Your Privacy Matters

Privacy Policy

We believe privacy is a fundamental right. This policy explains how we collect, use, and protect your personal information with complete transparency.

Last Updated: January 15, 2024
GDPR & CCPA Compliant

Table of Contents

Quick Actions

Privacy Overview

Your privacy is our priority. We collect only what's necessary to provide our services and never sell your personal data.

We use industry-standard encryption to protect your data

You control what information you share and with whom

We're transparent about how we collect, use, and protect your data

Regular security audits ensure your information stays safe

Last updated: January 15, 2024

Information We Collect

We collect information you provide directly, usage data, and information from third-party services to improve your experience.

Account Information

To create and maintain your account and match you with compatible roommates

Name, email address, phone number
Profile photo and bio
Age, gender, occupation
Housing preferences and lifestyle habits

Property Information

To list and showcase rental properties on our platform

Property photos and descriptions
Location and pricing details
Amenities and house rules
Availability dates

Communication Data

To facilitate communication and resolve disputes

Messages between users
Support tickets and responses
Reviews and ratings
Event planning communications

Usage Information

To improve our services and provide personalized recommendations

Device and browser information
IP address and location data
App usage patterns
Search and filter preferences

Financial Information

To process payments and manage financial transactions

Payment method details
Billing and transaction history
Expense splitting records
Refund and dispute information

How We Use Your Information

We use your information to provide, improve, and personalize our services while keeping you safe.

Service Provision

Core platform functionality and user experience

Account creation and management
Roommate matching algorithm
Property listing and search
Communication facilitation
Expense tracking and bill splitting

Safety & Security

Protecting users and preventing fraudulent activity

Identity verification
Background checks
Fraud detection
Safety monitoring
Dispute resolution

Communication

Keeping you informed about our services

Service updates and notifications
Marketing communications (with consent)
Customer support responses
Safety alerts
Policy changes

Improvement & Analytics

Enhancing our platform based on usage patterns

Performance optimization
Feature development
User experience research
Market analysis
A/B testing

Information Sharing

We only share your information when necessary for our services, with your consent, or as required by law.

With Other Users

Information shared on your profile and during communications

Your Control
Information Shared:
Profile information (name, photo, bio, preferences)
Messages and responses
Reviews and ratings
Shared living arrangement details
Your Control:

You control what information appears on your profile

With Service Providers

Third-party services that help us operate our platform

Your Control
Information Shared:
Payment processors (Stripe, PayPal)
Background check services
Cloud hosting providers (AWS)
Analytics services (anonymized data)
Customer support tools
Your Control:

We ensure all providers meet our privacy standards

For Legal Compliance

When required by law or to protect rights and safety

Your Control
Information Shared:
Court orders and legal processes
Law enforcement requests
Protecting user safety
Preventing fraud or abuse
Enforcing our terms of service
Your Control:

We notify users when legally permitted

Business Transfers

In the event of a merger, acquisition, or sale

Your Control
Information Shared:
Due diligence processes
Asset transfers
Successor entity obligations
User notification requirements
Your Control:

Users will be notified of any ownership changes

Data Protection & Security

We implement comprehensive security measures to protect your personal information from unauthorized access, use, or disclosure.

Technical Safeguards

End-to-end encryption for sensitive data
SSL/TLS encryption for all communications
Regular security audits and penetration testing
Secure cloud infrastructure
Multi-factor authentication

Administrative Controls

Employee background checks
Privacy training for all staff
Limited access on need-to-know basis
Regular policy reviews
Incident response procedures

Physical Security

Secure data centers
Biometric access controls
24/7 monitoring
Environmental controls
Backup power systems

Data Handling

Data minimization practices
Regular data purging
Secure data transmission
Encrypted backups
Audit trails for all access

Your Privacy Rights

You have comprehensive rights regarding your personal information, including access, correction, deletion, and portability.

Access & Transparency

Know what data we have about you

Request a copy of your personal data
View data processing activities
Understand how algorithms affect you
Access privacy settings dashboard

Correction & Updates

Keep your information accurate and up-to-date

Update profile information
Correct inaccurate data
Add missing information
Modify preferences and settings

Deletion & Erasure

Remove your data when no longer needed

Delete your account entirely
Remove specific information
Clear browsing history
Cancel data processing

Data Portability

Take your data with you

Download your data
Transfer to another service
Export conversation history
Get structured data formats

Communication Control

Control how we communicate with you

Opt-out of marketing emails
Manage notification preferences
Control promotional communications
Set communication frequency

Processing Limitations

Limit how we use your information

Object to data processing
Restrict specific uses
Opt-out of profiling
Limit automated decisions

Cookies & Tracking

We use cookies and similar technologies to improve your experience, analyze usage, and provide personalized content.

