. We read what comes in.