Privacy Policy

Your name, email address, phone number, agency name, job title, corporate address, and Australian Business Number (ABN).

To preserve platform integrity, we require identity verification. This process is conducted by our third-party identity verification partner, Persona. Persona collects images of your government-issued identification documents and a video selfie verification. RentRolli does not receive, view, or store these underlying identity documents or biometric data streams; we are only provided with and store an automated verification status confirmation (e.g. Verified or Failed).

All credit card transactions and payment processing activities are securely managed by our third-party payment provider, Stripe. RentRolli does not store, process, or transmit full credit card numbers or sensitive CVV data on our servers. Stripe retains this data in accordance with international PCI DSS compliance frameworks.

When users input listing parameters or upload portfolio files to generate a RolliScore, we extract business metrics such as managed property addresses, weekly rental figures, management fee percentages, vacancy statistics, compliance tracking parameters, and historical arrears records. While this information relates predominantly to business assets and operations, any addresses or structured operational metadata that could indirectly identify individuals will be managed in accordance with this Privacy Policy.

We collect and store logs, texts, and messages exchanged within the deal rooms and messaging infrastructure hosted on our Platform.

We collect technical data automatically via system logs, including your internet protocol (IP) address, device fingerprints, operating system type, browser parameters, cookies, access times, and interaction analytics.

When a buyer and seller mutually execute a digital NDA, the platform will disclose the respective verified identities and corporate contact details to both parties to open the designated digital data room.

We share data with trusted third-party service providers who assist us in hosting, securing, maintaining, and running our digital applications. These infrastructure partners are legally bound by strict confidentiality and data protection obligations.

We may disclose your information if required to do so by applicable Australian laws, court orders, or where validly requested by a law enforcement or regulatory authority.

We deploy industry-standard technical and operational security measures, including transport layer encryption (SSL/TLS), access controls, and pseudonymisation techniques, designed to protect your personal information from unauthorised access, loss, misuse, modification, or exposure.

While we implement rigorous defensive security, no system connected to the internet can be guaranteed as entirely immune from risk. In the event of an eligible data breach that is likely to result in serious harm to individuals, we will activate our internal data breach response protocols and notify the Office of the Australian Information Commissioner (OAIC) and impacted users in accordance with the Notifiable Data Breaches (NDB) scheme under the Privacy Act.

You have a right to request access to the personal information we hold about you, or to request that we correct any inaccurate, outdated, or incomplete records. You can update most profile information directly through your account dashboard or by submitting a written request to our Privacy Officer.

You may request the deletion of your account and erasure of your personal data at any time. Upon receiving a valid deletion request, we will remove your personal identifiers from our production systems. You acknowledge that we may retain certain transactional data, digital NDA signature logs, or financial records where necessary to comply with Australian tax laws, legal evidence requirements, or corporate record-keeping obligations.

You can opt out of receiving direct marketing communications from RentRolli at any time by clicking the unsubscribe link embedded in the footer of our emails or by adjusting your notifications inside your user settings.