LodgicBack to site

Privacy Policy

Lodgic · last updated [date]
Draft for review. This document is a tailored template. It is not legal advice. Please have it reviewed by a qualified solicitor or your data protection adviser, and complete the highlighted details, before you publish or rely on it.

This policy explains how we handle personal data in connection with Lodgic, our property management platform, and the Lodgic website. Lodgic is operated by Glynn Management Services Ltd (“we”, “us”), a company registered in England and Wales, company number 11177565, registered with the Information Commissioner’s Office under reference ZC108293. Registered office: [registered office address]. You can contact us about privacy at [privacy@lodgic.co.uk].

1. Our two roles

We act in two different roles depending on the data:

2. The data we collect

Website and enquiries

Platform accounts (our staff-account users)

Data we process for our clients (as processor)

3. How and why we use it, and our lawful bases

PurposeLawful basis
Responding to your enquiry and setting up accessSteps to enter a contract, and our legitimate interests in responding
Providing, securing and supporting the platform to our clientsContract with the client; our legitimate interests in a secure, working service
Authentication, fraud prevention and audit loggingLegitimate interests, and legal obligation
Processing tenant and property data inside the platformOn the client’s instructions, under our processor agreement
Any marketing emails to business contactsConsent, or legitimate interests with an easy opt out

4. The AI assistant

Where a client switches it on, an assistant helps triage tenant messages. When it is on, the tenant’s message text, first name, the property address and photographs or short videos of the reported issue may be sent to our AI provider to generate a reply. It is instructed never to send financial figures such as rent, balances or deposits. The assistant is optional: with its key removed, nothing is sent to the AI provider and the platform falls back to fixed, rules-based handling.

5. The WhatsApp service line

Tenants of a client business can contact that business over WhatsApp. Messages, and any photos or videos sent, are delivered through the WhatsApp Business platform and stored in the client’s space in Lodgic as a record of the tenancy. Standard WhatsApp terms apply to the messaging itself.

6. Who we share data with

We do not sell personal data and we do not share it with advertisers. We use a small number of carefully chosen service providers (sub-processors) to run the platform. They act on our instructions under contract:

ProviderPurposeLocation
CloudflareHosting, database, file storage, securityUK / EU (configured)
Meta Platforms (WhatsApp)Tenant messagingEU / US
AnthropicOptional AI assistantUS
ResendTransactional email (codes, notices)US
GoogleMaps and property data featuresUS
TwilioOptional emergency SMS alertsUS

We may also disclose data where the law requires it.

7. International transfers

Some providers are outside the UK. Where personal data is transferred internationally we rely on appropriate safeguards, such as the UK International Data Transfer Agreement or the UK addendum to the EU Standard Contractual Clauses, together with additional measures where needed.

8. How long we keep it

As a controller, we keep enquiry and account data only as long as needed for the purpose and any legal requirement. As a processor, we keep client data for as long as the client’s agreement requires; the platform applies retention periods such as tenancy records for six years, communications for around two years, and financial records for six years, unless the client sets otherwise. On the end of a client’s agreement we return or delete their data as instructed, except where we must keep it by law.

9. How we protect it

The platform is encrypted in transit and at rest, access is controlled with two-factor authentication, each client’s data is isolated from every other client, sensitive credentials are encrypted, actions are audit-logged, and the service sits behind denial-of-service protection. No system is ever completely immune, so we keep our measures under review.

10. Your rights

You have the right to access your data, to have it corrected or erased, to restrict or object to processing, and to data portability, subject to the usual conditions. Where we rely on consent you can withdraw it at any time. If you are a tenant or supplier of a client business, please contact that business, as they control that data; we will assist them. To exercise a right with us, contact [privacy@lodgic.co.uk].

11. Cookies

Our marketing site uses only what is strictly necessary and does not run advertising or analytics tracking. The platform uses local browser storage to keep you signed in. See our Cookie Policy for detail.

12. Children

Lodgic is a business tool and is not intended for children. We do not knowingly collect data from children.

13. Changes

We may update this policy and will change the date above when we do.

14. Complaints

If you have a concern you can contact us first. You also have the right to complain to the Information Commissioner’s Office at ico.org.uk.