MyHomePlan

Legal

Privacy Policy

Your data and your clients data matter. This page explains what we collect, how we use it, where we store it, and the choices available to you.

Last updated: 14 Jan 2025

What we collect

We collect account info that you provide when you create a workspace. That includes name, email, phone, company name, and role. We also store content that you upload such as buyer records, payment plans, receipts, and project documents.

When you use the app we gather product analytics such as pages viewed, buttons clicked, device type, and rough location from IP. This helps us improve reliability and usability.

Data you provide

  • Account details like name, email, phone, and password
  • Workspace metadata like company name, brand assets, and user roles
  • Business content like buyers, payment schedules, receipts, NOCs, and contracts

Data we collect automatically

  • Usage logs, device info, and performance metrics
  • Approximate location from IP for security and fraud prevention
  • Events that help us keep the service reliable and fast

How we use data

  • Provide the service including dashboards, buyer portal, reminders, and exports
  • Operate, maintain, and secure our systems
  • Send important notices about billing, incidents, or policy updates
  • Improve features through aggregated usage analytics and testing
  • Offer support and answer questions

Lawful basis

We process personal data with your consent and to perform our contract with you. We may also process data to meet legal obligations and for legitimate interests such as fraud prevention and service improvement.

Your rights

Depending on your region you may have rights to access, correct, export, restrict, or delete personal data. We respond to verified requests within a reasonable period and consistent with local law.

Data location

Primary storage is in the United Arab Emirates. Backups and certain logs may be stored in another region with strong protections and access controls. If a transfer happens we use safeguards such as encryption in transit and at rest, strict access policies, and data processing agreements.

International transfers

Where data moves across borders we rely on appropriate mechanisms like contractual clauses and regional hosting options. We require the same or stronger protections from all processors that handle your data.

Retention

We keep personal data only as long as needed to deliver the service. When you close an account we begin a scheduled deletion. Certain records such as invoices may be kept longer where the law requires it.

Sharing and processors

We do not sell personal data. We share data with trusted processors who help us run the product. Typical categories include hosting, analytics, email and SMS delivery, and customer support tools. Each partner signs a data processing agreement and follows strong security standards.

Subprocessors

We maintain a list of current subprocessors and will notify account owners before we add a new one where required. To request the most recent list contact support.

Security

We use encryption, network isolation, access controls, and audit logs. Production access is limited to trained staff. We run regular backups and keep recovery plans. No method is perfect and we work to improve protection over time.

Incidents

If we learn of a breach that affects your data we will investigate, take steps to mitigate harm, and notify affected parties as required by law and our contracts.

Cookies

We use essential cookies to keep you signed in and to secure the session. We also use optional analytics cookies to understand feature usage. You can control non essential cookies from within the app settings.

For detailed information about our cookie usage, see our Cookie Policy.

Notifications

You may receive reminders and alerts by email SMS or WhatsApp as part of the service. You can adjust preferences in settings. For transactional notices such as receipts or critical incidents you may still receive messages so that the service works correctly.

AI features

When you use Ara or other smart features we may process prompts and outputs to serve your request and to prevent abuse. We do not use your client data to train any foundation model that is shared with others. Within your workspace you can decide what sources Ara can use.

Children

Our service is for business use and is not directed to children. If you believe a child provided personal data contact us and we will remove it.

Access requests

To make a privacy request email support and include your workspace name and a verified contact. We may ask for additional details to confirm identity and to protect your data.

Governing law

This policy is governed by applicable UAE laws and regulations along with any mandatory rules in the customers jurisdiction.

Changes to this policy

We may update this page to reflect improvements or legal requirements. If the change is material we will notify account owners by email or in app notice.

Contact

Questions about privacy or data requests
Email: hello@myhomeplan.co
Office 602, Business Bay, Dubai