Privacy Policy

Information we collect

We collect information you provide directly, information created through your use of Nestled House, and limited technical information needed to operate the service.

• Account and contact information, such as your name, email address, authentication identifiers, profile image, and communication preferences.
• Home, listing, and move information, including listing URLs, addresses, rent and room details, uploaded or scraped photos, floor plans, room labels, design preferences, budgets, furniture needs, move timing, task notes, prompts, messages, and generated room plans.
• Payment and purchase information, such as checkout status, purchase amounts, currency, Stripe customer IDs, payment intent IDs, and receipt records. We do not store full payment card numbers.
• Usage and device information, including session identifiers, page URLs, feature interactions, timestamps, browser and device type, approximate technical diagnostics, and IP address information that may be hashed or anonymized for analytics where applicable.
• Support and email information when you contact us, reply to service emails, or request help.

How we use information

• To create and secure accounts, authenticate users, and provide access to paid features.
• To analyze listing information, process photos, classify rooms, generate styled room concepts, produce move tasks, and recommend furniture or services.
• To process payments, send purchase confirmations, provide support, and respond to requests.
• To personalize the product, remember preferences, improve recommendations, measure performance, debug errors, and understand which workflows are useful.
• To protect Nestled House, users, and third parties from fraud, abuse, security incidents, and violations of our terms.
• To comply with legal obligations and enforce agreements.

Parties we disclose information to

We disclose information only as needed to operate, improve, secure, and support Nestled House.

• Infrastructure, database, hosting, storage, and deployment providers that keep the service running.
• Authentication, payment, and email providers, including providers such as Clerk, Stripe, and Resend.
• Image hosting, AI, design generation, product sourcing, browser automation, and analytics service providers, including providers such as Cloudinary, Anthropic, Google Gemini, Decor8, Firecrawl, and Browserbase when those services are used for a workflow.
• Retailers, listing websites, affiliate partners, and other third-party websites when you open external links, submit listing URLs, or ask Nestled House to source information from those sites.
• Professional advisors, authorities, or counterparties when required by law, necessary to protect rights and safety, or involved in a merger, financing, acquisition, reorganization, or sale of assets.
• Other parties with your direction or consent.

Method of disclosure

Disclosures generally happen through encrypted server-to-server API requests, hosted asset URLs, payment webhooks, authenticated dashboards, database access controls, outbound browser links, email delivery, or support communications. For example, an uploaded room photo may be stored with an image host and shared by URL with an AI design provider so the provider can generate a styled room image.

Security practices

No online service can guarantee absolute security. If you believe your account or data has been affected by a security issue, contact us promptly.

• We use HTTPS and encrypted transport for data sent between your browser, Nestled House, and service providers.
• We keep sensitive credentials in server-side environment variables and limit provider access to the systems that need it.
• We rely on established providers for authentication, payment processing, image storage, and infrastructure security.
• We avoid storing full payment card details and use Stripe-hosted payment flows for card processing.
• We apply data minimization, hashed or anonymized analytics where practical, access controls, monitoring, and deletion workflows where supported.

Retention and deletion

We keep information for as long as needed to provide Nestled House, maintain records, comply with legal obligations, resolve disputes, enforce agreements, and improve the product. Some information may remain in backups, logs, or provider systems for a limited period after deletion from active systems.

You may request access, correction, export, or deletion of your information by contacting us. We may need to verify your request before acting on it.

Your choices

• You can update account information and preferences through the product where those controls are available.
• You can choose not to provide certain information, but some features may not work without listing details, photos, preferences, or account information.
• You can opt out of marketing emails by using unsubscribe links where provided. Service emails related to purchases, security, or account activity may still be sent.
• Browser controls may let you block or delete cookies and local storage, but doing so may reset sessions or limit functionality.

Children

Nestled House is not intended for children under 13, and we do not knowingly collect personal information from children under 13.

Changes

We may update this Privacy Policy from time to time. The updated version will be posted on this page with a new last updated date. If changes are material, we may provide additional notice where appropriate.