Privacy Policy

Last updated: April 1, 2026

Dwelbase, Inc. ("Dwelbase," "we," "us," or "our") operates the Dwelbase platform at app.dwelbase.io and related services. This Privacy Policy describes how we collect, use, and protect your information.

1. Information We Collect

Information You Provide

  • Account Information: Name, email, phone, company name, job title
  • Billing Information: Payment card details (processed by Stripe — we never store card numbers)
  • Property Data: Building addresses, unit counts, and related property details
  • Correction Evidence: Photos, GPS coordinates, timestamps, and notes
  • Communications: Messages sent through support chat, emails, and feedback

Information Collected Automatically

  • Usage Data: Pages viewed, features used, actions taken
  • Device Information: Browser type, OS, device type, screen resolution
  • Location Data: GPS coordinates when using mobile features (with permission)
  • Log Data: IP address, access times, referring URLs

2. How We Use Your Information

  • Provide, maintain, and improve the Dwelbase platform
  • Monitor NYC building violations and compliance deadlines on your behalf
  • Send violation alerts, deadline reminders, and compliance notifications
  • Process payments and manage your subscription
  • Provide customer support
  • Analyze usage patterns to improve our product
  • Comply with legal obligations

3. How We Share Your Information

We do not sell your personal information. We share data only with:

Service Providers

  • Kinde — Authentication and identity management
  • Stripe — Payment processing
  • Neon — Database hosting
  • Vercel — Application hosting
  • Cloudflare — Security, CDN, and file storage
  • Resend — Transactional email delivery
  • Ably — Real-time data synchronization
  • PostHog — Product analytics
  • Datadog — Application monitoring
  • Crisp — Customer support chat

Legal Requirements

We may disclose information if required by law, subpoena, court order, or government request.

4. Data Security

  • All data transmitted over HTTPS/TLS encryption
  • Database encryption at rest
  • Multi-factor authentication available for all accounts
  • Role-based access controls within organizations
  • Web Application Firewall (WAF) protection
  • Regular security monitoring and incident response
  • SOC 2 compliant infrastructure providers

5. Data Retention

  • Account Data: Retained while active + 30 days after deletion request
  • Property & Violation Data: Deleted within 30 days of account closure
  • Correction Evidence: Subscription duration + 90 days
  • Billing Records: 7 years per tax requirements
  • Usage Analytics: Anonymized/aggregated indefinitely

6. Your Rights

  • Access your personal data
  • Correct inaccurate information
  • Delete your account and associated data
  • Export your data in a standard format
  • Opt out of marketing communications
  • Restrict processing of your data

Contact: [email protected]

7. Cookies

We use cookies for authentication, preferences, and analytics. You can manage preferences through our cookie consent banner.

8. California Residents (CCPA)

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt out of sale (we do not sell personal information)
  • Right to non-discrimination for exercising your rights

9. Children's Privacy

Dwelbase is not intended for anyone under 18. We do not knowingly collect information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notification. Continued use after changes constitutes acceptance.

11. Contact Us

Dwelbase, Inc.
Email: [email protected]
Website: dwelbase.io