Privacy Policy

Introduction

RealtyProfit ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our profit management platform for real estate professionals.

Information We Collect

Account Information

When you create an account, we collect:

• Full name
• Email address
• Password (encrypted)
• Organization/brokerage name
• Phone number (optional)

Financial Data

To provide our expense tracking services, we collect:

• Real estate transaction details (property addresses, sale prices, commission amounts, close dates)
• Business expense information (vendors, amounts, categories, dates, receipts)
• Budget targets and financial goals
• Bank and credit card transaction data (via Plaid, with your explicit authorization)

Usage Data

We automatically collect:

• Log data (IP address, browser type, pages visited, time spent)
• Device information
• Feature usage analytics
• Performance metrics

How We Use Your Information

We use your information to:

• Provide Services: Track expenses, generate budget reports, analyze profitability, and provide AI-powered insights
• Improve Platform: Enhance features, fix bugs, and optimize performance
• Communicate: Send service updates, budget alerts, and account notifications
• Comply with Law: Meet legal obligations and respond to lawful requests
• Prevent Fraud: Detect and prevent unauthorized access or suspicious activity

Third-Party Services

Plaid

We use Plaid Inc. to securely connect to your bank accounts and credit cards. When you link an account, Plaid accesses your transaction history on our behalf. Your bank login credentials are never stored by RealtyProfit—they are transmitted directly to your financial institution via Plaid's secure infrastructure.

Plaid's privacy policy: https://plaid.com/legal/#consumers

Supabase

We use Supabase for database hosting and authentication. All data is encrypted at rest using AES-256 encryption and stored in secure AWS data centers.

Vercel

Our application is hosted on Vercel's infrastructure, which provides enterprise-grade security and performance.

Anthropic

We use Anthropic's Claude AI for expense categorization suggestions and insights generation. Transaction data sent to Claude is processed securely and not used for AI training.

Data Security

We implement industry-standard security measures:

• Encryption in Transit: All data transmitted between your device and our servers uses TLS 1.3 encryption
• Encryption at Rest: All database data is encrypted using AES-256 encryption
• Access Controls: Role-based access control (RBAC) ensures users only access authorized data
• Authentication: Secure password hashing and session management
• Monitoring: Continuous logging and monitoring for suspicious activity
• Regular Updates: Automated vulnerability scanning and timely security patches

Data Sharing and Disclosure

We do NOT sell your personal information to third parties.

We may share your information only in these limited circumstances:

• With Your Consent: When you explicitly authorize sharing
• Service Providers: With vendors like Plaid, Supabase, and Vercel who help us operate the platform (under strict confidentiality agreements)
• Within Your Organization: Brokers/admins can view their team members' data as part of normal business operations
• Legal Compliance: When required by law, subpoena, or court order
• Business Transfers: In the event of a merger, acquisition, or sale of assets (users will be notified)
• Protection of Rights: To prevent fraud, protect our rights, or ensure user safety

Your Rights and Choices

You have the right to:

• Access: Request a copy of your personal data
• Correct: Update or correct inaccurate information
• Delete: Request deletion of your account and associated data
• Export: Download your transaction and expense data in CSV format
• Disconnect: Unlink bank accounts at any time (Plaid access tokens deleted immediately)
• Opt-Out: Unsubscribe from marketing emails (service emails still required)
• Object: Object to certain data processing activities

To exercise these rights, contact us at privacy@realtyprofit.app

Data Retention

• Active Accounts: Data retained for the duration of your account
• Deleted Accounts: Personal data deleted within 30 days of account deletion request
• Transaction History: Retained for 7 years for tax compliance purposes (unless you request earlier deletion)
• Bank Connection Tokens: Deleted immediately upon account disconnection
• Backup Data: Removed from backups within 90 days
• Legal Holds: Data may be retained longer if required by law or ongoing legal proceedings

Children's Privacy

RealtyProfit is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we discover that a child has provided us with personal information, we will delete it immediately.

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information
• Right to opt-out of the sale of personal information (we do not sell your information)
• Right to non-discrimination for exercising your CCPA rights

To exercise these rights, email privacy@realtyprofit.app

International Users

RealtyProfit is based in the United States. If you access our service from outside the U.S., your information will be transferred to, stored, and processed in the United States. By using our service, you consent to this transfer.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last Updated" date
• Sending an email notification for significant changes

Your continued use of RealtyProfit after changes take effect constitutes acceptance of the updated policy.

Contact Us

If you have questions or concerns about this Privacy Policy, please contact us: