🔒 Privacy Policy
Your Privacy is Our Priority
Last Updated: October 11, 2025
Table of Contents
1. Introduction
PropertyVision AI (“we,” “us,” or “our”) operates a comprehensive real estate platform that combines property search, AI-powered analysis, portfolio management, and professional real estate tools. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.
By accessing or using PropertyVision AI, you agree to this Privacy Policy. If you do not agree with our policies and practices, please do not use our platform.
Key Principles:
- Transparency: We clearly explain what data we collect and why
- Control: You have full control over your personal information
- Security: We implement industry-standard security measures
- Compliance: We comply with GDPR, CCPA, and other privacy laws
- No Sale: We never sell your personal information to third parties
2. Information We Collect
2.1 Information You Provide Directly
Account Information
- Basic Details: Name, email address, password (encrypted)
- Profile Information: Phone number, profile photo, bio
- Professional Details (Agents): Agency name, license number, credentials
- Portal Preference: Agent or Client portal selection
Property Data
- Property listings you create (agents)
- Properties saved to your portfolio
- Search preferences and saved searches
- Property viewing schedules
- Notes and annotations on properties
Communications
- Messages sent through our platform
- Customer support inquiries
- Feedback and survey responses
- Email communications
Documents and Files
- Property images uploaded for AI analysis
- Documents uploaded to document management
- Reports and generated content
- Contract and legal documents
2.2 Information Collected Automatically
Usage Data
- Pages visited and features used
- Time spent on platform
- Search queries and filters applied
- Click patterns and navigation paths
- Feature engagement metrics
Device Information
- IP address and geolocation data
- Browser type and version
- Operating system
- Device identifiers
- Screen resolution and device type
Location Data
- GPS coordinates (with your permission)
- Location derived from IP address
- Search location preferences
2.3 Information from Third Parties
Authentication Services
- Google OAuth: Email, name, profile picture (with your consent)
- Replit Auth: Username, email, profile information
AI Services
- Google Gemini: Image analysis results, AI-generated content
External APIs (Optional)
- Property data from Zillow, Redfin, Trulia (if configured)
- Market data and analytics
2.4 Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience. For detailed information, please see our Cookie Policy.
3. How We Use Your Information
3.1 Core Platform Functions
- Account Management: Create and manage your account
- Authentication: Verify your identity and maintain secure access
- Service Delivery: Provide property search, AI analysis, and other features
- Personalization: Customize your experience based on preferences
3.2 Communication
- Send service updates and important notifications
- Respond to your inquiries and support requests
- Facilitate messaging between agents and clients
- Send appointment confirmations and reminders
- Deliver newsletters and marketing (with consent)
3.3 AI and Analytics
- Process images for AI property analysis
- Generate market insights and recommendations
- Create property descriptions and reports
- Improve AI accuracy and performance
3.4 Platform Improvement
- Analyze usage patterns to enhance features
- Identify and fix technical issues
- Conduct research and development
- Optimize performance and user experience
3.5 Security and Fraud Prevention
- Detect and prevent fraudulent activity
- Monitor for security threats
- Enforce our Terms of Service
- Protect user safety and platform integrity
3.6 Legal Compliance
- Comply with legal obligations
- Respond to legal requests and court orders
- Enforce our rights and protect our interests
- Resolve disputes and investigate complaints
4. Data Sharing and Disclosure
4.1 Within the Platform
- Agent-Client Communication: Contact information shared when you message agents
- Public Listings: Property listings are visible to all users
- Portfolio Sharing: Agents can share portfolios with clients (with permission)
4.2 Service Providers
We share information with trusted third-party service providers who help us operate our platform:
| Service Provider | Purpose | Data Shared |
|---|---|---|
| Google Cloud Platform | File storage and hosting | Uploaded files, property images |
| Google Gemini AI | AI analysis and generation | Property images, analysis requests |
| Neon Database | Data storage | All platform data (encrypted) |
| Google Analytics | Usage analytics | Anonymized usage data |
| Email Service | Transactional emails | Email address, message content |
All service providers are contractually bound to protect your data and use it only for specified purposes.
4.3 Legal Requirements
We may disclose your information if required by law or in response to:
- Court orders or subpoenas
- Law enforcement requests
- Legal proceedings or investigations
- Requests to protect rights, property, or safety
4.4 Business Transfers
If PropertyVision AI is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will provide notice before your data is transferred and becomes subject to a different privacy policy.
4.5 With Your Consent
We may share your information with third parties when you explicitly consent to such sharing.
