Legal
Privacy Policy
Last updated: April 22, 2026
This Privacy Notice for R1 Development LLC ("we," "us," or "our") describes how and why we might access, collect, store, use, and/or share ("process") your personal information when you use our services ("Services"), including when you:
- Visit our website at belay.cc or any website of ours that links to this Privacy Notice
- Use Belay as an operator to run your service business, or as a client of an operator to book and pay for services
- Engage with us in other related ways
About Belay. Belay is a booking and payments platform used by small local service businesses ("operators") to accept appointments and payments from their customers ("clients"). When you use Belay, you may be interacting with us as an operator or as a client of an operator. The information we collect depends on your role.
Questions or concerns? Reading this Privacy Notice will help you understand your privacy rights and choices. We are responsible for making decisions about how your personal information is processed. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at info@belay.cc.
Summary of Key Points
This summary provides key points from our Privacy Notice. See the table of contents below for the full document.
What personal information do we process? Depending on your role, we may process your name, phone number, email address, service or business address, geocoded location data derived from those addresses, booking and payment history, and (for operators) a hashed password and business profile.
Do we process any sensitive personal information? No.
Do we collect any information from third parties? No. We use Google Maps APIs to suggest addresses as you type and convert selected or provided addresses into map coordinates, but this is a lookup on information you give us, not data received from Google about you.
How do we process your information? To provide our booking and payment Services, communicate with you about your bookings and payments, for security and fraud prevention, and to comply with law. We only send transactional messages — we do not send marketing.
In what situations and with which parties do we share personal information? We share information with service providers who help us operate Belay (Stripe, Twilio, Google, Cloudflare, Neon) and — to deliver a booking — with the operator you are booking with (or, for operators, with your clients).
How do we keep your information safe? We have reasonable organizational and technical security measures in place. No system is 100% secure.
What are your rights? Depending on your location, you may have rights to access, correct, delete, or obtain a copy of your personal information.
How do you exercise your rights? Email us at info@belay.cc.
Table of Contents
- What information do we collect?
- How do we process your information?
- When and with whom do we share your personal information?
- How long do we keep your information?
- How do we keep your information safe?
- Do we collect information from minors?
- What are your privacy rights?
- SMS Messaging Program
- Controls for Do-Not-Track features
- Do United States residents have specific privacy rights?
- Do we make updates to this notice?
- How can you contact us about this notice?
- How can you review, update, or delete the data we collect from you?
1. What Information Do We Collect?
Personal information you disclose to us
In Short: We collect personal information that you provide to us.
We collect personal information that you voluntarily provide when you register on the Services, book a service, make a payment, communicate with an operator, or contact us.
Personal Information Provided by You. The information we collect depends on your role (operator or client) and your interactions with the Services. It may include:
- Names
- Phone numbers
- Email addresses (required for operators; optional for clients)
- Service addresses (provided by clients at booking)
- Home-base addresses (provided by operators at onboarding)
- Geocoded location data — latitude and longitude derived from the addresses above, used for mapping and distance calculations
- Passwords — operators only, stored only as a one-way hash; we never see the plaintext
- Business information — operators only: business name, service radius, hours of operation, service descriptions, pricing
- Booking and job details — services selected, property details, appointment times, notes
Clients authenticate by SMS one-time passcode or signed magic link and do not set a password.
Sensitive Information. We do not process sensitive information.
Payment Data. Payment is processed by Stripe. Your payment card details are sent directly from your browser to Stripe and never pass through or are stored on our servers. We receive only non-sensitive portions of the payment record (e.g., card brand, last four digits, transaction status) for display in your payment history. Stripe's privacy notice is at https://stripe.com/privacy.
Google APIs. Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We use Google Maps APIs for address geocoding, time-zone derivation, and address autocomplete during booking.
All personal information that you provide must be true, complete, and accurate, and you must notify us of any changes.
2. How Do We Process Your Information?
In Short: We process your information to provide our Services, communicate with you about your bookings, for security and fraud prevention, and to comply with law. We do not send marketing messages.
We process your personal information to:
- Create and manage accounts. Register operators, authenticate clients by SMS passcode or magic link, keep accounts in working order.
- Deliver the Services. Accept bookings, schedule appointments, calculate quotes, process payments, send transactional notifications, and give operators the tools to manage their schedule and clients.
- Process payments. Pass payment information to Stripe, which processes charges on behalf of the operator. Operators are the merchant of record for their own transactions.
- Send transactional messages. Booking confirmations, appointment reminders, OTP codes, account-access links, payment receipts, and payment failure notifications. See Section 8 for details of our SMS Messaging Program.
- Provide support and respond to inquiries.
- Maintain security and prevent fraud. Monitor access patterns, enforce rate limits, detect suspicious activity.
- Comply with legal obligations.
We do not send marketing or promotional messages. All messages from Belay are transactional.
3. When and With Whom Do We Share Your Personal Information?
In Short: We share information with service providers who help us operate the Services, and with operators and clients as necessary to deliver bookings.
