Privacy Policy
Last updated: June 17, 2026
1. Introduction
Welcome to Lifto ("Lifto," "we," "us," or "our"). Lifto is a software platform built for home service businesses and service professionals. Our platform may include website generation, website hosting, AI-generated content, SEO tools, social media publishing, analytics, lead management, CRM features, communication tools, and third-party integrations.
This Privacy Policy explains how we collect, use, disclose, store, and protect personal information when you visit liftohq.com, use our web application, connect third-party accounts, or interact with any Lifto services (collectively, the "Services").
By using the Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with this Privacy Policy, please do not use the Services.
2. Information We Collect
2.1 Information You Provide
We may collect information you provide directly to us, including:
- Name, email address, phone number, and account login information
- Business name, business address, service area, industry, services, hours, and business details
- Website content, logos, photos, videos, testimonials, reviews, project galleries, and other uploaded materials
- Customer, lead, or contact information you enter into the Services
- Messages, support requests, feedback, and communications you send to Lifto
- Billing information and subscription details
- Information submitted through onboarding forms, surveys, or account settings
2.2 Payment Information
Payments are processed by third-party payment processors such as Stripe. Lifto does not store full credit card numbers or full payment card details on our servers. Stripe may provide us with limited billing information, payment status, subscription status, invoices, transaction confirmations, and related payment metadata.
2.3 Information Collected Automatically
When you use the Services, we may automatically collect:
- IP address, browser type, device type, operating system, and screen size
- Pages viewed, features used, links clicked, time spent, and referral URLs
- Login attempts, session activity, error logs, and diagnostic data
- Approximate location derived from IP address
- Cookies, pixels, and similar tracking technologies
- Analytics and usage data related to your account and website activity
2.4 Information from Third Parties
We may receive information from third-party services you connect to Lifto, including:
- Google: Google Business Profile information, Google OAuth data, location data, business listing data, reviews, photos, and analytics-related data
- Meta / Facebook / Instagram: Page information, account identifiers, publishing permissions, profile information, and access tokens
- Stripe: Subscription status, invoices, payment confirmations, and billing metadata
- Analytics Providers: Website usage, traffic, conversion, and interaction data
- Advertising or Referral Sources: Campaign, referral, and conversion tracking data
3. How We Use Your Information
We use information we collect to:
- Create, operate, and manage your Lifto account
- Generate, host, edit, and publish websites
- Provide AI-generated website copy, social media captions, SEO suggestions, and business content
- Enable Google Business Profile, social media, analytics, payment, and communication integrations
- Publish or schedule content to connected third-party platforms when authorized by you
- Process payments, subscriptions, invoices, upgrades, downgrades, and cancellations
- Provide customer support and respond to inquiries
- Send transactional emails, account notices, security alerts, billing notices, and service updates
- Analyze usage trends and improve the Services
- Detect, investigate, and prevent fraud, abuse, security incidents, and unauthorized activity
- Comply with legal obligations and enforce our Terms of Service
4. AI Processing
Lifto may use artificial intelligence providers to generate content, analyze business information, recommend website copy, create social media posts, summarize business details, and improve the Services.
Information processed by AI tools may include business name, industry, services, service areas, website content, customer-provided descriptions, photos, reviews, and other information you choose to submit or connect.
You should not submit sensitive personal information, confidential information, or regulated data into AI content tools unless necessary for your use of the Services.
5. Google API Data
If you connect Google services, Lifto may access data permitted by the Google OAuth scopes you approve. This may include Google Business Profile information, business listings, reviews, photos, location details, and related account information.
Lifto's use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
We do not sell Google user data. We use Google data only to provide and improve the Services you request, such as displaying, managing, analyzing, or publishing business profile-related information.
6. Social Media Data & Publishing
Lifto may allow you to connect third-party social media accounts, including Facebook, Instagram, Google Business Profile, LinkedIn, and other platforms.
