Privacy Policy

01 Introduction

This Privacy Policy describes how Tenantory, LLC ("Tenantory," "we," "us") collects, uses, discloses, and protects personal information when you use our website, product, and related services (the "Service"). It applies to property managers, landlords, and their team members who hold accounts with us (collectively, "Operators") as well as to tenants, applicants, and vendors whose information Operators enter into the Service.

We are a business-to-business software provider. Most of the personal information in our systems is placed there by Operators about their tenants, applicants, and vendors. For that information, the Operator is the data controller and Tenantory is the data processor. For information we collect directly from Operators — such as Operator account details and our own marketing analytics — we are the data controller.

This policy is part of our legal agreement with Operators and is incorporated into our Terms of Service. If you are a tenant, applicant, or vendor whose information appears in Tenantory through your landlord or property manager, please direct most requests to them — but we'll still help where we're required to under law (see Section 8).

02 Information We Collect

We collect the following categories of personal information. Not all categories apply to every user — only the data necessary for the features in use.

Account information. When an Operator signs up, we collect name, email, business or workspace name, phone number, role, and authentication credentials (managed by our auth provider). Team members are invited by email and have similar account fields.

Customer Content — tenant and applicant data. Operators enter information about their tenants, applicants, and guarantors into the Service. This may include names, email and phone, postal and rental addresses, date of birth, government identifiers (where required for screening), lease terms, payment history, communication logs, uploaded documents (for example, IDs, pay stubs, or leases), and maintenance requests. We process this information on the Operator's instructions.

Payment information. Rent payments and subscription billing are processed by Stripe, Inc. We receive payment metadata (amount, last four digits, payment status, card brand) but we do not store full card numbers, CVV codes, or bank credentials. Bank-account verification for ACH is handled via Plaid; we receive confirmation tokens, not usernames or passwords.

Screening data (optional). When an Operator runs a tenant screening, we pass the applicant's authorized information to TransUnion Rental Screening Solutions, and receive back credit, criminal-history, and eviction-history report fields. These reports are governed by the Fair Credit Reporting Act and are shown only to the Operator who requested them.

Usage and device information. When you use the Service, we automatically collect device type, browser type and version, operating system, IP address, referring URL, pages visited, timestamps, and interactions with product features. We use this information for security, debugging, and product analytics (see Section 5 on cookies).

Communications. Emails, in-app messages, and support conversations you send us or that are sent on your behalf through the Service (for example, tenant rent reminders). We process message content to deliver it and to prevent abuse.

03 How We Use Information

We use the personal information described above for the following purposes:

• To operate the Service. Authenticate users, host workspaces, run rent collection and screening workflows, send transactional messages (password resets, payment receipts, rent reminders), and generate documents like leases and rent rolls.
• To support and improve the product. Respond to your questions, investigate bugs, measure which features are used, and plan future features. Internal analytics are scoped to aggregate and pseudonymous signals where possible.
• To secure the Service. Detect and prevent fraud, account takeover, abuse, and unauthorized access. We log security-relevant events and review them when alerts fire.
• To comply with law. Respond to lawful requests from regulators and law enforcement, meet tax and financial record-keeping obligations (for example, Stripe and IRS rules), and enforce our Terms of Service.
• To communicate with Operators. Send product updates, security bulletins, and — if you've opted in — marketing. You can opt out of marketing emails any time via the unsubscribe link; transactional and security emails cannot be unsubscribed while you hold an account.

No AI training without consent. We do not use Customer Content to train general-purpose AI models. Where AI features operate on your workspace data (for example, document summarization, message drafting, or maintenance triage), processing is scoped to your workspace, results are returned only to you, and inputs are not retained for cross-customer model improvement. If we ever offer an optional program that asks for consent to include anonymized data in model improvement, it will be clearly labeled and off by default.

04 Data Sharing & Third Parties

We share personal information only with trusted service providers who help us run the Service, and only for the purpose described. We have a written contract with each provider that requires them to protect the data and use it only on our instructions. We do not sell personal information, and we do not share it with data brokers.

Provider

Purpose

Stripe, Inc.

Subscription billing and tenant rent collection. Receives payment method data, transaction amounts, and customer identifiers.

Plaid Inc.

Bank account verification and ACH authorization for tenants. Receives bank linkage tokens; Tenantory does not see bank credentials.

TransUnion Rental Screening

Applicant credit, criminal, and eviction reports (where Operators enable screening). Receives applicant-authorized identifiers.

