Privacy Statement

Effective Date: June 1, 2020

Thank you for using Stessa, Inc. (“Stessa”). Stessa gives the millions of real estate investors with single-family rentals and multifamily buildings a powerful new way to track, manage, and communicate the performance of their real estate assets.

OUR COMMITMENT TO PRIVACY:

We take our responsibility to protect the personal information provided to us seriously. This Privacy Policy explains how we do that when you use our website, online platform, mobile app, and other products and services (collectively, “Services”) and otherwise communicate with us. It sets out what we do with the personal information we collect and how we protect it, and it explains your privacy rights (if applicable).

When you post any information or other content to a public online community or forum using the Services or when you post information on any Stessa social media page, such information and/or other content is viewable to anyone on the Internet.  This public information may be collected and used by others without your or our knowledge, and the security and other protective provisions of this Privacy Policy do not apply.

IF WE CHANGE THIS PRIVACY STATEMENT:

We may make changes to this Privacy Policy from time to time, and the revised version will be effective when it is posted. If we make any material changes, we will provide notice through the Service or by other methods. We encourage you to review this Privacy Policy periodically, especially if you do not visit the website or log into the platform regularly.

THE PERSONAL INFORMATION WE COLLECT AND USE:

We collect and store personal information and use it for typical business purposes (including security and anti-fraud purposes) and, subject to the requirements of applicable law, as described more specifically below:

From you. We collect personal information, when you provide it to us, such as when you register for an account, enter property or financial data, add new properties to your portfolio, or submit a request.

  • Personal identifiers. We collect personal identifiers (such as your name, email address, investment property address, and account log-in credentials for the Services and other property management services). We use personal identifiers to provide and improve the Service, communicate with you about the Service and for marketing purposes, provide you with requested services, and respond to your requests. We use third-party account log-in credentials you provide to connect your Services account to third parties so information from those third parties can be viewed through the Services.
  • Message content. We receive messages you submit through support conversations, community forum postings, emails, and customer feedback forms on the Services, including in connection with customer service requests and messages to others. We use this information to respond to and process your requests and to improve the Services.
  • Property information. We collect property information (such as information you may provide related to your real estate holdings including property address, building details, rent roll, income, and expense information) when you enter it manually or upload files to the Services, and from other connected services as described below. We use this personal information to provide the Services, communicate with you about the Services, improve the Services, and in some instances for marketing purposes.
  • Financial information. Our third-party payment processors may collect payment card information from you when you make a payment. As part of the Services, you may upload or import financial information about rental properties including rent payment, income, expenses, and account balance information, which we use to provide the Services and which we may also analyze (as to general characteristics such as record types and volumes) in order to price, audit, and improve the Services.
  • Real estate documents. We receive any personal information located in the real estate and other documents you submit and/or upload to the Services. We may process select personal information to provide the Services.
  • Job application information. Job applications including professional, education, and employment information may be collected by us directly through the Services, by email, or on our behalf by our contracted third-party administrator(s) for applicant tracking purposes and by background check providers. These third-party administrators are permitted to process the information you provide only for purposes of providing services to us. We process the information to review your job application and for other employment-related purposes consistent with applicable law, including to contact you regarding your application and/or to contact you about other job openings that we believe may be of interest to you.

From other services that you connect to the Services. The Services can operate as a single access point to view information from other third-party services you select, such as property management, financial institutions, public records sources, and property valuation services. When you choose to connect them with the Services, we will receive information back from them to provide the Services. This information may include personal identifiers, property information, and financial information.

From customers using the Services. Our customers may submit personal information about you when they use the Services, such as when they upload lease documents. The personal information may include your personal identifiers, property information, and financial information, or any other information that a customer may choose to upload. We process this information, subject to our Terms of Service, in order to provide the Service to our customers. If you have any questions about the information that a particular customer may have obtained and uploaded into the customer’s account for use of the Services, please contact that customer.