When you connect an account, we may collect and store:
- Account identifiers and profile information
- Page, business, or location identifiers
- Access tokens or authorization credentials
- Post drafts, scheduled posts, captions, images, and publishing history
- Engagement, analytics, or platform response data where available
Lifto will only publish content to connected accounts when you initiate, approve, or schedule that action. You may disconnect social accounts at any time from your settings.
7. Customer and Lead Data
Lifto is primarily a business-to-business platform. Our customers may upload or collect information about their own customers, leads, contacts, homeowners, or end users through website forms, CRM tools, communication tools, or related features.
With respect to this customer or lead data, Lifto generally acts as a service provider or processor on behalf of the business customer. The business customer is responsible for obtaining any required notices, permissions, and consents from its customers and for complying with applicable privacy, advertising, communication, and consumer protection laws.
8. SMS, Email & Communications Data
If Lifto provides email, SMS, call, chat, or communication-related features, we may collect and process message content, phone numbers, email addresses, timestamps, delivery status, opt-in and opt-out records, and related metadata.
Business customers are responsible for ensuring they have proper consent to contact their customers and leads, including compliance with applicable laws such as TCPA, CAN-SPAM, state privacy laws, and carrier messaging rules.
Users may opt out of marketing emails by using unsubscribe links. SMS recipients may opt out by replying STOP where supported.
8.1 Lead SMS Alerts
Lifto may offer an optional transactional messaging program called Lead SMS Alerts. This feature allows an authorized business owner or staff member to receive automated text message notifications when their business receives a new website lead.
To provide Lead SMS Alerts, Lifto may collect and process the authorized recipient's mobile phone number, consent status, consent timestamp, consent language version, opt-out status, message delivery status, message identifiers, and related messaging metadata.
Lead SMS Alerts may contain limited lead information, such as the prospective customer's name, requested service, and a secure link to view additional lead details within Lifto.
Message frequency varies depending on the number of website leads received by the business. Message and data rates may apply. SMS consent is optional and is not required as a condition of purchasing, subscribing to, or using Lifto.
Reply STOP to opt out of Lead SMS Alerts. Reply HELP for assistance. After an opt-out request, Lifto will disable Lead SMS Alerts for the applicable mobile number.
Replying START may remove a carrier-level messaging block, but it will not automatically re-enable Lead SMS Alerts within Lifto. An authorized user must explicitly re-enable Lead SMS Alerts through Company Settings before messages resume.
Mobile phone numbers, SMS opt-in information, and messaging consent will not be sold, rented, or shared with third parties, affiliates, or lead generators for their marketing or promotional purposes.
Lifto may disclose mobile information to telecommunications providers, messaging providers, hosting providers, security providers, and other service providers solely as necessary to operate, secure, support, and deliver the messaging service. These service providers are not authorized to use mobile information or messaging consent for their own marketing or promotional purposes.
Wireless carriers are not responsible for delayed or undelivered messages. Message delivery may be affected by carrier availability, filtering, device settings, network conditions, and other circumstances outside Lifto's control.
For assistance with Lead SMS Alerts, contact us at support@liftohq.com.
9. How We Share Information
We do not sell your personal information. We may share information with:
- Service Providers: Vendors that help us provide hosting, payments, analytics, AI processing, email, SMS, database, storage, security, and support
- Connected Platforms: Third-party platforms you connect, such as Google, Facebook, Instagram, LinkedIn, or other integrations
- Payment Processors: Stripe or similar providers for billing, fraud prevention, invoicing, and subscription management
- Legal and Safety Purposes: When required by law, court order, subpoena, legal process, or to protect rights, property, safety, security, or prevent fraud
- Business Transfers: In connection with a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets
- With Your Consent: When you direct or authorize us to share information
10. Third-Party Service Providers
Lifto may use third-party providers and subprocessors to operate the Services. These may include:
- Stripe: Payment processing and subscription billing
- Supabase: Authentication, database, and file storage
- Vercel: Website hosting and infrastructure
- OpenAI: AI content generation and related AI processing
- Anthropic: AI content generation and related AI processing
- Google: Google Business Profile, OAuth, analytics, maps, and related services
- Meta: Facebook and Instagram integrations
- Twilio: SMS, phone, and communication services, if enabled
- Resend or similar providers: Email delivery
- Analytics providers: Product, website, and usage analytics
These providers may process information on our behalf and are subject to their own privacy policies and security practices.