With service providers
We share information with the following service providers under written contract, solely to operate the Services:
- Stripe, Inc. — payment processing. stripe.com/privacy
- Twilio, Inc. — SMS delivery and phone verification. twilio.com/legal/privacy
- Google LLC — geocoding, time zone, and address autocomplete (Google Maps APIs). policies.google.com/privacy
- Cloudflare, Inc. — application hosting, DNS, network security, and transactional email delivery. cloudflare.com/privacypolicy
- Neon Inc. — managed PostgreSQL database hosting. neon.tech/privacy-policy
Between operators and clients
When a client books a service, the client's name, phone number, service address, and booking details are shared with the operator in order to perform the service. Likewise, the operator's business name and contact information are shared with the client. This sharing is a core function of the Services.
Business transfers
We may share or transfer your information in connection with a merger, sale of company assets, financing, or acquisition of all or a portion of our business.
Legal compliance
We may disclose information where required by law, legal process, or to protect our rights, property, or safety or those of our users.
4. How Long Do We Keep Your Information?
In Short: We keep your information for as long as necessary to fulfill the purposes outlined in this Privacy Notice unless otherwise required by law.
We will only keep your personal information for as long as necessary for the purposes set out in this Privacy Notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). Transaction and billing records may be retained for up to seven years to meet tax and accounting obligations.
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it, or, if this is not possible (for example, because it has been stored in backup archives), we will securely store it and isolate it from further processing until deletion is possible.
5. How Do We Keep Your Information Safe?
In Short: We aim to protect your personal information through a system of organizational and technical security measures.
We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure. We cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information. Transmission of personal information to and from our Services is at your own risk. You should only access the Services within a secure environment.
6. Do We Collect Information from Minors?
In Short: We do not knowingly collect data from or market to children under 18 years of age.
We do not knowingly collect, solicit data from, or market to children under 18 years of age, nor do we knowingly sell such personal information. By using the Services, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to the minor's use of the Services. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to delete the data. If you become aware of any data we may have collected from children under 18, please contact us at info@belay.cc.
7. What Are Your Privacy Rights?
In Short: You may review, change, or terminate your account at any time, depending on your country, province, or state of residence.
Withdrawing your consent: If we are relying on your consent to process your personal information, you have the right to withdraw your consent at any time by contacting us using the details in Section 12 below. Withdrawal will not affect the lawfulness of processing before withdrawal, nor will it affect processing conducted in reliance on other lawful grounds.
Opting out of SMS messages: You can opt out of SMS messages at any time by replying STOP to any message we send. Reply HELP for assistance, or email info@belay.cc. Because almost all SMS messages from Belay are transactional (booking confirmations, appointment reminders, OTPs, payment receipts), opting out may prevent you from receiving important information about your bookings. See Section 8 for full details of the SMS Messaging Program.
No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. Information sharing to subcontractors in support of the SMS program (for example, Twilio as our SMS service provider) is permitted solely to operate the messaging program. All other use case categories exclude text-messaging originator opt-in data and consent; this information will not be shared with third parties.
Account Information
If you would like to review, change, or terminate your account:
- Operators: Log in to your dashboard and update your business profile, or email info@belay.cc to request deletion.
- Clients: Use the account-access link you receive by SMS to manage your bookings, or email info@belay.cc to request deletion.
Upon your request to terminate your account, we will deactivate or delete your account and information from our active databases. We may retain some information to prevent fraud, troubleshoot problems, assist investigations, enforce our legal terms, and comply with applicable legal requirements.
If you have questions or comments about your privacy rights, email us at info@belay.cc.
8. SMS Messaging Program
What messages we send
When you provide your phone number to Belay — by booking a service, registering as an operator, or managing your account — you may receive SMS messages from us. These messages include:
- Booking confirmations — sent after a successful booking
- Appointment reminders — sent the day before a scheduled service
- One-time passcodes (OTPs) — sent when you log in or perform a sensitive account action
- Account-access links — magic links sent by SMS for managing your bookings
- Payment confirmations and receipts — sent after a successful charge
- Payment failure notifications — sent when a payment fails, with a link to update payment information
- Operator alerts — for operators: new bookings, new leads, failed-payment notices, subscription cancellations
Message frequency
Message frequency varies based on your activity. Messages are sent primarily around scheduled services and account events.
Opt-out and help
You may opt out at any time by replying STOP to any message. Reply HELP for assistance, or email info@belay.cc. After opting out, you will receive a single confirmation message and no further SMS from us unless you opt back in.
Carrier disclaimer
Message and data rates may apply.
Consent is not a condition of purchase
Consent to receive SMS messages is not required to purchase any product or service. You can still use Belay through alternative channels if you choose not to opt in to SMS.
How mobile information is shared
No mobile information (including phone numbers and consent records) will be shared with third parties or affiliates for marketing or promotional purposes. Mobile information may be shared with subcontractors that support the delivery of the SMS program (for example, Twilio as our SMS service provider) solely to operate the messaging program.
