Privacy Policy
Operated by Pearson & Pearson Holdings LLC, a Florida limited liability company, doing business as Back Office Briefcase. Service: the AI Back Office and Clara at backofficebriefcase.com.
1. Who We Are & Scope
This Policy explains how Back Office Briefcase (“we,” “us,” “BOB”) collects, uses, shares, and protects information when a business or individual (“you,” “User”) uses the Service. It applies to the Service at backofficebriefcase.com and does not cover third-party services you separately use.
2. Information We Collect
- Account information — name, business name, email, and credentials you provide at signup.
- Billing information — handled by our third-party payment processor; we receive transaction confirmations and limited billing metadata, not full card numbers.
- Your business content — the data, documents, records, and instructions you input, and the Work Product the agents generate for you. This is your data; we process it to deliver the Service.
- Usage & technical data — log data, device/browser information, and feature-usage data used to operate and secure the Service.
3. How We Use Information
We use information to provide, maintain, secure, and improve the Service; process billing and trials; respond to support requests; send service and renewal notices; and comply with law. We do not sell your personal information.
4. AI Processing
The Service uses artificial intelligence. To generate Work Product, your inputs are processed by our AI subprocessor (see Section 6). We do not authorize the use of your business content to train third-party AI models except as you direct or as required to provide the Service.
5. Tenant Isolation
Your data is maintained in a logically isolated tenant and is not commingled with the data of any other client. Where you operate more than one business on the Service, those businesses are kept partitioned, enforced at the database layer.
6. Subprocessors
We rely on the following third-party providers, who process data only as needed to deliver the Service and under their own commitments:
- AI processing — Anthropic, PBC.
- Database hosting — Supabase, Inc.
- Application hosting / edge — Cloudflare, Inc.
- Payment processing — Stripe, Inc.
- Transactional email — Resend.
A current, itemized subprocessor list is maintained here and in the DPA. We will give advance notice of any material change to this list.
7. How We Share Information
We share information only: with subprocessors (Section 6); when required by law or valid legal process; to protect rights, safety, and the integrity of the Service; and in connection with a business transfer (merger, acquisition, financing), subject to this Policy. We do not sell personal information.
8. Data Retention
We retain your data for as long as your account is active and for up to ninety (90) days after account closure, after which it is deleted or returned per the DPA and the ULA, subject to legal-retention requirements.
9. Security
We use commercially reasonable administrative, technical, and physical safeguards, including tenant isolation enforced at the database layer, role-based access control, and encryption in transit. No method of transmission or storage is perfectly secure, and we cannot guarantee absolute security.
10. Your Rights
Depending on where you and your data subjects are located, you may have rights to access, correct, delete, or port personal information, and to object to or restrict certain processing. To exercise these rights, contact us at Section 15. We will respond within the timeframe required by applicable law (and in any event within forty-five (45) days).
11. Data-Breach Notification
In the event of a personal-data breach affecting your data, we will notify you without undue delay and within seventy-two (72) hours of confirmation, with the information reasonably available at that time.
12. International Transfers
The Service is operated from the United States. If data is transferred across borders, we will use a lawful transfer mechanism, including Standard Contractual Clauses where applicable.
13. Children
The Service is a business tool and is not directed to children under 18. We do not knowingly collect their personal information.
14. Changes
We may update this Policy and will post the updated version with a new effective date; material changes will be notified per the ULA.
15. Contact
Pearson & Pearson Holdings LLC (Back Office Briefcase) — privacy@backofficebriefcase.com, 121 Crystal Cove Drive, Palatka, FL 32177.