Who owns the empire we build together?

You own everything—100% of the code, accounts, and profits. After final payment, we transfer the entire SaaS empire to your control. You become the sole owner of your money-printing machine.

Any sneaky fees lurking around?

Zero. Your investment covers our expertise. You handle third-party costs (hosting, AI, ads) directly in your own accounts for complete transparency. What you see is what you pay.

How bulletproof are your guarantees?

Bulletproof. Miss a milestone? We add free support. No customers after our marketing? We keep working free until get first customers. We put our money where our mouth is.

Can you really get customers before launch?

Absolutely. We build your customer magnet (waitlist) in week 1. While we code, we're collecting dream customers. Launch day becomes 'opening day' of your profitable empire, not a hope and a prayer.

Do we start with a strategy session?

Always. Every empire starts with a 30-minute strategy call to align on your vision, target customers, and success metrics. No payment until we're both confident this will print money.

Can I split payments?

Yes. You can pay in up to 6 installments. The first installment reserves your slot; the schedule is agreed in writing. Note: launch and handover timing assumes your installments stay current.

What do you need from me each week?

A 30-45 min weekly review, timely decisions (24-48h), and domain inputs (pricing, positioning, examples). We draft first; you approve.

Who pays for ad spend and marketing tools?

You do. We connect your ad accounts (Meta/Google/LinkedIn), email/CRM, and analytics so costs are billed directly to you for full transparency. If your plan includes an ad-credit match, we apply it in your account per the amount shown on the pricing card.

Do I own the leads and my ad data?

Yes—100%. All leads, audiences, pixels, and data live in your accounts. We don't resell or reuse your data.

Can you work on my existing codebase?

We'll do a quick audit and advise refactor vs. rebuild. If your current stack is solid, we keep it; otherwise, we rebuild for speed and long-term cost.

What if I already have an MVP?

Great. We'll audit it and recommend refactor vs. rebuild. Sometimes keeping the DB and rewriting the app yields the best outcome—your call with our guidance.

How do scope changes work?

We keep a shared backlog. If a new idea appears mid-build, we'll either (a) trade it for something of equal effort, or (b) schedule it for post-launch. No surprise change orders.

What happens if I pause and want to resume?

You can request a pause at the end of any paid month (14-day notice). Rescheduling depends on open slots—we'll place you in the next available cohort. If we're at capacity, we'll offer the earliest date and keep your scope/price on file.

How do you compensate for late deliverables?

If we miss an agreed milestone, we add the same amount of time to your post-launch support window at no extra cost (e.g., 7 days late → +7 days of support). This sits alongside any credit terms in your guarantee.

Will you set up analytics & tracking correctly?

Yes—events, funnels, source/medium, UTM discipline, and dashboards. You'll know which channels and messages convert.

What exactly counts as a qualified lead?

A contact that matches your ICP (industry/role/company size), passes verification (valid email/identity), and shows recent intent (clicked, replied, booked, or visited key pages). You'll see the rubric in your CRM.

Who writes the copy for the landing page and emails?

We draft it (with AI assist), tune it to your voice, and iterate based on data. You approve final versions.

Can I mix web and mobile in a single build?

Yes, depending on the plan/scope. If you need full parity across web + native, we'll quote it as Custom; otherwise we can ship web plus a slim mobile companion on Pro.

What about mobile apps and app-store publishing?

We support web and mobile. App-store developer accounts (Apple/Google) must be in your name; their fees are paid by you. We handle submissions if in scope.

Can I request special features (SSO, audits, big migrations)?

Yes—flag them early. Items like SSO/SAML, HIPAA/SOC2, or large data migrations may move the project to Custom so we can plan risk, timelines, and infrastructure.

After launch, can I choose maintenance only (no growth)?

Yes. We can provide a lightweight maintenance retainer, or hand everything to your team—your choice.

How do you ensure performance & reliability?

We define a performance budget, add monitoring/alerts, and test key flows before launch. Typical targets: Lighthouse ≥ 90 (mobile) and p95 interaction latency under a reasonable threshold for your app type.

Can I bring in my own designer/dev partway through?

Yes—as long as we keep a single source of truth (monorepo/design system) and one decision owner. We'll coordinate handoffs to avoid velocity loss.

Who pays for AI usage (model/API fees)?

You do. AI costs (e.g., OpenAI/Anthropic/Azure) run on your billing with budgets, caps, and alerts we configure. We also choose cost-effective models per task and cache results where possible.