9. Controls for Do-Not-Track Features
Most web browsers and some mobile operating systems and applications include a Do-Not-Track ("DNT") feature you can activate to signal your preference not to have data about your online activities monitored. At this stage, no uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this Privacy Notice.
California law requires us to let you know how we respond to web browser DNT signals. Because there currently is no industry or legal standard for recognizing or honoring DNT signals, we do not respond to them at this time.
10. Do United States Residents Have Specific Privacy Rights?
In Short: If you are a resident of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, or Virginia, you may have the right to request access to and receive details about the personal information we maintain about you and how we have processed it, correct inaccuracies, get a copy of, or delete your personal information. You may also have the right to withdraw your consent to our processing of your personal information.
Categories of Personal Information We Collect
| Category | Examples | Collected |
|---|---|---|
| A. Identifiers | Real name, alias, postal address, telephone number, unique personal identifier, online identifier, IP address, email address, account name | YES |
| B. Personal information as defined in the California Customer Records statute | Name, contact information, financial information | YES |
| C. Protected classification characteristics under state or federal law | Gender, age, date of birth, race, ethnicity, national origin, marital status | NO |
| D. Commercial information | Transaction information, purchase history, financial details, payment information | YES |
| E. Biometric information | Fingerprints, voiceprints | NO |
| F. Internet or other similar network activity | Browsing history, search history, online behavior, interest data | NO |
| G. Geolocation data | Device location (GPS) | NO |
| H. Audio, electronic, sensory, or similar information | Images, audio, video, or call recordings | NO |
| I. Professional or employment-related information | Business contact details used to provide the Services at a business level (applies to operators) | YES |
| J. Education information | Student records and directory information | NO |
| K. Inferences drawn from collected personal information | Profiles or summaries inferring preferences or characteristics | NO |
| L. Sensitive personal information | — | NO |
We may also collect other personal information outside these categories through:
- Customer support interactions
- Participation in customer surveys
- Delivery of the Services and response to your inquiries
Sources of Personal Information
See Section 1 above.
How We Use and Share Personal Information
See Sections 2 and 3 above.
Will your information be shared with anyone else?
We may disclose your personal information with our service providers under written contract. See Section 3 for the list. We may also use your personal information for our own business purposes, such as internal research for technological development — this is not "selling" under applicable state privacy laws.
We have not disclosed, sold, or shared any personal information to third parties for a business or commercial purpose in the preceding twelve (12) months, and we will not sell or share personal information in the future.
Your Rights
You have rights under certain US state data protection laws. These rights are not absolute and may be limited by law. They include:
- Right to know whether we are processing your personal data
- Right to access your personal data
- Right to correct inaccuracies in your personal data
- Right to request deletion of your personal data
- Right to obtain a copy of personal data previously shared with us
- Right to non-discrimination for exercising your rights
- Right to opt out of processing for targeted advertising, sale of personal data, or profiling that produces legal or similarly significant effects
Depending on your state, you may also have:
- Right to access categories of personal data being processed (Minnesota)
- Right to a list of the categories of third parties to which we have disclosed personal data (California, Delaware, Maryland)
- Right to a list of specific third parties to which we have disclosed personal data (Minnesota, Oregon)
- Right to a list of third parties to which we have sold personal data (Connecticut)
- Right to review and, where applicable, correct profiling (Connecticut, Minnesota)
- Right to limit use and disclosure of sensitive personal data (California)
- Right to opt out of the collection of sensitive data and of personal data collected via voice or facial recognition (Florida)
How to Exercise Your Rights
To exercise these rights, email us at info@belay.cc or use the contact details at the bottom of this document.
Under certain US state data protection laws, you can designate an authorized agent to make a request on your behalf. We may deny a request from an authorized agent that does not submit proof that they have been validly authorized to act on your behalf.
Request Verification. We will need to verify your identity before fulfilling your request. We will only use information you provide in your request to verify your identity or authority.
Appeals. If we decline to take action on your request, you may appeal our decision by emailing info@belay.cc. We will inform you in writing of any action taken, including a written explanation. If your appeal is denied, you may submit a complaint to your state attorney general.
11. Do We Make Updates to This Notice?
In Short: Yes, we will update this notice as necessary to stay compliant with relevant laws.
We may update this Privacy Notice from time to time. The updated version will be indicated by an updated "Last updated" date at the top of this Privacy Notice. If we make material changes, we may notify you either by prominently posting a notice or by directly contacting you.
12. How Can You Contact Us About This Notice?
If you have questions or comments about this notice, you may email us at info@belay.cc or contact us by post at:
R1 Development LLC
10715 Longmont Dr
Houston, TX 77042
United States
13. How Can You Review, Update, or Delete the Data We Collect from You?
Based on the applicable laws of your country or state of residence, you may have the right to request access to the personal information we collect, details about how we have processed it, correct inaccuracies, or delete your personal information. You may also have the right to withdraw your consent to our processing. These rights may be limited by applicable law. To submit a request, email us at info@belay.cc.