Privacy Policy

Streett Reports LLC Effective Date: May 17, 2026 Last Updated: June 1, 2026

1. Introduction

Streett Reports LLC ("Streett Reports," "we," "us," or "our") provides business intelligence reporting services for home services businesses. We generate weekly financial insight reports by analyzing data from your QuickBooks Online account and supplementing it with publicly available market research.

This Privacy Policy describes how we collect, use, store, share, and protect your information when you use our services, visit our website at streettreports.com, or interact with us in any way.

By using our services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our services.

2. Information We Collect

2.1 Information You Provide Directly

When you sign up for Streett Reports and complete our onboarding questionnaire, we collect:

Business information: Business name, owner name, trade/industry, years in business, employee count range, annual revenue range, city, state, and service area (postal codes)
Contact information: Email address
Account preferences: Preferred report delivery day, communication style preferences, brand voice preferences
Business context: Pain points, target customer profile, service area description, sample communications
Online presence URLs: Website address, Google Business Profile URL
Software usage: Whether you use field service software and which platform

2.2 Information We Collect from QuickBooks Online

When you connect your QuickBooks Online account via OAuth 2.0 authorization, we access and store the following financial data:

Invoices (amounts, dates, customer references, descriptions, status)
Payments received (amounts, dates, customer references)
Bills and expenses (amounts, dates, descriptions)
Credit memos (amounts, dates)
Profit and Loss reports (revenue, cost of goods sold, gross profit, expenses, net profit by period)

We only access data that is necessary to generate your financial insight reports. We do not access payroll data, tax filings, bank account numbers, credit card numbers, or Social Security numbers.

2.3 Information We Collect from Public Sources

To provide market context in your reports, we collect publicly available data from government and public sources about your geographic service area:

U.S. Census Bureau: Demographic data, business establishment counts, building permit activity
Bureau of Labor Statistics (BLS): Employment and labor market statistics
Federal Reserve (FRED): Economic indicators such as interest rates
Energy Information Administration (EIA): Energy price data
National Oceanic and Atmospheric Administration (NOAA): Weather patterns and storm events
Federal Emergency Management Agency (FEMA): Disaster declarations
Redfin (public data): Housing market trends

This data is aggregated and geographic in nature. It does not contain any personally identifiable information about you or your customers.

2.4 Information We Collect About Your Online Presence

During onboarding, we may look up your business on Google Maps (via the Google Places API) to gather:

Google Business Profile rating and review count
Response rate to reviews

If you provide your website URL, we may analyze your website's publicly visible text content to understand your services, service area, and brand tone. We do not collect data about your website's visitors.

2.5 Information Collected Automatically

When you interact with our services, we may automatically collect:

Email engagement data: Whether you opened a report email and when (via a standard tracking pixel embedded in the email)
Access logs: When our operator accesses your account data for report preparation, we log the access event, timestamp, and data type accessed
Website analytics: We may use privacy-respecting analytics tools that do not use cookies or collect personally identifiable information. These tools collect aggregate data such as page views, referral sources, and device types.

Cookies: We use a single session cookie for customer portal authentication. This cookie is strictly functional (encrypted, httpOnly, not accessible to JavaScript), expires after 24 hours, and is not used for tracking, advertising, or any purpose other than keeping you logged in while you view your reports. We do not use advertising cookies, retargeting pixels, or third-party tracking scripts that follow you across the internet.

Report access: Delivered reports are accessible via a secure signed link included in your delivery email. This link is unique to your account and does not expire. You may also access your report history through our customer portal using a passwordless login (email verification link).

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Providing Our Services

Generating weekly financial insight reports tailored to your business
Computing key performance indicators (KPIs) and detecting meaningful trends or anomalies
Providing market context and competitive intelligence relevant to your trade and geography
Delivering reports to your email address

3.2 Improving Our Services

Understanding how our reports are used (via email open tracking)
Identifying data quality issues and improving our analysis accuracy
Developing new report features and insights

3.3 Communicating with You

Sending your weekly reports
Notifying you of service updates or issues with your account connection
Responding to your inquiries

3.4 AI-Assisted Processing

We use artificial intelligence technologies in multiple aspects of our Service:

Insight generation: We use AI services (currently Anthropic's Claude) to analyze your financial data and generate narrative insights for your reports. When we do so, we provide the AI service with anonymized financial metrics and trends — we do not include your business name, email address, or other directly identifying information in AI processing requests.
Development and maintenance: We use AI-assisted development tools to build, maintain, and improve our software platform. These tools may process code, system configurations, and application logic but do not have direct access to your financial data in production. In rare cases where debugging requires reviewing data patterns, we use anonymized or synthetic data whenever possible.
Data analysis automation: We may use AI to assist with anomaly detection, trend identification, and KPI computation as part of our automated data pipeline.

