Privacy Policy

Effective Date: June 27, 2026

YOURCORE respects privacy and is committed to protecting personal information in accordance with GDPR, CCPA, and Indian data protection standards.

Information We Collect

Personal Information

• Name, email address, phone number
• Company name, job title, business role
• IP address, browser type, device information

Business Information

• Lead data (buyer/seller/investor inquiries, property details, contact info)
• CRM data (client records, communication history)
• Transaction data (performance metrics, conversion tracking)
• Analytics data (inquiry volume, qualification rates, conversion funnel)

Technical Information

• System logs (API calls, webhook events, error traces)
• Device and browser fingerprints (for security and analytics)
• Cookies (session management, analytics)

How Information Is Used

• Service Delivery: Qualification processing, CRM integration, reporting
• Customer Support: Troubleshooting, optimization recommendations, onboarding
• System Analytics: Understanding usage patterns, improving accuracy
• Security Monitoring: Detecting anomalies, preventing fraud, protecting systems
• Communication: Updates, announcements, support notifications
• Legal Compliance: Meeting regulatory obligations, responding to legal requests

Data Storage & Processing

Storage Location

• Primary: Supabase (secured data centers, geo-redundant backups)
• Backups: Geographic redundancy with 30-day retention
• Transit: All data encrypted with TLS 1.2+

Security Measures

• Encryption at rest (AES-256)
• Role-based access control (RBAC)
• Automated vulnerability scanning
• Regular security audits (quarterly)
• Incident response plan

Data Sharing

YOURCORE does NOT sell personal data.

Information may be shared with:

• Service Providers
• Integration Partners: Your CRM & other third-party integrations you authorize
• Legal Authorities: When required by law, court order, or government request
• Professional Advisors: Lawyers, accountants, auditors (under NDA)

Third-Party Data Processing

When you authorize integrations, those platforms receive inquiry data per your settings. You control what data flows to each integration.

Explicit Consent for AI Processing

If you opt into AI-powered features (e.g., auto-generated property descriptions), data is processed by Anthropic Claude API under separate terms. You can disable this feature at any time.

User Rights

• Access: Request all data YOURCORE holds about you
• Correction: Request inaccurate information be corrected
• Deletion: Request deletion where legally permitted (see retention section)
• Portability: Request data export in standard formats (CSV, JSON, XML)
• Objection: Object to specific processing activities

Request Process: Submit requests to yourcoreagency@gmail.com with your account ID. Response within 14 days.

Cookies Policy

• Session cookies (authentication, user preferences)
• Analytics cookies (Google Analytics, tracking page views and interactions)
• Third-party cookies (from integrations like Zapier, CRM partners)

Users may disable cookies through browser settings. Disabling may affect functionality.

Data Retention

• Lead/contact data: 2 years post-project (or upon client request)
• System logs: 90 days
• Customer feedback and support tickets: 1 year
• Backups: 30 days (deleted automatically)

Longer Retention: Client can request extended retention for historical analysis or legal compliance.

Legal Hold: Data retained beyond schedule if required by law, litigation, or regulatory investigation.

Data Deletion

Contact: yourcoreagency@gmail.com

Include account ID, email address, and specific data categories to delete (or request full deletion). Data deleted within 30 days of request.

What's NOT Deleted: Anonymized/aggregated analytics, backup copies (deleted per standard backup schedule), and data required by law.

Security Disclaimer

No internet-based system is completely secure. While reasonable safeguards are implemented, absolute security cannot be guaranteed. You are responsible for keeping passwords and API keys secure, using strong authentication, reporting suspicious activity, and complying with security best practices.

GDPR & CCPA Compliance

For EU Residents (GDPR): Data processing is based on contract performance. You have rights to access, correction, deletion, and portability, and can file complaints with your local Data Protection Authority.

For California Residents (CCPA): You have rights to know, delete, and opt-out of data sales (we don't sell data). Requests processed within 45 days.

Data Processing Agreements (DPA): Available upon request for enterprise clients. Includes GDPR Standard Contractual Clauses. Contact: yourcoreagency@gmail.com

Contact Information

Email: yourcoreagency@gmail.com — Response Time: 14 days maximum

Document Version: 2.0 · Last Updated: June 27, 2026 · Jurisdiction: India (Delhi), compliant with GDPR, CCPA, and Indian data protection law.

For updates or corrections, contact: yourcoreagency@gmail.com