Privacy Policy

• Privacy Contact: [email protected]

• Mailing Address: TenantSee Inc., Canada (full address available upon request)

• Response Time: We respond to all privacy requests within 30 business days

• For urgent privacy concerns, please mark your email subject as "URGENT PRIVACY REQUEST"

• Our privacy team is available during business hours for privacy-related inquiries

• Personal information you provide when creating an account (name, email address, phone number, and billing address)

• Property and tenant information you enter into our system (by providing this information, you grant TenantSee a license to use this data solely for providing rental management services)

• Payment information processed through our secure payment partner Stripe (we do not store full credit card numbers)

• Usage data and analytics to improve our services (limited to platform functionality and user experience enhancement)

• Communications between you and our support team (stored for quality assurance and service improvement)

• Cookies and tracking data as outlined in our Cookies section below

• Provide and maintain our rental management services as outlined in our Terms of Service

• Process rental payments and track financial transactions (1% transaction fee applies)

• Send you service-related notifications, security alerts, and account updates

• Provide customer support and respond to your inquiries within our stated response times

• Improve our platform based on aggregated usage patterns (individual user data is never used for this purpose)

• Comply with legal obligations, prevent fraud, and protect our legitimate business interests

• Generate anonymized analytics and insights that we may use for business development

• We do not sell, rent, or trade your personal information to third parties for marketing purposes

• We share data with the following categories of service providers under strict data processing agreements:

• • Payment processors (Stripe Inc.) - for processing rental payments and subscription fees

• • Cloud storage providers (Amazon Web Services S3) - for secure document and data storage

• • Email service providers - for transactional emails and notifications only

• • Analytics providers - for anonymized platform usage analytics

• We may disclose information when required by law, court order, or to protect our rights and safety

• Anonymous, aggregated data may be used for research, analytics, and business development

• In the event of a business transfer, merger, or acquisition, user information may be transferred as part of the transaction with prior notice

• We implement industry-standard security measures including encryption, access controls, and regular security audits

• All data transmission is encrypted using SSL/TLS protocols (minimum TLS 1.2)

• Payment information is processed through PCI DSS compliant payment processors (Stripe)

• We conduct regular security assessments and penetration testing

• Access to personal information is restricted to authorized personnel only on a need-to-know basis

• All employees undergo privacy and security training

• We maintain comprehensive backup and disaster recovery procedures

• In the event of a data breach affecting personal information, we will notify affected users within 72 hours of discovery

• We will report data breaches to applicable privacy commissioners as required by Canadian privacy laws

• Breach notifications will include: nature of the breach, types of information involved, steps taken to address the breach, and recommended actions for users

• We maintain a data breach response plan and conduct regular breach response exercises

• You can report suspected data breaches to our privacy team at [email protected]

• Access and review your personal information through your account settings or by contacting our privacy team

• Update or correct your information at any time through your account dashboard

• Request deletion of your account and associated data (subject to legal retention requirements)

• Withdraw consent for non-essential data processing by contacting [email protected]

• Opt out of non-essential communications through your account settings or unsubscribe links

• Request a copy of your data in a portable format (CSV or JSON)

• File a complaint with us or directly with the Privacy Commissioner of Canada

• Request restriction of processing for specific data categories

• As a Canadian company, we comply with PIPEDA (Personal Information Protection and Electronic Documents Act) and applicable provincial privacy laws

• We adhere to the privacy principles of accountability, identifying purposes, consent, limiting collection, limiting use/disclosure/retention, accuracy, safeguards, openness, individual access, and challenging compliance

• We collect, use, and disclose personal information only for purposes that are reasonable and clearly identified

• You have the right to file a complaint with the Privacy Commissioner of Canada or your provincial privacy commissioner

• We maintain records of personal information in Canada in accordance with Canadian data residency requirements

• For Quebec residents: We comply with Quebec's Act respecting the protection of personal information in the private sector (Bill 64)

• We primarily store and process data within Canada using Canadian data centers

• Some service providers (such as AWS S3) may process data in secure facilities outside Canada with adequate protection measures

• Any international transfers are protected by appropriate safeguards including adequacy decisions, standard contractual clauses, or other approved transfer mechanisms

• We maintain a record of all international data transfers and the safeguards applied

• Canadian residents can request information about where their data is processed by contacting our privacy team

• We use cookies and similar technologies to enhance your experience and analyze usage patterns

• Essential cookies are necessary for the platform to function properly (login sessions, security features)

• Analytics cookies help us understand user interaction patterns (Google Analytics with IP anonymization)

• Performance cookies help us improve platform speed and functionality

• You can control cookie settings through your browser preferences or our cookie consent manager

• We do not use cookies for targeted advertising or share cookie data with advertising networks

• Third-party cookies are limited to essential service providers only

• We retain your information as long as your account is active or as needed to provide services

• Personal information is deleted within 30 days of account closure unless legal retention requirements apply

• Financial records are retained for 7 years as required by Canadian tax and business laws

• Communication records are retained for 3 years for quality assurance and legal compliance

• Usage analytics are retained in anonymized form for business intelligence purposes

• You can request specific data deletion subject to legal and contractual requirements

• We conduct quarterly reviews of retained data and purge information that is no longer needed

• TenantSee is not intended for use by individuals under 18 years of age

• We do not knowingly collect personal information from children under 18

• If we become aware that we have collected personal information from a child under 18, we will delete such information immediately

• Parents or guardians who believe their child has provided personal information to us should contact our privacy team immediately

• Account holders must be of legal age to enter into rental agreements in their jurisdiction

• We may use automated systems for fraud detection and risk assessment in payment processing

• Automated decisions that significantly affect you will include human review

• You have the right to request human review of any automated decision affecting your account

• We do not use automated decision making for rental application approvals or tenant scoring

• All significant account decisions involve human oversight and review

• TenantSee's liability for any data security incident is limited to the amount paid by you in the 12 months preceding the incident

• We disclaim all liability for the accuracy of data entered by users into the platform

• We are not liable for failures or security incidents of third-party service providers (Stripe, AWS, etc.)

• Users are responsible for maintaining the confidentiality of their account credentials

• We are not liable for data processing delays or failures due to circumstances beyond our reasonable control (force majeure events)

• This limitation of liability applies to the maximum extent permitted by applicable law

• We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements

• Material changes will be communicated via email and prominent notice on our platform at least 30 days before they take effect

• Continued use of our services after changes constitutes acceptance of the updated Privacy Policy

• Previous versions of this Privacy Policy are available upon request

• We maintain a version history with change summaries for transparency

• You will be notified of any changes that affect your rights or how your data is processed

• This Privacy Policy is governed by Canadian federal privacy laws and applicable provincial privacy legislation

• Any disputes arising from this Privacy Policy will be resolved in accordance with Canadian law

• If any provision of this Privacy Policy is deemed invalid, the remaining provisions shall remain in full force and effect

• This Privacy Policy constitutes the entire agreement between you and TenantSee regarding privacy matters

• You retain the right to file complaints with privacy commissioners regardless of this dispute resolution clause