If we pause, do you keep working on marketing?

No, the growth work pauses with the build.

Do you work in my time zone?

We operate async-first with a fixed weekly demo and a Slack/Hub channel. Typical response time is 24-48h on weekdays; urgent issues have a defined escalation path.

Privacy Policy

How we collect, use, protect, and respect your privacy when you interact with SaaS Launchpad.

Your Privacy Matters: We are committed to protecting your personal information and being transparent about our data practices. This policy explains everything you need to know about how we handle your data.

1. Information We Collect

Information You Provide Directly

Contact Information: Name, email address, phone number, company name
Project Information: Business ideas, project requirements, technical specifications
Communication Data: Messages, call recordings (with consent), feedback
Payment Information: Billing address, payment method details (processed by third-party providers)
Account Data: Login credentials, preferences, service history

Information We Collect Automatically

We use advanced analytics to understand and improve user experience:

Google Analytics 4 (Comprehensive Tracking)

Page Analytics: Page views, session duration, bounce rates, scroll depth
User Behavior: Click events, form interactions, button clicks, navigation patterns
Conversion Tracking: Lead generation, form submissions, goal completions
Device & Technical: Browser type, operating system, screen resolution, device category
Traffic Analysis: Referral sources, search terms, campaign attribution
Geographic Data: Country, region, city (IP-based, anonymized)
Real-time Data: Active users, current page views, live traffic sources

Technical Performance Data

Performance Metrics: Page load times, Core Web Vitals, error tracking
Security Monitoring: Failed login attempts, suspicious activity detection
System Diagnostics: Server response times, uptime monitoring

Information from Third Parties

Google Analytics (GA4): Website usage patterns and traffic sources (with IP anonymization; Google Signals disabled)
Resend: Email delivery status (transactional; marketing only if opted in) and open/click metrics
Payment Processors: Transaction status, payment verification

2. How We Use Your Information

Service Delivery

Provide requested services and consultations
Develop custom software solutions
Communicate project updates and deliverables
Process payments and maintain billing records
Provide customer support and troubleshooting

Business Operations

Improve our services and website functionality
Analyze usage patterns and optimize user experience
Conduct market research and competitive analysis
Maintain security and prevent fraud
Comply with legal and regulatory requirements

Marketing and Communication

Send relevant updates about our services
Share industry insights and educational content
Invite participation in case studies or testimonials
Notify about new features or service offerings
Conduct satisfaction surveys and feedback collection

3. Legal Basis for Processing (GDPR/CCPA Compliance)

Legitimate Interests

Website analytics and performance optimization
Security monitoring and fraud prevention
Business development and service improvement
Direct marketing to existing clients

Contractual Necessity

Delivering requested services
Processing payments
Providing customer support
Maintaining service agreements

Consent

Email marketing communications
Non-essential cookies and tracking
Recording of calls (where applicable)
Use of testimonials and case studies

4. Cookies and Tracking Technologies

Essential Cookies

Required for website functionality, including:

Session management and authentication
Security and fraud prevention
Load balancing and performance
Form submission and error handling

Analytics Cookies

Used to understand website usage via Google Analytics:

Page views and user journeys
Traffic sources and campaign effectiveness
Device and browser information
Geographic location (anonymized)

Third-Party Integrations

Resend: Email delivery/analytics
Calendly: Meeting scheduling
Stripe/PayPal: Payment processing and fraud detection

5. Data Sharing and Disclosure

Service Providers

We share data with trusted partners who help deliver our services:

Hosting: Vercel (and analogous infrastructure providers if required for specific projects)
Email: Resend for transactional emails (and marketing emails if opted in)
Meetings: Calendly for scheduling
Analytics: Google Analytics (GA4) for insights
Payment Processing: Stripe, PayPal for transactions

Legal Requirements

We may disclose information when required by law:

Court orders or legal subpoenas
Government investigations or regulatory requests
Protection of our rights and property
Prevention of fraud or illegal activity

Business Transfers

In case of merger, acquisition, or sale, data may be transferred to new owners with equivalent privacy protections.

