Privacy Policy

1. Introduction

This Privacy Policy explains how SeenHouse (“we”, “us”, “our”) collects, uses, and protects your personal data when you use https://seenhouse.uk (the “Service”).

We are committed to protecting your privacy and handling your data in accordance with UK GDPR and applicable data protection laws.

2. Data Controller

SeenHouse is the data controller of your personal data.

If you have any questions, you can contact us at: privacy@seenhouse.uk

3. What Data We Collect

3.1 Account Information

When you register, we collect:

Name
Email address
Password (hashed using Argon2id)
Authentication provider data (if using Google, Microsoft, Apple)

3.2 Authentication & Security Data

To secure your account, we may collect:

Multi-factor authentication settings
TOTP secrets (stored securely)
Email OTP codes (hashed, time-limited)
Recovery codes (hashed)
Trusted device identifiers
Login attempts and security logs

3.3 Property & User Content Data

You may choose to store:

Property details (addresses, prices, notes)
Viewing records
Contact logs (including estate agent names, emails, phone numbers)
Offers and notes
Uploaded photos

This data may include personal data about third parties (e.g. estate agents).

3.4 Technical Data

We automatically collect:

IP address
Browser type
Device information
Session data
Error logs

3.5 Waitlist / Marketing

If you join a waitlist, we collect your email address and verification status.

4. How We Use Your Data

Core Service Functionality

Provide and operate the Service
Store and display your property tracking data
Enable scoring, comparisons, and history

Account & Security

Authenticate users
Prevent fraud and abuse
Enable MFA and account recovery

Communication

Send verification emails
Send password reset emails
Send security notifications

Improvement & Monitoring

Diagnose errors
Improve performance and reliability

5. Legal Basis for Processing

We rely on the following lawful bases:

Contract — to provide the Service you signed up for
Legitimate interests — security, fraud prevention, system monitoring and debugging
Legal obligations — where required by law

6. Data Sharing

We do not sell your data.

We may share data with:

Hosting providers (infrastructure)
Error tracking (Sentry)
Email delivery services
Authentication providers (Google, Microsoft, Apple)

These providers process data according to their own privacy policies.

7. Data Storage & Security

We implement appropriate technical and organisational measures, including:

Password hashing
Encrypted storage of photos
Secure session handling
MFA support

No system is completely secure. You use the Service at your own risk.

8. Data Retention

We retain your data while your account is active, or until you request deletion.

Security-related data (e.g. logs) may be retained for a limited period for fraud prevention.

9. Your Rights

Under UK GDPR, you have the right to:

Access your data
Correct inaccurate data
Request deletion
Restrict processing
Object to processing
Data portability

To exercise these rights, contact: privacy@seenhouse.uk

10. Account Deletion

You may request account deletion at any time. Upon deletion, your personal data will be removed or anonymised. Some data may be retained where legally required.

11. Third-Party Data You Provide

You may enter personal data about others (e.g. estate agents). You are responsible for ensuring you have the right to store this data.

12. Cookies

We use cookies for:

Session management
Authentication
Security (e.g. trusted devices)

We do not use tracking cookies for advertising.

13. International Transfers

Some providers (e.g. authentication services) may process data outside the UK. We ensure appropriate safeguards are in place where required.

14. Children

The Service is not intended for users under 18.

15. Changes to This Policy

We may update this Privacy Policy. Continued use of the Service means you accept the updated policy.