We do not use AI to make automated decisions that have legal or similarly significant effects on you. AI-generated content in your reports is informational only and is reviewed or curated by our team before delivery.

3.5 Security and Compliance

Maintaining audit logs of data access
Detecting and preventing unauthorized access
Complying with legal obligations

We do not sell, rent, or trade your personal information or financial data to third parties. We share information only in the following limited circumstances:

4.1 Service Providers

We use the following service providers who process data on our behalf:

Provider	Purpose	Data Shared
Intuit (QuickBooks Online)	Source of your financial data	OAuth tokens for API access
Stripe	Payment processing	Your email address, subscription status, payment method (card details stored by Stripe, never on our servers)
Resend	Email delivery	Your email address, report subject line, report content
Railway	Application hosting and database	All application data (encrypted in transit and at rest)
Google Cloud Platform	Business profile lookup	Your business name and city/state (for Google Places API queries)
Anthropic	AI-assisted insight generation	Anonymized financial metrics and trends (no identifying information)
AI-assisted development tools	Software development and maintenance	Application code and system logic (no customer financial data in normal operation)

4.2 Government APIs (No Data Shared About You)

We query U.S. government data sources (Census Bureau, BLS, FRED, EIA, NOAA, FEMA) using geographic identifiers (postal codes, county codes). These queries do not contain any of your personal or business information.

4.3 Legal Requirements

We may disclose your information if required to do so by law, regulation, legal process, or governmental request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

4.4 Business Transfers

If Streett Reports LLC is acquired, merged, or sells substantially all of its assets, your information may be transferred as part of that transaction. We will notify you via email before your information becomes subject to a different privacy policy.

Your financial data is never shared with, visible to, or used to generate reports for any other customer. Each customer's data is completely isolated within our system.

5. Data Security

We implement the following security measures to protect your information:

Encryption at rest: OAuth tokens are encrypted using AES-256-GCM before storage
Encryption in transit: All data transmitted between your browser, our servers, and third-party services uses TLS 1.2 or higher
Access controls: All database queries are scoped to your specific account; cross-account access is architecturally prevented
Authentication: Operator access requires authenticated sessions with time-limited tokens
Audit logging: All access to customer financial data is logged with timestamps
Validation: Every API call to QuickBooks validates the realm ID matches your account (defense-in-depth against data leakage)
Infrastructure security: Our hosting provider (Railway) maintains SOC 2 compliance, encrypted backups, and network isolation

No method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

6. Data Retention and Deletion

6.1 Active Accounts

While your account is active, we retain all data necessary to provide our services, including historical financial data used to compute trends and year-over-year comparisons.

6.2 Disconnecting QuickBooks

When you disconnect your QuickBooks account (but do not cancel your Streett Reports account):

Immediate: Your OAuth tokens are revoked at Intuit and we can no longer access your QuickBooks data
7-day grace period: Your cached financial data remains in our system for 7 days in case you reconnect
Permanent deletion: After 7 days, all cached QuickBooks data is permanently deleted, including transactions, profit/loss snapshots, computed KPIs, anomaly results, and generated reports

Your account record, email preferences, and onboarding information are retained so you can reconnect in the future without re-entering your details.

6.3 Account Cancellation

When you cancel your account or request deletion:

Immediate (soft delete): Your account is marked as cancelled, OAuth tokens are revoked, and no further data is collected from QuickBooks
7-day grace period: Your data remains available for 7 days in case you change your mind
Permanent deletion (hard delete): After 7 days, all of your data is permanently and irreversibly deleted from our systems, including:
- All financial transactions and records
- All computed KPIs and analysis results
- All generated reports and insights
- All onboarding questionnaire responses
- All access logs related to your account
- All files generated for your account

6.3 Requesting Deletion

You may request deletion of your account and all associated data at any time by contacting us at [email protected].

7. Your Rights

7.1 All Customers

Regardless of your location, you have the right to:

Access: Request a copy of all personal and financial data we hold about you
Correction: Request correction of inaccurate information
Deletion: Request deletion of your account and all associated data
Data portability: Request an export of your data in a machine-readable format (JSON or CSV)
Opt out of email: Unsubscribe from report emails at any time using the unsubscribe link in any email, or by contacting us directly
Revoke QuickBooks access: Disconnect your QuickBooks account at any time through your account settings at streettreports.com/my-reports/settings, through your QuickBooks Online settings (Apps > Manage Apps), or by contacting us

7.2 Colorado Residents

Under the Colorado Privacy Act (CPA), Colorado residents have additional rights including the right to opt out of targeted advertising and profiling. We do not engage in targeted advertising or profiling. If you wish to exercise any rights under the CPA, contact us at [email protected].

7.3 California Residents

Under the California Consumer Privacy Act (CCPA/CPRA), California residents have additional rights regarding their personal information. While Streett Reports LLC does not currently meet the CCPA applicability thresholds (annual revenue over $25 million, or processing data of 100,000+ consumers), we voluntarily extend the following rights to all customers:

The right to know what personal information we collect and how it is used
The right to delete personal information
The right to non-discrimination for exercising privacy rights

We do not sell personal information. We do not share personal information for cross-context behavioral advertising.

8. QuickBooks Data Handling

As a QuickBooks-connected application, we adhere to Intuit's Data Stewardship Principles:

We only access QuickBooks data that is necessary to provide our reporting services
We clearly describe our use of your data and obtain your consent before accessing it
We do not share your identifiable QuickBooks data with other customers or third parties (except as described in Section 4.1 for service delivery)
We do not use your data for advertising or sell it to data brokers
You can revoke our access to your QuickBooks data at any time

9. Marketing and Outreach

9.1 Business Data We Collect for Marketing

We collect publicly available business information from public directories, government records, and business websites to identify home services businesses that may benefit from our service. This information includes:

Business name, address, phone number, and website URL
Owner or principal name (from public directories such as BBB, government license rosters, or the business's own website)
Business email addresses (from the business's website or public directory listings)
Trade/industry classification
Publicly visible indicators of business software usage (from the business's website)

This data is collected from public sources only. We do not purchase consumer data lists or scrape private/restricted platforms.

9.2 How We Use Marketing Data

We use this data to send relevant, one-time marketing emails about free industry reports we have published for your trade and geographic area. These emails comply with the CAN-SPAM Act: they include our physical mailing address, an unsubscribe mechanism, and honest subject lines.

If you receive a marketing email from us and do not wish to receive further communications, you can unsubscribe using the link in the email. We will permanently suppress your email address and never contact you again.

9.3 Marketing Email Tracking

Marketing emails sent by Streett Reports do not contain open-tracking pixels. We use redirect links to understand whether our emails are useful. When you click a link in a marketing email:

The link passes through a redirect on our server that records the click
A cookie ("sr_ref") is set in your browser for 30 days to connect your visit to your account if you later sign up for our service
You are immediately redirected to the intended destination (a free industry report page)

We do not track your activity after the redirect. The cookie is used solely for attribution (understanding which marketing efforts lead to signups) and is cleared upon signup or expiration.

9.4 Your Rights Regarding Marketing Data

You may request deletion of any marketing data we hold about your business by emailing [email protected]. We will delete your record and permanently suppress your email address within 7 days.

10. Email Communications (Customers)

10.1 Report Delivery

We send weekly financial insight reports to the email address associated with your account. These emails contain:

A summary of key findings in the email body
A full HTML report as an attachment

10.2 Email Tracking

Our emails contain a small, invisible tracking pixel that notifies us when an email is opened. This helps us understand engagement and identify delivery issues. We track:

Whether the email was delivered successfully
Whether and when the email was opened
Bounce and complaint events (used to automatically stop sending to invalid addresses)

We do not track clicks within emails or your activity after opening an email.

10.3 Unsubscribing

Every report email contains an unsubscribe link. Clicking it immediately opts you out of future report emails. You can also contact us directly to unsubscribe. Unsubscribing from emails does not delete your account or data.

11. Children's Privacy

Our services are designed for business owners and are not intended for individuals under the age of 18. We do not knowingly collect personal information from anyone under 18. If we learn that we have collected information from a person under 18, we will delete it promptly.

12. International Use

Streett Reports is operated in the United States and our services are intended for businesses located in the United States. If you access our services from outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will:

Update the "Last Updated" date at the top of this policy
Notify you via email at least 30 days before the changes take effect
Post the updated policy on our website

Your continued use of our services after the effective date of any changes constitutes your acceptance of the updated policy.

14. Data Breach Notification

In the event of a data breach that affects your personal or financial information, we will:

Notify you via email within 72 hours of becoming aware of the breach
Describe the nature of the breach and what information was affected
Explain what steps we are taking to address the breach and prevent future occurrences
Provide guidance on steps you can take to protect yourself

We will also notify relevant authorities as required by applicable law.

15. Contact Us

If you have questions about this Privacy Policy, want to exercise any of your rights, or have concerns about how we handle your data:

Streett Reports LLC Email: [email protected] Website: https://streettreports.com

For data access, correction, deletion, or portability requests, please email [email protected] with the subject line "Data Request" and include your business name and the email address associated with your account. We will respond within 30 days.

16. Governing Law

This Privacy Policy is governed by the laws of the State of Colorado, United States, without regard to its conflict of law provisions.

17. Trademarks

Intuit and QuickBooks are registered trademarks of Intuit Inc. Used with permission.