robot friends:)/workbench · clem · card 01
v1.2 · updated 2026-05-06
Confidential
Robot Friends · Discovery Brief · 2026-05-06

Barber Affiliate OS

List-share consignment program for Classic Barber Products — concept, scope, and competitive positioning.
Prospect
Brian Murakami
Classic Barber Products · Temecula CA
Origin
Lunch with Mike Clem
Mutual contact · early May 2026
Working name
Affiliate OS
Generic — shell reusable for other distributors
Status
Pre-discovery
No formal call with Brian yet

§1Context

Classic Barber Products is a wholesale barber supply distributor in Temecula CA — roughly 4,500 barbershop accounts across the U.S. carrying premium men's grooming brands (Slick Gorilla, STMNT, Brosh, Lockhart's, Captain Fawcett, Barbicide, Suavecito, Cape Gang, Holy Black, Rascal). We pitched them a "Tri-Fold Business OS" in March 2026 — public storefront rebuild, wholesale client portal, admin command center — with B2B affiliate referrals included as a Phase 4 stretch goal. That deck is live at cbp.robobffs.site, awaiting final UX/pricing review from Wally.

Mike has now brought a new pitch back from a recent conversation with Brian: a list-share affiliate program that's a fundamentally different product than the affiliate piece in our prior deck. Brian is reportedly in active discussions with a developer who built and successfully exited a vertical-SaaS product to a larger payments/platform company — the exact app and acquirer aren't confirmed, but the relevant detail is the same either way: this is a senior builder with a successful exit on his resume, which means he'll likely propose equity, profit-sharing, or premium hourly billing.

This brief reconciles the two affiliate models, identifies what we need to confirm before scoping, and frames our go-to-market positioning against the senior-dev competition.

§2Two Affiliate Models — Reconciliation

The "Affiliate OS" we already pitched in Chapter 8 of the CBP deck and the "Affiliate OS" Mike described at lunch are different products with different surfaces, economics, and risk profiles.

Dimension Deck Model
March pitch
Lunch Model
Current ask
Affiliate role Refers other barbershops to CBP Contributes own consumer customer list to CBP
Revenue source B2B wholesale orders from referred shops DTC retail orders to barber's own customers
Commission 12% on referred orders 30% on attributable retail revenue
Core complexity Tracking + payouts Multi-tenant co-branded marketing + list consent + DTC fulfillment
Comparable shape Traditional affiliate / partner program Co-branded marketing-as-a-service + consignment

Working assumption — lunch model is the lead

  • Mike's account was specific and consistent — 30% commission, list-share via booking platforms, per-barber branded marketing
  • Brian is shopping the work to outside developers, which only makes sense if the ask is meaningfully bigger than what we already pitched
  • The 30% number tracks with consignment economics, not affiliate referral economics
  • "Brand the emails per barber" is a real engineering constraint, not afterthought

Both models could coexist inside one OS (referral affiliates and list-share affiliates as two affiliate types), but this brief assumes the lunch model is the spine until Brian confirms.

First question on the discovery call: "When you say affiliate program — are you describing barbers who refer other shops, or barbers who share their customer list and you market to it on their behalf?" His answer reshapes the rest of the conversation.

§3The Lunch Model — System Concept

Thesis

Most independent barbers are sitting on customer contact lists collected through booking platforms (Squire, Booksy, Schedulicity, Acuity) that are not being monetized. Barbers are generally not strong retail sellers and don't want to carry inventory. CBP wants to:

  1. Receive list contributions from participating barbers
  2. Run retail marketing campaigns (email V1, SMS V2) branded as the barber to those lists
  3. Fulfill resulting consumer orders directly through CBP
  4. Pay the contributing barber 30% of attributable revenue
  5. Track, account, and operate the entire program through a purpose-built OS

What the OS actually contains

Rough decomposition — seven coordinated subsystems:

01
Affiliate Management
Barber accounts, list metadata, attribution model, commission ledger, payout workflow.
02
List Ingest + Identity
CSV upload V1, booking platform APIs V2. Dedupe, opt-in tracking, per-barber data namespacing.
03
Multi-tenant Email Branding
Same campaign rendered with different sender, logo, signature, footer, unsubscribe scoping per barber.
04
Marketing Automation
Campaign builder, segmentation, scheduled sends, behavioral triggers, A/B testing.
05
DTC Commerce Layer
Where the orders happen — existing CBP storefront vs new vs per-barber landing pages (TBD).
06
Affiliate Portal
Barber-facing — list performance, attributed revenue, commission ledger, payout history, marketing assets.
07
Admin Portal
CBP-facing — full ecosystem visibility, campaign launch, affiliate approval, payout administration, accounting handoff.