Automatically through the Services. Like many website operators, when you access and use the Services, we and third-party vendors, such as analytics providers and online advertising services, use cookies, log data, and similar technology to automatically record personal identifiers (such as your IP address and device identifiers), information about your device (such as your browser type, locale preferences, and mobile carrier) and information concerning your usage activity on the Services (such as your interaction with our Services, the link you used to reach them, and the content and advertising displayed on them and our content and advertising on other websites and online services). We use the data to enable certain features of our Services, preserve your preferences and customize your experience when you visit and return to the Services, and to study, enhance and improve the use and capabilities of our Services, content, and advertising.

A “cookie” is a small data file that we transfer to your browser or mobile device. Most browsers provide controls whereby you can choose to block receipt of cookies, to delete cookies, or to be prompted before cookies are received. Please note that, if you delete or choose not to receive cookies from the Service, the functionality of the Services may be impaired. To find out more about cookies, including how to manage or delete them, visit https://www.allaboutcookies.org. Note that the website does not respond to browser do-not-track signals.

Inferences.  We generate inference information based on the categories of personal information above to help us evaluate your eligibility to use the Services (or for a job, if you have applied), to provide and improve the Services, and to help us offer you additional functionality, products, and services.

We also may de-identify and aggregate data we receive and use and disclose it for business purposes, including to improve the Services.

DO-NOT-SELL DISCLOSURE:

We do not sell your personal information for money or other consideration. We also do not rent, sell, or share “personal information” as defined by California Civil Code §1798.83 about you that we collect on the Services with other people or unaffiliated companies for their direct marketing purposes.

USAGE DATA, ANALYTICS, AND ONLINE ADVERTISING:

We use third-party advertising service providers to serve ads when you visit other websites and online services, third-party email service providers to send informational and marketing email, and third-party analytics service providers to help us understand and improve the usage of the Services and the effectiveness of our marketing efforts. In some situations, we permit the companies providing these services to set and access cookies (and use similar data tools, such as “pixel tags” or “web beacons”) through the Services and our marketing email. These companies may collect, for example, your personal identifiers (such as IP address, device and browser identifiers and characteristics, anonymous identifiers) and information about your device (such as operating system and language preferences). They may also collect information concerning your usage activity on our website or mobile application (such as your interaction with the website, the link you used to reach the website, and the content and advertising displayed on our website and our content and advertising on other websites and online services) and use it to provide advertisements to you on the Services and other non-affiliated websites and/or to provide analytical information for the Services.

Like many websites, we use Google Analytics to collect and process certain website usage data. To learn more about Google Analytics and how to opt out, please visit https://policies.google.com/technologies/partner-sites. You may learn more about advertising networks and opt out of receiving personalized advertisements on this browser or device from advertisers who are members of the Network Advertising Initiative or who subscribe to the Digital Advertising Alliance’s Self-Regulatory Principles for Online Behavioral Advertising by visiting the opt-out options of each of those organizations. Links to those sites are here:

Network Advertising Initiative:

Digital Advertising Alliance:

Note that, when you opt out of personalized advertising, you may continue to see our ads on other websites and online services.

SHARING PERSONAL INFORMATION:

We may provide third parties with the personal information we collect for our business purposes to assist us in providing services to you, including to process transactions or to deliver or order services at your request, or to help us market to consumers.

To Provide, Protect, and Improve the Service and Other Services. We disclose personal information as necessary to operate our business, such as with third-party providers in connection with providing the Services to you or processing your transactions. For example, if you choose to link and aggregate your property management accounts, we will transmit the account credentials you provide to those third-party services where you have an account to gather and maintain property management information used to provide the Services. In these situations, we and you understand that you are directing us to disclose personal information (including personal identifiers) to the third parties in connection with your use of the Services and directing them to share information with us from their services.

To Comply with the Law and Legal Process. We may share personal information with law enforcement, the courts, our advisors, attorneys, and others who participate in the legal process, if we believe doing so is required or appropriate to: comply with legal requirements and law enforcement requests (such as a court order or subpoena); comply with legal process (such as discovery); or protect your, our, or others’ rights, property, or safety.

