Privacy
PropSec is a hospitality compliance SaaS. We process your operational data so your team can run compliance and maintenance. We do not sell it, we do not share it, and we do not train AI models on it.
What we collect
Names, work email addresses, role assignments, and basic organization metadata for the people you invite into PropSec. Plus the operational records your team puts into the product: compliance documents, asset registers, ticket histories, inspection photos, signed certificates, training records, and vendor details.
Where it lives
- Primary database: Neon Postgres, hosted in the EU (eu-west-2).
- File uploads (photos, documents, attachments): Vercel Blob, EU region.
- Authentication: Clerk.
- AI processing: Google Gemini via Vertex AI, EU region, for AI-assisted features only. No data is retained beyond the API call, and your content is never used to train AI models.
How long we keep it
For the duration of your subscription, plus a 90-day export window after cancellation. After the export window closes we erase your organization data from production systems. Backup copies cycle out on the standard backup rotation.
Your rights (GDPR)
You have the right to access the personal data we hold about you, to correct it, to delete it, and to request a portable copy. To make a subject access request or exercise any other right, email info@propsec.co.uk. We respond within the statutory one-month window.
Contact
Questions, complaints, or data requests: info@propsec.co.uk.
PropSec Ltd. Registered in England & Wales. Email info@propsec.co.uk for our registered office address.