Essential Cookies

Required for basic platform functionality

Required
Examples:
Login sessions
Security features
Shopping cart
Form submissions
Your Control:

Cannot be disabled as they're necessary for the service

Performance Cookies

Help us understand how you use our platform

Optional
Examples:
Page load times
Error tracking
Usage analytics
Performance monitoring
Your Control:

Can be disabled in privacy settings

Functional Cookies

Remember your preferences and choices

Optional
Examples:
Language preferences
Theme settings
Search filters
Recently viewed items
Your Control:

Can be managed in account settings

Marketing Cookies

Used for advertising and personalization

Optional
Examples:
Targeted ads
Social media integration
Conversion tracking
Personalized content
Your Control:

Can be opted out of entirely

Third-Party Services

We work with trusted partners to provide enhanced services while maintaining your privacy standards.

Payment Processing

Providers:
Stripe
PayPal
Apple Pay
Google Pay
Data Shared:
Payment information
Transaction details
Billing address
Purpose:

Secure payment processing and fraud prevention

Background Checks

Providers:
Checkr
Sterling
GoodHire
Data Shared:
Name
Date of birth
SSN
Address history
Purpose:

Identity verification and safety screening

Analytics & Performance

Providers:
Google Analytics
Mixpanel
Sentry
Data Shared:
Usage patterns (anonymized)
Error reports
Performance metrics
Purpose:

Service improvement and optimization

Communication

Providers:
Twilio
SendGrid
Zendesk
Data Shared:
Phone numbers
Email addresses
Message content
Purpose:

SMS, email, and customer support services

Cloud Infrastructure

Providers:
Amazon Web Services
Cloudflare
Data Shared:
All data (encrypted)
Backup copies
Performance logs
Purpose:

Secure hosting and content delivery

Children's Privacy

Our platform is designed for adults 18+ and we do not knowingly collect information from children under 18.

Age Restriction Notice

RoomShare is designed for adults aged 18 and above. We take children's privacy very seriously.

Our Protection Measures:

Age verification required during registration
Immediate deletion of any underage accounts discovered
Parental notification if child's information is identified
Enhanced protection measures for young adult users (18-21)
Regular monitoring for potential underage users

Full compliance with COPPA and international children's privacy laws

International Transfers

We may transfer your data internationally while ensuring adequate protection through legal frameworks.

European Union

Standard Contractual Clauses (SCCs)
GDPR compliance
Data adequacy decisions
Privacy shield framework
Regular compliance audits

United Kingdom

UK GDPR & Data Protection Act
Adequacy regulations
ICO guidelines
Brexit transition provisions
Ongoing regulatory compliance

Canada

PIPEDA Compliance
Privacy commissioner oversight
Breach notification requirements
Consent frameworks
Cross-border guidelines

Other Countries

Appropriate Safeguards
Binding corporate rules
Adequacy decisions
Derogations for specific situations
Regular security assessments

Data Retention

We retain your information only as long as necessary for our services and legal obligations.

Account Information

Active Users:

Duration of account + 30 days

Inactive Users:

3 years of inactivity

Deleted Accounts:

30 days for recovery, then permanent deletion

Exceptions:

Legal holds, ongoing disputes

Communication Data

Active Users:

Duration of account

Inactive Users:

2 years of inactivity

Deleted Accounts:

Immediate deletion

Exceptions:

Safety investigations, legal requirements

Financial Records

Active Users:

7 years from last transaction

Inactive Users:

7 years (regulatory requirement)

Deleted Accounts:

7 years (tax and audit purposes)

Exceptions:

Fraud investigations, legal disputes

Usage Analytics

Active Users:

2 years

Inactive Users:

2 years

Deleted Accounts:

Anonymized data may be retained

Exceptions:

Aggregated, non-personal statistics

Policy Updates

We may update this privacy policy to reflect changes in our practices or legal requirements.

Our Update Process:

1
30-day advance notice for material changes
2
Email notification to all active users
3
Prominent notice on our platform
4
Option to delete account if you disagree
5
Detailed change log available on request

Our Commitment

We will never make changes that reduce your privacy protections without explicit consent

Frequently Asked Questions

Quick answers to common privacy questions

Still Have Questions?

Our privacy team is here to help you understand how we protect your data

Response within 24 hours
GDPR & CCPA compliant
Your data is always protected