Load-bearing design constraints

These shape the architecture from day one — not features that get added later.

  • Consent / compliance. Barbers' customers consented to communications from the barber, not from CBP. CAN-SPAM (email), TCPA (SMS — much stricter), and state privacy laws (CCPA, CPA, CTDPA, VCDPA) make naive list-sharing legally radioactive. The architecture must use a "send on behalf of barber" pattern (detailed below) where the barber is the legal sender and CBP is the service provider. Get this wrong and one complaint can kill the program.
  • Multi-tenant data isolation. Per-barber list scoping affects unsubscribes, data subject requests, audit trails, and what happens when a barber leaves the program.
  • Attribution durability. Customer lists overlap (same end-customer at multiple shops). The attribution model has to be defensible enough to pay commissions without disputes.
  • Booking platform TOS. Squire and Booksy may not permit bulk list export by the barber under their terms. Worth verifying before we promise automated ingest.
  • Consumer fulfillment ops. CBP today ships wholesale to barbershops. DTC single-unit orders, returns, and customer service is a different operational muscle — confirm CBP has it or plans to build it.

Compliance architecture — how CBP stays clean

This is the legal model that powers Mailchimp, Klaviyo, Postmark, and every legitimate co-branded marketing platform. It's well-trodden ground. Five pillars, in order:

Core principle: the barber is the legal sender; CBP is the service provider sending on their behalf. The barber owns the consent relationship with their customer. CBP is contractually authorized to act on their authority for the duration of the program.
P1
Affiliate Agreement + DPA
Signed at barber onboarding. Authorizes CBP to send on their behalf, warrants valid customer consent, indemnifies CBP for consent violations on barber's end, includes a Data Processing Addendum covering state privacy law obligations. Drafted by counsel.
P2
Per-barber sender identity
From-name = barber shop, reply-to = barber's email, DKIM-aligned subdomain per barber (e.g. marcos.cbp-mail.com), barber's physical address in footer, transparency line: "Sent by CBP on behalf of [Shop]".
P3
Consent attestation at ingest
Barber checks a box at list upload: "I confirm these contacts have given valid marketing consent and I authorize CBP to send on my behalf." Timestamped, immutable, audit-logged. If anything is challenged, this is the indemnification trigger.
P4
Scoped unsubscribes + suppression
Each list has its own unsubscribe token, suppression file, and audit trail. Customer who unsubscribes from Marco's emails still hears from their other barber if on multiple lists. Enforced at DB + send-time, not just unsubscribe page.
P5
Operational safeguards
Complaint-rate monitoring with auto-pause thresholds (industry standard: 0.1% complaint rate triggers review). Soft warmup on new sender domains. Hard bounce handling. Frequency caps per recipient. Suppression of inactive contacts (12+ months) at first-send to lower complaint risk. Quarterly compliance audit log review.

What we build vs. what counsel drafts

  • CBP + privacy counsel drafts: Affiliate Agreement, Data Processing Addendum, privacy policy updates, consent attestation language. We do not try to be the lawyer.
  • Robot Friends builds: the OS plumbing that makes the architecture enforceable — per-barber sender domain provisioning, attestation workflow at ingest, scoped unsubscribe handling, audit logs, suppression at send-time, complaint-rate monitoring, warmup automation.

SMS is a separate, stricter conversation

TCPA requires prior express written consent for marketing texts and email-only consent does not transfer. SMS belongs in V2 with its own dedicated re-permission flow. Plaintiff-firm activity around TCPA class actions is high — under-engineering this is the fastest way to put the program at risk.

Position with Brian: compliance isn't a blocker, it's a design constraint with a known shape. Other senior devs may pitch this as a hard problem to justify higher rates. We frame it as solved-by-pattern: counsel handles the legal, we build the plumbing, here's the proven model.

Recommended addition — Booking system as bundled benefit

Strategic suggestion (v1.2 addition). This is our recommendation to surface in the discovery call — not confirmed scope. It changes the shape of the deal in ways that need Brian's input before we commit to it.

