LeasePilot AI, Inc. ("LeasePilot," "we," "us," or "our") operates the LeasePilot AI platform available at leasepilot.ai (the "Service"). This Privacy Policy explains what personal data we collect, how we use it, and what choices you have.
By using the Service you agree to the collection and use of information in accordance with this policy.
1. Information we collect
Information you provide directly
When you create an account, we collect:
- Name, email address, and password
- Business or property name
- Billing information (handled by Stripe; we do not store full card numbers)
- Property and tenant details you enter into the platform
- Communications you send us via email or chat
Information collected automatically
When you use the Service we automatically collect:
- Log data (IP address, browser type, pages visited, timestamps)
- Device identifiers and operating system
- Usage patterns and feature interactions within the app
- Cookies and similar tracking technologies (see Section 6)
Tenant payment data
If you use our payment collection features, we receive transaction data including payment amounts, dates, and partial payment method identifiers. Full payment account numbers are processed by our PCI-compliant payment processor and are never stored on our systems.
2. How we use it
We use the data we collect to:
- Provide, maintain, and improve the Service
- Process payments and send receipts
- Generate AI-powered tenant risk scores and payment predictions
- Send automated communications (reminders, alerts) on your behalf
- Respond to your support requests
- Send product updates and announcements (you can unsubscribe any time)
- Detect and prevent fraud or abuse
- Comply with legal obligations
We do not sell your personal data or your tenants' personal data to third parties for advertising purposes.
3. Sharing and disclosure
We share data only in the following limited circumstances:
Service providers
We use trusted third-party vendors who process data on our behalf under strict data processing agreements. These include cloud infrastructure providers, payment processors (Stripe), email delivery services, and analytics tools. All vendors are bound by confidentiality obligations and may only use data to provide services to us.
Legal requirements
We may disclose data if required by law, court order, or to protect the rights, property, or safety of LeasePilot, our users, or the public.
Business transfers
If LeasePilot is acquired or merges with another company, user data may be transferred as part of that transaction. We will notify you via email and a prominent notice on our website before any such transfer and give you the option to delete your account.
4. Data retention
We retain your account data for as long as your account is active. If you close your account, we delete your personal data within 90 days, except where we are legally required to retain it longer (such as for accounting and tax purposes, which is typically 7 years for financial records).
Tenant data is retained for the duration of your account and deleted on the same schedule. You may also request early deletion of specific tenant records at any time from your account settings.
5. Security
We take data security seriously. Our measures include:
- All data encrypted in transit (TLS 1.2+) and at rest (AES-256)
- SOC 2 Type II certification audited annually by an independent firm
- Role-based access controls with least-privilege principles
- Regular penetration testing by a third-party security firm
- Multi-factor authentication available and encouraged for all accounts
No method of transmission over the internet is 100% secure. We will notify you without undue delay if we become aware of a breach that affects your personal data.
6. Cookies
We use cookies and similar technologies to keep you logged in, remember your preferences, and understand how the Service is used. We use:
- Strictly necessary cookies: Required for the Service to function. Cannot be disabled.
- Analytics cookies: Help us understand usage patterns. You can opt out via your browser settings or a cookie preference banner.
- No advertising cookies: We do not run ad networks or behavioral tracking for advertising.
7. Your rights
Depending on where you are located, you may have the following rights regarding your personal data:
- Access: Request a copy of the data we hold about you
- Correction: Ask us to fix inaccurate or incomplete data
- Deletion: Request deletion of your data (subject to legal retention requirements)
- Portability: Receive your data in a structured, machine-readable format
- Objection: Object to certain types of processing, including direct marketing
- Restriction: Ask us to restrict processing in certain circumstances
To exercise any of these rights, email us at privacy@leasepilot.ai. We will respond within 30 days. For EEA and UK residents, you also have the right to lodge a complaint with your local data protection authority.
8. Children
The Service is not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us at privacy@leasepilot.ai and we will delete it promptly.
9. Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and update the "Last updated" date at the top of this page. Your continued use of the Service after changes take effect constitutes your acceptance of the updated policy.
10. Contact us
If you have questions about this Privacy Policy or how we handle your data, please contact us:
- Email: privacy@leasepilot.ai
- Mail: LeasePilot AI, Inc., 123 Market Street, Suite 400, San Francisco, CA 94105