11. Cookies & Tracking Technologies
We use cookies, pixels, local storage, and similar technologies to operate and improve the Services.
- Essential Cookies: Required for login, authentication, security, and session management
- Functional Cookies: Remember preferences, workspace settings, and product choices
- Analytics Cookies: Help us understand product usage and improve performance
- Marketing Cookies: May help measure campaigns, referrals, and conversions
- OAuth Cookies: Used during third-party account connection flows
You can control cookies through your browser settings. Disabling essential cookies may prevent certain Services from functioning properly.
12. Data Security
We use reasonable administrative, technical, and organizational safeguards designed to protect personal information.
- Encryption in transit using TLS/SSL
- Password hashing and authentication controls
- Role-based access controls
- Database security rules and user-level permissions
- Server-side storage of sensitive tokens where applicable
- Payment processing through PCI-compliant third-party providers
- Monitoring and review of security-related activity
No method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security.
13. Data Retention
We retain information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, prevent fraud, enforce agreements, and support legitimate business purposes.
- Account Data: Retained while your account is active and for a reasonable period after termination
- Website Content: Retained while your subscription or account remains active
- Social Tokens: Retained while accounts remain connected and deleted or disabled after disconnection where technically feasible
- Payment Records: Retained as required for tax, accounting, fraud prevention, and legal compliance
- Logs: Retained for security, debugging, analytics, and operational purposes
- Deleted Accounts: Data may be deleted or anonymized after cancellation, termination, or inactivity, subject to legal exceptions
14. Your Privacy Rights
Depending on where you live, you may have rights to:
- Access personal information we maintain about you
- Correct inaccurate or incomplete information
- Request deletion of personal information
- Request a copy of your information
- Opt out of certain marketing communications
- Withdraw consent where processing is based on consent
- Disconnect third-party accounts from your Lifto settings
To exercise these rights, contact us at support@liftohq.com. We may need to verify your identity before fulfilling a request.
15. California Privacy Rights
If you are a California resident, you may have rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act.
These rights may include:
- The right to know what personal information we collect, use, disclose, or share
- The right to request deletion of personal information
- The right to correct inaccurate personal information
- The right to opt out of sale or sharing of personal information
- The right to limit use of sensitive personal information, where applicable
- The right to non-discrimination for exercising privacy rights
Lifto does not sell personal information for money. If applicable law treats certain advertising or analytics activities as "sharing," you may contact us to exercise applicable opt-out rights.
To submit a California privacy request, email support@liftohq.com with the subject line "California Privacy Request."
16. Marketing Communications
We may send marketing emails, product updates, newsletters, or promotional communications. You may opt out of marketing emails by using the unsubscribe link in the email or by contacting us.
Even if you opt out of marketing communications, we may still send transactional or service-related messages, including account notices, billing notices, password resets, security alerts, and legal updates.
17. Children's Privacy
The Services are not intended for children under the age of 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete it.
18. International Data Transfers
Lifto is based in the United States. If you access the Services from outside the United States, your information may be transferred to, stored in, or processed in the United States or other jurisdictions where Lifto or its service providers operate.
19. Third-Party Links
The Services may contain links to third-party websites, platforms, integrations, or services. Lifto is not responsible for the privacy practices, security, content, or policies of third-party services. We encourage you to review their privacy policies.
20. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we update it, we will revise the "Last updated" date above. If we make material changes, we may provide additional notice through email, in-app notification, or a notice on our website.
Your continued use of the Services after an updated Privacy Policy becomes effective means you acknowledge the updated policy.
21. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:
- Lifto, Inc.
- Newport Beach, California, USA
- Email: support@liftohq.com
- Website: https://www.liftohq.com