Privacy Policy

Last updated: December 2024

1. Introduction

RenderRoof ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered real estate photo editing platform.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, and password when you create an account
  • Organisation Information: Organisation name and details for team accounts
  • Payment Information: Billing details processed securely through Stripe (we do not store full card numbers)
  • Images: Property photos you upload for transformation
  • Communications: Messages you send to us via contact forms or email

2.2 Information Collected Automatically

  • Usage Data: Features used, transformations performed, and interaction patterns
  • Device Information: Browser type, operating system, and device identifiers
  • Log Data: IP address, access times, and pages viewed
  • Cookies: Session cookies for authentication and preferences

3. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve our Service
  • Process your image transformations
  • Process payments and manage your account
  • Send transactional emails (receipts, notifications)
  • Respond to your enquiries and provide customer support
  • Analyse usage patterns to improve our Service
  • Detect and prevent fraud or abuse
  • Comply with legal obligations

4. Image Processing and AI

We take special care with the images you upload:

  • Processing Only: Your images are processed solely to provide the transformation service you request
  • No AI Training: We do not use your images to train AI models without your explicit consent
  • Third-Party AI: We use third-party AI services to process transformations. These providers are contractually bound to protect your data
  • Temporary Storage: Images are stored securely and can be deleted upon your request

5. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: Third parties that help us operate our Service (cloud hosting, payment processing, AI processing, email delivery)
  • Organisation Members: If you're part of an organisation, other members may see shared content
  • Legal Requirements: When required by law, court order, or government request
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

6. Data Storage and Security

We implement industry-standard security measures to protect your data:

  • Encryption in transit (TLS/SSL) and at rest
  • Secure cloud infrastructure with Cloudflare and AWS
  • Regular security assessments and updates
  • Access controls and authentication requirements

Your data is primarily stored in secure data centres. While we take all reasonable precautions, no method of transmission or storage is 100% secure.

7. Data Retention

We retain your data as follows:

  • Account Data: Retained while your account is active and for a reasonable period after closure
  • Images: Retained until you delete them or close your account
  • Transaction Records: Retained as required for tax and legal compliance (typically 7 years)
  • Usage Logs: Retained for up to 12 months for analytics and security purposes

8. Your Rights and Choices

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your data (subject to legal retention requirements)
  • Export: Receive your data in a portable format
  • Objection: Object to certain processing of your data
  • Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, contact us at privacy@renderroof.com

9. Cookies and Tracking

We use cookies for:

  • Essential Cookies: Required for authentication and core functionality
  • Analytics Cookies: To understand how users interact with our Service

You can control cookies through your browser settings, though disabling essential cookies may affect Service functionality.

10. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses where applicable.

11. Children's Privacy

Our Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

12. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service. The "Last updated" date at the top indicates when the policy was last revised.

14. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

15. New Zealand Privacy Act

We comply with the New Zealand Privacy Act 2020 and the Information Privacy Principles. If you are unsatisfied with our response to a privacy concern, you may contact the Office of the Privacy Commissioner at privacy.org.nz