1. Introduction

LetoFi ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our property management platform.

2. Data Security and Storage

We take the security of your data seriously and implement multiple layers of protection:

• Your data is stored securely using Supabase, an enterprise-grade database provider built on PostgreSQL
• All data is encrypted at rest and in transit using industry-standard encryption protocols
• Regular security audits and updates are performed to maintain the highest level of protection
• Data is backed up regularly with point-in-time recovery capabilities
• We maintain strict access controls and authentication mechanisms

Our database infrastructure is hosted in EU-based data centers that comply with all relevant security certifications and standards, including ISO 27001, SOC 2, and GDPR requirements.

3. GDPR Compliance

Under the EU General Data Protection Regulation (GDPR), you have several rights regarding your personal data:

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent

To exercise any of these rights, please contact our Data Protection Officer at data@letofi.com.

4. Information We Collect

4.1 Personal Information

We may collect:

• Name and contact information
• Payment and billing information
• Property details and documentation
• Communication preferences
• Usage data and analytics

4.2 Technical Information

When you use our platform, we automatically collect:

• Device information
• IP addresses
• Browser type
• Usage patterns

5. We Don't Sell Your Data

We want to be very clear: LetoFi does not sell your personal data.** We never have, and we never will.

We only use your information to:

• Provide you with access to our platform and services
• Communicate updates or important notifications
• Improve our features and product based on user feedback

Your trust is important to us, and we're committed to keeping your data secure and private.

6. Data Processing and Protection

We process and protect your data through:

• Secure database infrastructure provided by Supabase
• End-to-end encryption for sensitive data
• Regular security assessments and penetration testing
• Strict access controls and authentication protocols
• Continuous monitoring for potential security threats

7. International Data Transfers

While we primarily process data within the European Economic Area (EEA), some data may be transferred to trusted partners outside the EEA. In such cases, we ensure appropriate safeguards are in place through:

• Standard contractual clauses
• Adequacy decisions by the European Commission
• Data processing agreements with strict security requirements
• Regular audits of data protection measures

8. Third-Party Service Providers

We work with trusted third-party service providers to enhance our platform's functionality and security. These include:

• Supabase for secure database management and storage
• Payment processors for handling financial transactions
• Analytics providers for improving our services
• Communication services for notifications

All our service providers are carefully selected and contractually bound to maintain the same level of data protection as we do.

9. Contact Us

For any privacy-related questions or concerns, please contact us at: