← Back to Obsidian OS

Privacy Policy

Last updated: March 18, 2026  ·  Obsidian Luxe Holdings LLC

This policy governs the collection, use, and protection of information through the Obsidian OS web application and any SMS/text communications associated with your account.

TCPA Compliance · SMS Opt-In

Receive Text Updates from Obsidian Luxe Holdings LLC

Select the types of SMS messages you wish to receive from Obsidian Luxe Holdings LLC. You may opt into one or both categories below.

Marketing & Promotional Messages

Appointment & Transaction Reminders

Consent is not required to obtain any product or service from Obsidian Luxe Holdings LLC. ·  Reply HELP for assistance. ·  Carriers are not liable for delayed or undelivered messages.

1. Overview

Obsidian OS (“we”, “our”, “the Service”) is a real estate acquisition platform operated by Obsidian Luxe Holdings LLC. This policy covers the Obsidian OS web application. We are committed to handling your data minimally, transparently, and only for the purpose of operating the Service.

2. Data We Collect

Account Data

When you create an account, we collect your email address and organization name via Supabase Auth. We do not store passwords — authentication is handled by Supabase using industry-standard security.

Mobile Number (SMS)

If you provide a mobile phone number for SMS communications, that number is stored in your account profile and used solely to deliver transactional and pipeline-related messages you have consented to receive. Your number is never sold or shared with third-party marketers.

Deal & Pipeline Data

Property listings, financial data, notes, and documents you enter or import into Obsidian OS are stored in your organization's account. This data belongs to you and your organization.

3. SMS / Text Message Program

Obsidian Luxe Holdings LLC operates an SMS messaging program to send transactional and pipeline alerts to users who have opted in. The following terms govern that program:

  • Types of messages: Deal pipeline updates, lead alerts, appointment reminders, outreach confirmations
  • Message frequency: Varies; typically 1–5 messages per week based on your account activity
  • Message & data rates: Standard message and data rates from your carrier may apply
  • Opt-out: Reply STOP to any message to unsubscribe immediately. You will receive one confirmation message and no further texts
  • Help: Reply HELP for support or email arya@obsidianluxeholdingsllc.com
  • Carriers: Supported by all major US carriers. Carrier is not liable for delayed or undelivered messages
  • Consent: Consent to receive SMS messages is not required as a condition of any purchase or service

To opt in, use the consent form above or provide your mobile number during account onboarding. To opt out at any time, reply STOP to any message or contact us at the email above.

4. Data We Do NOT Collect

  • Browsing history or tracking across sites
  • Keystroke logging or mouse tracking
  • Personal financial information beyond what you voluntarily enter
  • Health information
  • Location data beyond what is present in property addresses you enter

5. How We Use Data

We use your data solely to:

  • Operate and deliver the Obsidian OS platform to your organization
  • Authenticate your identity and maintain session security
  • Save deal data and pipeline records you explicitly create
  • Deliver SMS messages you have consented to receive

We do not sell, rent, or transfer your data to third parties for marketing. We do not use your data for advertising. We do not use your data to determine creditworthiness or for lending purposes.

6. Data Storage & Security

All data is stored in Supabase (PostgreSQL) with row-level security enforced at the database level — meaning each organization can only access its own data. Data is encrypted at rest and in transit using TLS 1.2+. The extension stores only your session token locally in your browser; it is never sent to any third party. See our Security page for a full breakdown of our security posture.

7. Data Retention

Your data is retained for as long as your account is active. You may request deletion of your account and all associated data at any time by contacting us. Upon deletion, all organization data is permanently removed within 30 days. SMS opt-in/opt-out records are retained for 4 years as required by TCPA regulations.

8. Third-Party Services (Sub-processors)

We use the following sub-processors to operate the Service:

  • Supabase — database, authentication, and storage
  • Vercel / Railway — application hosting and deployment
  • Twilio — SMS message delivery (phone numbers and consent data only)

These providers process data only as necessary to deliver the Service and are bound by their own privacy policies and data processing agreements. None of these providers receive your data for their own marketing or advertising purposes.

9. Your Rights

You have the right to:

  • Access the data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and data
  • Export your deal and pipeline data
  • Withdraw SMS consent at any time by replying STOP or contacting us

10. Children's Privacy

Obsidian OS is not directed to individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe a minor has provided us with their information, please contact us and we will delete it promptly.

11. Changes to This Policy

We may update this policy from time to time. When we do, we will revise the “Last updated” date at the top of this page and, where the changes are material, notify you by email or in-app notification. Continued use of the Service after changes constitutes acceptance of the updated policy.

12. Contact

For privacy questions, data requests, SMS opt-out help, or to request account deletion: legal@obsidianluxeholdingsllc.com

© 2026 Obsidian Luxe Holdings LLCTerms of ServiceSecurity