Bundle a free booking capability into the affiliate program for participating barbers. The booking layer isn't the headline product — it's the bundled benefit that makes the affiliate ask irresistible AND solves three independent problems at once:

  • Booking platform TOS problem dissolves. If barbers book through CBP-provided infrastructure, there's no Squire / Booksy export issue to solve. Data flows natively.
  • Operational scaling problem dissolves. CBP doesn't chase 4,500 shops for monthly list refreshes. Customer data is ambient — every new booking enters the system automatically.
  • Retention becomes a moat. Barbers don't quit the affiliate program because leaving means losing their booking platform too. Switching cost = lock-in.
  • Behavioral data unlocks dramatically better marketing. Bookings capture service type, frequency, recency, and no-show patterns — not just contact info. Triggered campaigns ("It's been 5 weeks since your last cut at Marco's — here's a beard balm Marco recommends") convert dramatically better than scheduled blasts. This is the quiet upside that doesn't show up in the obvious value prop.

What it costs CBP

A booking system is a real product, not a feature. Calendar conflict resolution, recurring appointments, deposits / no-show fees, SMS reminders, payments, staff scheduling, walk-in queue, calendar sync (Google / Apple) — each is a sub-product. Squire and Booksy have years of polish. Building a credible head-to-head competitor outright is 6-12 months of focused work plus an ongoing operational burden (Twilio bills, calendar API costs, support tickets when bookings break).

The "free for affiliate members" framing also commits CBP to subsidizing infrastructure indefinitely. The unit economics need modeling before we promise it — at what attach rate does the booking infra cost still leave room for the 30% commission and CBP's margin?

Phased approach we'd recommend

V1
Multi-path list ingest (no booking dependency)
CSV upload + Squire / Booksy / Schedulicity API integration where TOS permits + manual entry. Affiliate program ships independently of any booking commitment.
V2
Branded booking capture page
Lightweight customer-facing "book with [Barber Name]" web page — drop into Instagram bio, QR code, barber's existing site. Captures contact + service into CBP's system, syncs to barber's existing Google / Apple calendar (does not replace it). Cheap to build, massive data unlock. This is the strategic sweet spot — most of the value, fraction of the build.
V3+
Full booking platform (optional)
Earn into competing with Squire only after V2 proves the data flow and the affiliate program proves the economics. Quoted separately, never bundled into V1.
Pitch framing for Brian: "V1 ships the affiliate program. V2 quietly turns CBP into an acquisition platform that doesn't depend on barbers remembering to export their lists. V3 is optional — but only if the data tells you it's worth the build." Stages risk, doesn't commit CBP to running a free SaaS on day one, and earns into a moat over time.

§4Discovery Call — Question List

Seven clusters, twenty-six questions. Order matters — the first cluster establishes whether the rest of the conversation makes sense; the last cluster (booking bundle) is our strategic suggestion to surface, not Brian's confirmed scope.

