RENT IQ OAUTH INTEGRATION PRIVACY POLICY

1. INTRODUCTION

This Privacy Policy explains how Rent IQ collects, uses, and protects your personal information when you authorize our access to your calendar or other third-party services through OAuth integrations.

2. INFORMATION WE COLLECT

2.1 Calendar Data

When you grant calendar permissions, we may access:

• Calendar events and scheduling information
• Free/busy availability status
• Event details necessary for tour scheduling

2.2 Profile Information

We may collect:

• Your name and email address
• Basic profile information from your third-party account
• Account identifiers necessary for integration functionality

2.3 Usage Data

We automatically collect:

• Integration usage statistics
• Error logs for service improvement
• Authentication tokens for maintaining connections

3. HOW WE USE YOUR INFORMATION

3.1 Service Provision

We use your information to:

• Schedule and manage property tours
• Check availability and prevent scheduling conflicts
• Send calendar invitations and updates
• Provide customer support

3.2 Service Improvement

We may use anonymized data to:

• Improve integration functionality
• Troubleshoot technical issues
• Enhance user experience

3.3 Legal Compliance

We may process your information to:

• Comply with applicable laws and regulations
• Respond to legal requests
• Protect our rights and interests

4. INFORMATION SHARING

4.1 No Sale of Data

We do not sell, rent, or trade your personal information to third parties.

4.2 Service Providers

We may share information with:

• Calendar service providers (Google, Microsoft) as necessary for integration
• Technology service providers who assist in delivering our services
• Legal authorities when required by law

4.3 Data Minimization

We only share the minimum information necessary to provide requested services.

5. DATA RETENTION

5.1 Retention Period

We retain OAuth data only as long as:

• Your integration remains active
• Necessary to provide ongoing services
• Required by applicable law

5.2 Data Deletion

We delete OAuth data within 30 days of:

• Integration disconnection
• Account termination
• Valid deletion request

6. DATA SECURITY

6.1 Security Measures

We implement:

• Industry-standard encryption for data transmission
• Secure storage protocols
• Access controls and authentication
• Regular security assessments

6.2 Data Breaches

In the event of a data breach, we will:

• Investigate and contain the incident
• Notify affected users as required by law
• Take steps to prevent future breaches

7. YOUR RIGHTS

7.1 Access and Control

You have the right to:

• Revoke OAuth permissions at any time
• Request access to your stored data
• Request correction of inaccurate information
• Request deletion of your data

7.2 Exercising Rights

To exercise your rights:

• Revoke permissions through your third-party provider settings
• Contact us atsupport@rentiq.com for data requests
• Allow up to 30 days for processing deletion requests

8. THIRD-PARTY SERVICES

8.1 External Providers

This policy covers only our handling of your data. Calendar providers (Google, Microsoft) have their own privacy policies governing their data practices.

8.2 Integration Dependencies

Our service relies on third-party APIs and may be affected by changes to their privacy practices or service availability.

9. INTERNATIONAL DATA TRANSFERS

Your information may be processed and stored in Canada. We ensure appropriate safeguards are in place for international data transfers.

10. POLICY UPDATES

10.1 Changes

We may update this policy from time to time. Material changes will be communicated through:

• Email notification to connected accounts
• Updated policy posting with revised date

10.2 Continued Use

Your continued use of OAuth integrations after policy updates constitutes acceptance of the revised policy.

11. CONTACT INFORMATION

11.1 Privacy Questions

For questions about this privacy policy or our data practices, contact us at:

• Email:support@rentiq.com
• Subject: OAuth Privacy Policy Inquiry

11.2 Data Protection Officer

For data protection matters in jurisdictions requiring a DPO, contact us using the information above.

12. GOVERNING LAW

This privacy policy is governed by the privacy laws of Nova Scotia, Canada, and applicable international data protection regulations.