Sales, Mergers, and Acquisitions. If we are involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider, your personal information may be shared with the other parties and advisors involved under an obligation of confidentiality in connection with the negotiation of such transaction, and your personal information may be sold or transferred as part of such a transaction to the other parties.

KEEPING YOUR INFORMATION SAFE:

We take the security of your personal information seriously. We use various technical and organizational security measures such as firewalls, encryption techniques, and authentication procedures, among others, to work to maintain the security of your online session and personal information. To learn more about our security measures visit https://www.stessa.com/security/.

We might transfer and store the information we collect from you outside the European Economic Area (EEA). It may be processed by staff or our suppliers outside the EEA. When we do this, we aim to make sure the information is secure and properly protected.

EMAIL OPT-OUT CONTROLS:

We may send periodic service-related alerts, account updates, portfolio summaries, notifications, newsletters, promotions, or other information via email. You may choose to stop receiving alerts, updates, summaries, newsletters, and promotions by sending an email to unsubscribe@stessa.com or following the unsubscribe instructions in the email you receive.

Please note that transactional messages including certain service-related messages that we send are necessary for the proper functioning and use of the Services and you may not have the ability to opt-out of those messages.

LINKS TO OTHER WEBSITES:

Our website may contain links to third-party websites. We have no control over, and assume no responsibility for the content, privacy policies or practices of any third-party websites or services. This Privacy Policy applies only and solely to the information collected by our Services.

MINORS:

Stessa is intended solely for individuals who are 18 or older. We do not knowingly collect personal information from any person under the age of 18. If you are under the age of 18, please do not submit any personal information to Stessa. If we learn that we have collected any personal information from anyone under 18, we will promptly take steps to delete such information and terminate the person’s account.

RETENTION OF PERSONAL INFORMATION:

We only keep information for as long as necessary to fulfill the purposes for which it was collected and as permitted or required by law, such as to comply with record keeping and other legal obligations. There may also be residual information that will remain within our backup files, databases, and other records, which will not be removed or changed, except in accordance with retention policies.

CALIFORNIA PRIVACY RIGHTS:

Under the California Consumer Privacy Act (“CCPA”), California consumers have the following rights: to request additional information about our data collection, use, disclosure, and sales practices in connection with the consumer’s personal information; to request the specific Personal Information collected about the consumer during the previous 12 months; and to request the deletion of personal information we have about the consumer. California consumers also have the right not to receive discriminatory treatment if they exercise the rights list above.

To make requests, California consumers may email us at: privacy@stessa.com or use the chat widget available on the Services. Consumers may be required to submit name, email address, and other proof of identity as may be requested, so that we can verify the request.

When you make a request, we may require that you provide information and follow procedures so that we can verify the request and your jurisdiction before responding to it. The verification steps we take may differ depending on the request you make. We will match the information that you provide in your request to information we already have on file to verify your identity. If we are able to verify your request, we will process it. If we cannot verify your request, we may ask you for additional information to help us verify your request.

California law permits California consumers to use an authorized agent to make privacy rights requests. We require the authorized agent to provide us with proof of the California consumer’s written permission (for example, a power of attorney) that shows the authorized agent has the authority to submit a request for the California consumer. An authorized agency must follow the process described below to make a request, and we will additionally require the authorized agent to verify his/her own identity and we will confirm the agent’s authority with the California consumer about whom the request was made.

We do not sell your personal information for money or other consideration. We also do not rent, sell, or share “personal information” as defined by California Civil Code §1798.83 about you that we collect on the Service with other people or unaffiliated companies for their direct marketing purposes.

UPDATE YOUR INFORMATION OR POSE A QUESTION OR SUGGESTION:

If you would like to request that we update or correct any information that you have provided to us through your use of the Services or otherwise, or if you have questions about your personal information, please send an email to privacy@stessa.com.

For all inquiries not relating to your personal information, please contact us by email at contact@stessa.com.

CONTACT INFORMATION:

Stessa, Inc.
4 Embarcadero Center Suite 1500
San Francisco, CA 94111

or by e-mailing us at privacy@stessa.com.

For all enquiries not relating to your personal information, please contact us by email at contact@stessa.com.