A Model & Economics Foundational
  1. Two affiliate models — which one (or both)? Are the affiliates barbers referring other shops, barbers contributing their consumer list, or both?
  2. Is the 30% commission flat across all barbers, or tiered (volume bonuses, top-performer bumps, exclusivity tier)?
  3. What products are in scope — entire catalog, or a curated retail-friendly selection?
  4. Is consumer pricing the same as CBP's existing direct retail, or do you want to A/B test pricing to barber-segment lists?
  5. Who absorbs shipping + fulfillment cost — does that come off the top before the 30% calc?
B Affiliate Lifecycle
  1. How does a barber enter the program — invitation only, open application, or are existing CBP wholesale customers auto-eligible?
  2. Tax — is this a 1099 relationship? What's the issuance threshold and process?
  3. What happens to a barber's list when they leave the program — purged, retained by CBP, returned?
  4. Same end-customer on multiple barbers' lists — how do we attribute the sale (first contributor, last touch, split)?
C List Ingest & Compliance Most Important
  1. How does the list move from barber to CBP? CSV upload, Squire API, Booksy export, manual transcription?
  2. What consent does the barber's customer have today, and have you confirmed with counsel that it covers a transfer to CBP?
  3. Who is the legal sender of the campaigns — the barber or CBP? (This determines our compliance approach.)
  4. Is a re-permission flow on first contact acceptable, or does that defeat the value (high opt-out rate fear)?
  5. Unsubscribe handling — global to all CBP communications, or scoped per barber?
  6. Data subject request handling (CCPA et al.) — V1 or roadmap?
D Where Commerce Lives
  1. Will affiliate-driven sales transact on existing classicbarberproducts.com, a new storefront, or per-barber landing pages?
  2. What's the existing storefront stack — Shopify, BigCommerce, Magento, custom?
  3. Attribution mechanism — UTM, unique coupon code per barber, magic link, all of the above?
E Marketing Engine
  1. Channels at launch — email only, or email + SMS together? (TCPA dramatically changes the SMS scope.)
  2. Who builds the campaigns — CBP team writes everything, barber self-service templates, or fully managed-service?
  3. Per-barber branding scope — just logo + sender + signature, or full template customization including layout?
F Operations & Admin
  1. Who runs the OS day-to-day on CBP's side — Brian solo, a team member, an agency? What's their tech comfort level? (Shapes how much hand-holding the admin UI needs.)
G Booking system bundle (recommended addition) Strategic
  1. Have you considered bundling a booking capability into the affiliate program? Frame our recommendation: Trojan-horse approach where free booking solves the list-export problem, eliminates ongoing list-refresh chase, and creates retention switching cost.
  2. What's your appetite for the ongoing operational burden of running a free booking system — Twilio bills, calendar API costs, support tickets, payment infrastructure? Is CBP staffed to support barbers when bookings break?
  3. If yes to bundling — V2 lightweight branded capture page (drop-in widget that syncs to barber's existing Google / Apple calendar), or are you willing to commit to V3 full booking platform that competes head-to-head with Squire / Booksy?
  4. What attach rate would justify the build economically? At what % of program participants using booking does the infrastructure cost still leave room for the 30% commission and CBP's product margin?

Reserve questions if time permits

  • Existing tools to integrate with — QuickBooks, Klaviyo, ShipStation, Stripe Connect for payouts
  • Reporting cadence Brian wants weekly / monthly
  • Hosting and data residency preferences
  • V1 launch timeline target

§5Strategic Risks

The risks worth flagging before we quote anything.

Risk
Compliance kills the thesis
Why it matters
One TCPA complaint can shutter the program; CAN-SPAM violations carry per-message penalties.
Mitigation
Confirm legal sender architecture and re-permission stance early; lean toward "send-on-behalf-of-barber" pattern.
Risk
Booking platform TOS blocks list export
Why it matters
Could force CSV-upload-only V1 if API integration is contractually blocked, slowing barber adoption and increasing onboarding friction.
Mitigation
Verify Squire / Booksy / Schedulicity TOS first. If blocked, the V2 branded booking capture page (§3 recommended addition) sidesteps this entirely — data flows through CBP-controlled infrastructure rather than via export.
Risk
Build scope expansion if booking bundle is accepted
Why it matters
If Brian accepts the booking-as-bundled-benefit recommendation, scope expands meaningfully — particularly at V3 (full booking platform). Risk of over-promising on V1 timeline if not phased strictly.
Mitigation
Phase strictly. V1 ships affiliate program with no booking dependency. V2 (lightweight capture page) is small + well-defined. V3 (full platform) only commits if V2 data justifies it. Quote V1 / V2 / V3 separately so Brian can stop at any step.
Risk
Consumer fulfillment ops gap
Why it matters
CBP today is wholesale-only logistics. DTC adds returns, customer service, single-unit packing.
Mitigation
Confirm CBP has DTC fulfillment plan; if not, scope a 3PL or fulfillment-partner handoff.
Risk
Senior-dev competitor wins on pedigree
Why it matters
They'll propose more ambitious technical architecture and pitch equity-aligned commitment.
Mitigation
Lead with proof — clickable demo before the proposal. Operator-friendly economics over technical résumé.
Risk
CBP brand quality undersells the OS
Why it matters
If demo matches CBP's current visual taste, we don't differentiate from the dev's static comps.
Mitigation
Build the demo at elevated visual tier — heritage direction, premium execution. Implicitly seeds future brand work.

§6Our Positioning

Three differentiators that will actually matter to Brian, ranked by weight in the decision.

