How We Handle Your Information

1. Who we are

TechResidential ("we", "us", "our") provides intelligence software, analytics, and managed services to community associations, management companies, and their vendors. This Privacy Policy applies to our public website, the customer portal, and any service we provide under a written agreement.

2. Information we collect

We collect only what we need to operate the service.

• Information you provide. Name, email, phone, company, role, and any details you include when you request a consultation, contact us, or use the customer portal.
• Account information. Email, password hash, role, multi-factor authentication state, and audit timestamps for users we provision in the customer portal.
• Project and engagement data. Tasks, hours, files, invoices, and notes related to the work we perform for your organization.
• Usage and device data. Pages visited, referring URLs, browser and device type, IP address, and approximate location, captured through standard server logs and analytics tools.
• Cookies and similar technologies. See our Cookie Policy for the full list.

3. How we use your information

• Deliver and maintain the products and services you've engaged us to provide.
• Authenticate users and protect accounts (including multi-factor authentication and audit logging).
• Respond to consultation requests and support inquiries.
• Detect and block abuse, spam, and automated traffic — including by means of Google reCAPTCHA (see Section 5).
• Measure and improve site performance and user experience using Google Analytics (see Section 5).
• Send service-related communications and, where you've opted in, occasional newsletters or product updates.
• Comply with legal obligations and enforce our agreements.

4. Legal bases for processing

Where the GDPR or similar laws apply, we rely on (a) the performance of a contract with you or your organization, (b) our legitimate interests in operating, securing, and improving the service, (c) compliance with legal obligations, or (d) your consent — for example for non-essential cookies or marketing email.

5. Third-party services

We use a small number of third-party processors to deliver core functionality. Each has its own privacy practices:

• Google reCAPTCHA — protects our consultation form against bots and abuse. Google may collect hardware and software information, such as device and application data, and send this data to Google for analysis. Use of reCAPTCHA is subject to the Google Privacy Policy and Terms of Service.
• Google Analytics — helps us understand which pages and features people use so we can improve them. Google Analytics may set cookies that record an anonymized identifier, page views, and broad geographic location. We do not transmit personally identifiable information to Google Analytics on purpose. Where required, we honor IP anonymization and consent prompts. See the Google Privacy Policy and Google's Safeguarding your data page.
• Cloud infrastructure providers — host our application and store backups under customary cloud-vendor confidentiality and security obligations.
• Email and communication providers — deliver transactional and notification email on our behalf.

6. How we share information

We don't sell your personal information. We share data only with: (a) service providers acting on our instructions and bound by confidentiality; (b) your organization or its authorized representatives where you act in a workplace capacity; (c) legal authorities where required by law, subpoena, or to protect our rights; and (d) successors in interest if we participate in a merger, acquisition, or asset sale, with notice where required.

7. Data retention

We retain personal information for as long as we have an active relationship with you or your organization, plus the period needed to satisfy legal, accounting, or reporting obligations. Audit logs and security records are kept longer to support investigations. When we no longer need data, we delete or anonymize it.

8. Security

We use industry-standard technical and organizational safeguards including encryption in transit (HTTPS/TLS), encryption at rest for sensitive stored material (including AES-256-GCM envelope encryption for shared client files), strict role-based access control, multi-factor authentication for administrative users, and regular review of access. No system is perfectly secure, but we work hard to keep yours safe.

9. Your rights and choices

Depending on where you live, you may have the right to:

• Access, correct, or delete the personal information we hold about you.
• Object to or restrict certain processing, including direct marketing.
• Receive a copy of your data in a portable format.
• Withdraw consent for cookies, analytics, or marketing communications at any time.
• Lodge a complaint with a supervisory authority.

To exercise any of these rights, email privacy@techresidential.com.

10. Children

Our services are intended for businesses and the adults who represent them. We don't knowingly collect personal information from anyone under 16.

11. International transfers

Our infrastructure and providers may process data in the United States and other countries. Where required by law, we use appropriate safeguards such as standard contractual clauses to protect international transfers.

12. Changes to this policy

We may update this policy from time to time. The "Effective" date at the top reflects the most recent revision. Material changes will be flagged on this page or, where appropriate, communicated by email.

13. Contact us

Questions or requests? Email privacy@techresidential.com or use our contact form.