Privacy Policy

• To provide the lease abstraction service — extracting, structuring, and presenting lease data to you.
• To operate the monitoring dashboard and send deadline alert emails.
• To process payments via Stripe.
• To send transactional emails (abstraction completion, alerts, account notifications).
• To diagnose and fix technical errors.
• To improve the Service based on aggregated usage patterns.

We do not use your lease documents or their contents for marketing, advertising, data brokerage, or any purpose other than providing the Service to you.

LeasePilot uses Anthropic's Claude API to extract and structure lease information from the text of your uploaded document. Your document text is transmitted to Anthropic's servers for processing.

Anthropic acts as a data processor on our behalf and is subject to Anthropic's own privacy and security policies. We encourage you to review Anthropic's Privacy Policy.

• Encryption in transit: All data transmitted between your browser and our servers is encrypted via TLS 1.3.
• Encryption at rest: All stored files and database records are encrypted at rest using AES-256 encryption via Supabase.
• Access controls: Row-level security (RLS) is enforced at the database level. No user account can access another user's lease documents, abstractions, or account data — including LeasePilot staff in normal operations.
• Payment security: Payment processing is handled entirely by Stripe, a PCI DSS Level 1 certified payment processor. LeasePilot never handles raw payment credentials.

Despite our security measures, no internet transmission or electronic storage is 100% secure. If we become aware of a security breach affecting your data, we will notify you in accordance with applicable law.

We retain your account data, uploaded lease files, and abstraction results for as long as your account remains active. If you delete your account, all associated data — including uploaded files, abstractions, and monitored dates — is permanently deleted within 30 days.

You may delete individual leases or abstractions at any time from your dashboard. Deletion of individual items is immediate and permanent.

We may retain anonymized, aggregated data (for example, average processing time metrics) that cannot be linked back to you or your documents indefinitely.

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you.
• Deletion: Request that we delete your personal information. You can delete your account and all associated data directly from the Service, or contact us to request deletion.
• Correction: Request that we correct inaccurate personal information.
• Portability: Request an export of your data in a machine-readable format.
• Opt-out of sale: LeasePilot does not sell personal information. There is nothing to opt out of.

California residents have additional rights under the CCPA/CPRA. To exercise any of these rights, email us at privacy@leasepilot.com. We will respond within 45 days.

LeasePilot uses the following third-party services to operate:

We do not sell, rent, or share your personal information with any third party for their own marketing or advertising purposes.

LeasePilot uses strictly necessary cookies to maintain your authenticated session. We do not use advertising cookies, behavioral tracking cookies, or third-party analytics cookies that would be shared with advertising networks.

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by displaying a notice in the Service before the change takes effect. Continued use of the Service after a change constitutes acceptance of the updated policy.

For privacy-related inquiries, data deletion requests, or questions about this policy:

Email: privacy@leasepilot.com