Clerk, Inc.

User authentication, session management, and multi-factor authentication. Stores credentials and session tokens.

Supabase, Inc.

Primary application database and file storage. Holds Customer Content encrypted at rest with row-level tenancy isolation.

Resend, Inc.

Transactional email delivery (receipts, notices, invitations, password resets).

Twilio, Inc.

SMS and voice delivery where enabled (for example, rent reminders and maintenance notifications to tenants).

Vercel, Inc.

Application hosting, static asset delivery, and edge middleware. Processes HTTP request and response data.

PostHog, Inc.

Product analytics and session-level debugging. Pseudonymous event data; no third-party ad tracking.

We may also disclose personal information: (a) in response to a valid legal process, such as a subpoena or court order; (b) to protect the rights, property, or safety of Tenantory, our users, or the public; (c) to a successor entity in connection with a merger, acquisition, reorganization, or sale of assets, subject to this Policy; and (d) with your consent.

05 Cookies & Tracking

We use a small number of cookies and similar technologies, all for functional or first-party analytics purposes.

Authentication cookies. Set by our auth provider to keep you logged in, protect against cross-site request forgery, and remember your workspace preference. These are strictly necessary and cannot be disabled without breaking sign-in.

First-party analytics. We use PostHog, a first-party analytics platform configured to self-host events through our domain. It records pseudonymous usage events (pages visited, buttons clicked, feature success rates) so we can find bugs and improve features. Analytics cookies never leave our infrastructure for advertising use.

What we don't do. We do not run third-party advertising trackers, pixels, or cross-site retargeting scripts on authenticated product pages. Our marketing site may include a small number of conversion-tracking pixels on the landing page; any such tracking is disclosed in our cookie banner (where required by law) with an opt-out.

Most browsers allow you to block or delete cookies. Blocking strictly-necessary cookies will break core functionality (you won't be able to sign in).

06 Data Security

Security is a first-class engineering priority at Tenantory. Our full security program — including architecture diagrams, incident response procedures, and available audit artifacts — is documented on our Security page.

Key controls include:

• Encryption in transit. All connections to and from the Service use TLS 1.2+ with modern cipher suites. HSTS is enabled on all production domains.
• Encryption at rest. Databases, object storage, and backups are encrypted at rest using AES-256. Key management is delegated to our cloud providers and follows industry practice.
• Workspace isolation. Every table that holds tenant data enforces row-level security keyed on the Operator's workspace. A query from one workspace physically cannot return another workspace's rows.
• Payments. Card and bank credentials are handled by PCI-certified processors (Stripe, Plaid). Tenantory never stores full card numbers, CVV, or banking credentials.
• Access control. Production access is limited to a small number of authorized engineers using single sign-on with enforced multi-factor authentication. All access is logged.
• Monitoring & response. Security-relevant events are logged and alerted on. We maintain an incident response plan with defined notification timelines.

No system is perfect. If you discover a vulnerability, please report it responsibly to security@tenantory.com. We credit researchers who give us a reasonable window to fix issues before public disclosure.

07 Data Retention

We keep personal information only as long as needed to provide the Service or to meet legal obligations. Retention windows vary by data type:

• Active workspace data. Retained indefinitely for as long as the Operator's subscription is active. Operators may delete individual records at any time.
• Post-cancellation export window. For 30 days after cancellation or termination, the workspace is preserved in a read-only state so the Operator can export data. After the window closes, active Customer Content is deleted from production.
• Encrypted backups. Our encrypted, access-controlled backups roll off on a rolling 90-day retention. Data included in a canceled workspace disappears from backups as backups age out.
• Financial records. Transaction records, invoices, payout logs, and related accounting data are retained for at least 7 years to comply with IRS, state tax, and Stripe record-keeping requirements.
• Security and audit logs. Retained for up to 2 years for fraud investigation and incident response, then deleted.
• Marketing list data. Retained until you unsubscribe or request deletion, plus a short suppression-list retention to ensure we don't mistakenly re-contact you.

Where you request deletion, we may retain a minimum set of fields needed to: (a) complete in-flight legal or financial obligations; (b) exercise or defend legal claims; or (c) comply with a regulator's retention requirement. We'll tell you when that applies.