6. Data Security and Protection

Technical Safeguards

Encryption: All data transmitted via HTTPS/TLS
Access Controls: Multi-factor authentication and role-based access
Network Security: Firewalls, intrusion detection, VPN access
Data Backup: Regular encrypted backups with retention policies

Operational Safeguards

Staff Training: Regular privacy and security education
Background Checks: Screening of personnel with data access
Incident Response: Procedures for security breach management
Vendor Management: Due diligence on third-party providers

Physical Safeguards

Secure data centers with access controls
Equipment disposal and destruction procedures
Environmental monitoring and protection

7. Data Retention

Retention Periods

Contact Information: 7 years after last interaction
Project Data: 10 years for legal and warranty purposes
Financial Records: 7 years per accounting requirements
Marketing Data: Until consent withdrawal or 3 years inactive
Analytics Data: 26 months (Google Analytics default)

Deletion Procedures

Data is securely deleted when:

Retention period expires
You request deletion (subject to legal requirements)
Services are terminated
Legal obligations are fulfilled

8. Your Privacy Rights

Universal Rights

Access: Request copies of your personal data
Correction: Update inaccurate or incomplete information
Deletion: Request removal of your data (with limitations)
Portability: Receive your data in a structured format

Regional Rights (GDPR/CCPA)

Restriction: Limit how we process your data
Objection: Opt out of certain processing activities
Automated Decision-Making: Request human review of automated decisions
Withdraw Consent: Remove previously given permissions

Exercising Your Rights

To exercise any of these rights:

Email us using our contact form
Reply to any email from us
Use unsubscribe links in marketing emails
Contact our data protection officer (if applicable)

9. International Data Transfers

We may process data in multiple countries using cloud providers with global infrastructure. All transfers are protected by appropriate safeguards:

Standard Contractual Clauses (SCCs)
Adequacy decisions by relevant authorities
Binding Corporate Rules where applicable
Industry-standard security measures

10. Children's Privacy

Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us immediately for removal.

11. California Privacy Rights (CCPA)

California residents have additional rights:

Right to Know: Categories and sources of personal information collected
Right to Delete: Request deletion of personal information
Right to Opt-Out: Refuse sale of personal information (we don't sell data)
Non-Discrimination: Equal service regardless of privacy choices

12. Updates to This Policy

We may update this privacy policy to reflect changes in our practices or legal requirements. Material changes will be communicated via:

Email notification to registered users
Prominent website notice
Updated effective date on this page

13. Contact Information

For privacy-related questions or requests:

General Inquiries: Use our website contact form
Privacy Requests: Email privacy-specific contact
Data Protection Officer: Available for EU/UK residents
Postal Address: Available upon request

14. Regulatory Authorities

If you're not satisfied with our response to privacy concerns, you can contact:

EU/UK: Your local data protection authority
California: California Attorney General's Office
Other jurisdictions: Relevant privacy regulatory bodies

Last updated: 9/2/2025

Effective date: 9/2/2025

This policy is designed to be comprehensive while remaining understandable. We're committed to transparency and protecting your privacy rights.

Use of Resend (email) and Calendly (scheduling)

We use Resend as our processor to send transactional emails and, if you opt in, marketing communications. We use Calendly to provide meeting scheduling. We remain the controller of your data.

Data shared with these providers

Contact details (name, email address)
Transactional and marketing metadata (e.g., send, open, click, bounce, unsubscribe events) for email
Support or product messages you instruct us to deliver by email
Meeting booking details (availability, meeting date/time, invitee name/email, timezone) and technical telemetry (IP address, device/user-agent) for scheduling

Purposes and lawful bases

Transactional emails: performance of a contract or our legitimate interests in operating the Service
Marketing emails: your consent (you can withdraw consent at any time via the unsubscribe link)
Scheduling: performance of a contract or our legitimate interests in providing support and sales

Retention and transfers

Email providers store message logs and engagement metrics for a limited period needed for delivery, security, fraud prevention, and analytics, after which they are deleted or anonymized. Where relevant, international transfers are protected using the EU Standard Contractual Clauses.

Your choices

Unsubscribe from marketing emails using the link in any email or by contacting support.
Object to tracking pixels by disabling remote images in your email client or adjusting cookie preferences.
Request access, correction, deletion, or objection by contacting us using the details in this policy.

Subprocessors

Resend (US/EU): email delivery (transactional/marketing), email analytics
Calendly (US/EU): meeting scheduling
Vercel Inc. (US/global): hosting, edge delivery, logging/security
Google LLC (US/global): Google Analytics (GA4) website analytics

We update this list as needed and will provide notice of material changes where required by law.