  1. Operator-friendly economics. 40-60% cheaper than a senior full-stack dev. No equity ask. No profit-sharing. Brian buys the system once and owns it. This is the lead — most ex-acquired devs propose equity or rev-share because that's what worked for them last time, and a lot of operators are tired of giving away upside.
  2. Warm relationship + prior pitch context. We've already mapped CBP's brand, voice, and operations through the CRO engagement. Reduced ramp, lower discovery cost, lower risk of the build veering off-spec.
  3. Demonstrable design + product quality. Senior devs typically ship competent but visually unimpressive product UIs. We ship a clickable demo at premium SaaS tier (Linear / Stripe / Vercel-grade) before any work is paid for. They show resume; we show product.
The competition's strength is technical pedigree. Ours is proof. Brian sees a working OS demo in roughly the time it takes the dev to write a proposal email.

§7Proposed Demo Concept

Full demo build spec lives in a separate planning doc; key beats here.

Four surfaces that tell the whole story end-to-end

  1. Admin dashboard. CBP's home — ecosystem metrics, top performers, "Launch campaign" CTA in the header.
  2. Campaign builder. Segment selection → template pick → preview → mock-send. Demonstrates the marketing engine without firing real mail.
  3. Per-barber branded email preview. Side-by-side: same campaign, two different barber brand wraps. The "aha" moment.
  4. Affiliate portal. Single barber view — list performance, attributed revenue, commission ledger, pending payout.

Optional 5th surface — booking capture page (if booking bundle is in play)

If the §3 booking-bundle recommendation lands with Brian, adding a 5th surface to the demo makes the data flow tangible:

  • Branded booking capture page. Customer-side view of what scanning a QR code in Marco's barbershop window leads to — a clean, branded "book your next cut with Marco's Cuts & Style" page that captures contact + service into CBP's system. Shows the V2 product in customer-facing form, makes the Trojan-horse mechanic visceral instead of abstract. Adds maybe a half-day to the demo build.

Build choices

  • Lunch model, not deck model — list-share consignment, not B2B referrals
  • CBP-real product names seeded into mock data — Slick Gorilla, STMNT, Brosh, Barbicide, Suavecito — so email previews feel real instead of obviously mocked
  • Generic "Affiliate OS" shell branding wrapping CBP-skinned content inside — reusable for future prospects
  • Elevated visual aesthetic — heritage-barbershop direction executed at premium SaaS tier; implicitly demonstrates what CBP's marketing surfaces could look like at higher visual taste, without naming the comparison
  • Wow-tier polish — Magic UI, Aceternity, custom motion design, careful typography (Fraunces + Geist), editorial spacing
  • Password-gated, deployed to Vercel — Mike hands Brian a URL

§8Sequencing

  1. Brief reviewedby Richard, then optionally circulated to Wally (open thread from prior CBP engagement).
  2. Demo build2–3 days at wow-polish tier. Separate repo, generic Affiliate OS naming, deployed and password-gated.
  3. Discovery call with Brianquestions in §4 as the spine; demo as the closer. Aim to confirm lunch-model assumption in the first 5 minutes.
  4. Scoped proposalinformed by call answers; structured in phases (MVP launch → V1 → V2). Paid engagement, no equity, clean ownership transfer.
  5. DecisionBrian engages or doesn't. Either way, the demo shell becomes a re-pitchable asset for other distributors.

§9Open Items for Richard

  • Confirm lunch-model-as-lead assumption (working assumption: yes)
  • Decide whether to ping Mike to verify the senior dev's actual app/exit before discovery call (low-stakes, but tightens our positioning if cited)
  • Decide whether Wally sees this brief before the demo build kicks off, or after
  • Confirm demo build location: C:\Dev\_PROJECTS\_CLIENT-PROJECTS\affiliate-os\ — new repo, generic name
  • Confirm whether to pull live CBP product photography for the demo, or generate elevated editorial product shots fresh
  • Confirm whether a client-safe version of this brief is also wanted (this version is internal — strategic-positioning and competitive-risk language is too sharp for Brian's eyes)
  • Counsel engagement — Brian needs to engage privacy/marketing counsel to draft the Affiliate Agreement + DPA. We can recommend specialists if needed (firms experienced with CAN-SPAM / TCPA / state privacy work), but we don't draft the documents ourselves. This should be flagged at discovery as a parallel workstream so the legal isn't a launch blocker.
  • Email infrastructure choice — Postmark, SES, SendGrid, or Mailgun for the per-barber DKIM subdomain architecture? Affects build cost + deliverability ceiling. Default recommendation: Postmark (best deliverability, clean API for multi-domain) or AWS SES (cheapest at scale).