08 Your Rights

Subject to local law, you have the following rights with respect to personal information we hold about you:

• Right of access. Request a copy of the personal information we hold about you.
• Right to correction. Ask us to correct inaccurate or incomplete information.
• Right to deletion. Ask us to delete your personal information, subject to the retention exceptions above.
• Right to portability. Receive a machine-readable copy of your data and have it transmitted to another controller where technically feasible.
• Right to object or restrict. Object to certain processing or ask us to restrict processing where the law gives you that right.
• Right to withdraw consent. Where we rely on your consent, withdraw it at any time (without affecting prior processing).

If you are an Operator, you can exercise most of these rights directly within the product. Otherwise, contact privacy@tenantory.com. We verify identity before acting on requests and respond within 30 days, with a possible 30-day extension for complex requests. There is no fee unless the request is manifestly unfounded or excessive.

If you believe we've mishandled your data, you can lodge a complaint with your local supervisory authority. We'd appreciate the chance to resolve it with you first at privacy@tenantory.com.

09 California Residents (CCPA / CPRA)

If you are a California resident, the California Consumer Privacy Act as amended by the California Privacy Rights Act ("CCPA") gives you additional rights with respect to your personal information:

• Right to know the categories and specific pieces of personal information we have collected about you, the sources of that information, the business purpose, and the categories of third parties with whom we share it.
• Right to delete personal information we've collected, subject to legal exceptions.
• Right to correct inaccurate personal information.
• Right to limit use of sensitive personal information to what's necessary to provide the Service.
• Right to opt out of sale or sharing of personal information. Tenantory does not sell personal information, and we do not share it for cross-context behavioral advertising. There is nothing to opt out of.
• Right to non-discrimination for exercising your privacy rights.

To exercise your California rights, email privacy@tenantory.com with the subject line "CCPA Request." You may use an authorized agent; we'll need written proof of authorization. We will verify your identity using the information we already hold about you.

10 EU / UK Residents (GDPR)

If you are in the European Economic Area, the United Kingdom, or Switzerland, the General Data Protection Regulation and its UK equivalent ("GDPR") apply to our processing. The rights described in Section 8 are available to you, and we process data on the following lawful bases:

• Contract. To provide the Service requested by an Operator and agreed to under our Terms of Service.
• Legitimate interests. To secure the Service, prevent fraud, improve the product, and communicate about the Service — balanced against your rights and expectations.
• Legal obligation. To comply with tax, financial, and other regulatory duties.
• Consent. Where we rely on your consent (for example, optional marketing emails or optional AI improvement programs), you may withdraw it at any time.

International transfers. Tenantory's primary production infrastructure is located in the United States. When we transfer personal information from the EEA, UK, or Switzerland to the US or other third countries, we rely on the Standard Contractual Clauses approved by the European Commission (and the UK Addendum / Swiss amendments where applicable), combined with supplementary technical measures such as encryption and workspace isolation. You may request a copy of our SCCs at privacy@tenantory.com.

Data Protection Officer. Our privacy contact for GDPR matters is reachable at dpo@tenantory.com. We do not currently maintain an EU/UK representative; if this changes because of product expansion, we will update this Policy. You have the right to lodge a complaint with your local Data Protection Authority.

11 Children's Privacy

Tenantory is a business tool designed for adult property owners, property managers, and their authorized team members. The Service is not directed to, marketed to, or intended for individuals under the age of 18, and we do not knowingly collect personal information from children.

If you believe that a child has provided personal information to us — for example, because a minor created an account or was listed as an occupant on a lease in a way that collects their direct information — please contact privacy@tenantory.com and we will delete it promptly.

Operators are responsible for ensuring that any occupants or applicants they enter into the Service are of an appropriate age for the data they're uploading and for securing any parental consents required by law.

12 Changes to This Policy

We may update this Privacy Policy from time to time. When we make a material change, we will post the updated Policy at this URL, update the "Last updated" date at the top, and — if you are an Operator — provide at least 30 days' advance notice by email to the primary contact on your workspace before the change takes effect.

If you disagree with a material change, you may cancel your subscription and request deletion before the change takes effect. Continued use of the Service after the effective date constitutes acceptance of the updated Policy.

Non-material changes — clarifications, typo fixes, and formatting — may be made without notice and take effect when posted.

13 Contact Information

For privacy questions, data subject requests, or a copy of our DPA or SCCs, contact:

Tenantory, LLC
Attn: Privacy
Huntsville, Alabama, USA
Email: privacy@tenantory.com
Data Protection contact: dpo@tenantory.com
Security reports: security@tenantory.com

For product support and general help, contact hello@tenantory.com. For legal matters including notices under our Terms of Service, contact legal@tenantory.com.