5. Data Security
5.1 Security Measures
We implement comprehensive security measures to protect your information:
Technical Safeguards
- Encryption: Data encrypted in transit (TLS/SSL) and at rest (AES-256)
- Authentication: Secure session management and password hashing
- Access Controls: Role-based access restrictions
- Firewalls: Network security and intrusion prevention
- Monitoring: 24/7 security monitoring and logging
Organizational Safeguards
- Regular security audits and assessments
- Employee training on data protection
- Incident response procedures
- Data minimization practices
- Vendor security requirements
5.2 Your Responsibilities
You play a crucial role in protecting your account:
- Use a strong, unique password
- Enable two-factor authentication when available
- Keep login credentials confidential
- Log out from shared devices
- Report suspicious activity immediately
5.3 Data Breach Notification
In the unlikely event of a data breach, we will:
- Notify affected users within 72 hours
- Report to relevant authorities as required
- Provide details about the breach and affected data
- Offer guidance on protective measures
- Take immediate action to secure systems
6. Your Rights and Choices
6.1 Access and Portability
- Access: Request a copy of your personal data
- Data Export: Download your data in portable formats (JSON, CSV)
- Account Dashboard: View and manage your information anytime
6.2 Correction and Update
- Update profile information in account settings
- Correct inaccurate or incomplete data
- Request assistance from support for bulk changes
6.3 Deletion and Erasure
- Account Deletion: Permanently delete your account and data
- Selective Deletion: Remove specific items (properties, documents, messages)
- Right to be Forgotten: Request complete data erasure (GDPR)
6.4 Objection and Restriction
- Object to processing for marketing purposes
- Restrict processing in certain circumstances
- Opt-out of data collection for analytics
6.5 Communication Preferences
- Unsubscribe from marketing emails (link in every email)
- Manage notification settings in your account
- Control cookie preferences
- Opt-out of personalized recommendations
6.6 California Privacy Rights (CCPA)
California residents have additional rights:
- Know what personal information is collected
- Know if personal information is sold or disclosed
- Say no to the sale of personal information
- Access your personal information
- Request deletion of personal information
- Not be discriminated against for exercising rights
6.7 European Privacy Rights (GDPR)
EU/EEA residents have rights under GDPR:
- Right to access personal data
- Right to rectification of inaccurate data
- Right to erasure (“right to be forgotten”)
- Right to restrict processing
- Right to data portability
- Right to object to processing
- Right to withdraw consent
- Right to lodge a complaint with supervisory authority
6.8 Exercising Your Rights
To exercise any of these rights:
- Email us at support@appworkslab.com
- Subject line: “Privacy Rights Request”
- Include: Your name, email, specific request, and verification details
- We will respond within 30 days (or as required by law)
7. Children’s Privacy
PropertyVision AI is not intended for children under 13 years of age (or 16 in the EU). We do not knowingly collect personal information from children.
If you are a parent or guardian and believe your child has provided us with personal information, please contact us at support@appworkslab.com. We will promptly delete such information.
By using our platform, you represent that you are at least 18 years old or have reached the age of majority in your jurisdiction.
8. International Data Transfers
PropertyVision AI operates globally. Your information may be transferred to and processed in countries other than your own, including the United States.
8.1 Data Transfer Safeguards
- We use Standard Contractual Clauses (SCCs) approved by the EU Commission
- Ensure adequate data protection in destination countries
- Implement technical and organizational measures
- Comply with data localization requirements where applicable
8.2 EU-US Data Transfers
For transfers from the EU to the US, we rely on:
- Standard Contractual Clauses
- Supplementary measures as required by Schrems II
- Your explicit consent when appropriate
9. Data Retention
9.1 Retention Periods
| Data Type | Retention Period | Reason |
|---|---|---|
| Account Information | Until account deletion + 30 days | Account management, recovery |
| Property Listings | Until deleted by user + 90 days | Service delivery, compliance |
| Messages | Until deletion + 1 year | Dispute resolution, legal |
| Analytics Data | 26 months (Google Analytics standard) | Platform improvement |
| Documents | Until user deletion | User control |
| Transaction Records | 7 years | Tax and legal compliance |
9.2 Deletion Process
When data is deleted:
- Soft deletion: Marked for deletion, recoverable for 30 days
- Hard deletion: Permanently removed from active systems
- Backup removal: Deleted from backups within 90 days
- Anonymization: Converted to anonymous analytics data when applicable
10. Policy Updates
We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors.
10.1 Notification of Changes
When we make material changes, we will:
- Update the “Last Updated” date at the top of this policy
- Send email notification to registered users
- Display a prominent notice on our platform
- Request new consent if required by law
10.2 Review and Consent
- We encourage you to review this policy periodically
- Continued use of our platform after changes constitutes acceptance
- You may withdraw consent and delete your account if you disagree
11. Contact Information
11.1 Privacy Questions and Requests
Email: support@appworkslab.com
Subject Line: Privacy Policy Inquiry
Response Time: Within 48 hours for general inquiries, 30 days for rights requests
11.2 Data Protection Officer
For GDPR-related inquiries, you may contact our Data Protection Officer:
Email: support@appworkslab.com (Subject: DPO – GDPR Inquiry)
11.3 Supervisory Authority
EU/EEA residents have the right to lodge a complaint with their local data protection authority if they believe their privacy rights have been violated.
11.4 California Privacy Rights
California residents can contact us regarding CCPA rights:
Email: support@appworkslab.com (Subject: CCPA Request)