TrackMyPlaceEvery Step, Covered

Privacy Policy

Last updated: March 20, 2026

TrackMyPlace ("we", "our", "us") operates the TrackMyPlace platform at trackmyplace.com. We are committed to protecting your privacy. This policy explains how we collect, use, store, and safeguard your information when you use our real estate campaign management platform.

1. Information We Collect

We collect the following types of information:

  • Account information: Your name, email address, and profile details provided during registration or via Google Sign-In.
  • Platform data: Listings, client details, campaign stages, notes, documents, and other data you enter into TrackMyPlace.
  • Usage data: Pages visited, features used, browser type, IP address, and device information.
  • Google account data: If you choose to connect your Google account for integrations, we access specific Google data as described in Section 9 below.

2. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve the TrackMyPlace platform.
  • Authenticate your identity and manage your account.
  • Send transactional emails (e.g. password resets, notifications you have enabled).
  • Provide Google-integrated features you have explicitly enabled (email, calendar, contacts, drive).
  • Monitor and prevent fraud, abuse, or security incidents.

We do not sell, rent, or trade your personal information to third parties.

3. Legal Basis for Processing

We process your personal data based on:

  • Contract performance: To provide the services you signed up for.
  • Consent: When you connect third-party services such as Google.
  • Legitimate interests: To improve our platform and ensure its security.

4. Data Storage and Security

Your data is stored securely using industry-standard encryption. We use Supabase for authentication and data storage, which provides enterprise-grade security including encryption at rest and in transit (TLS 1.2+). Google OAuth tokens are encrypted using AES-256 before being stored in our database.

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide our services. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required by law to retain it. Google OAuth tokens are deleted immediately when you disconnect your Google account.

6. Cookies

We use cookies and similar technologies to maintain your session, remember your preferences, and improve your experience. These are essential for the platform to function properly. We do not use cookies for advertising or tracking across other websites.

7. Third-Party Services

We use the following third-party services:

  • Supabase: Authentication and database hosting.
  • Vercel: Application hosting and analytics.
  • Google APIs: Gmail, Calendar, Contacts, and Drive integrations (when you explicitly connect your Google account).

Each of these services has their own privacy policies. We encourage you to review them.

8. Your Rights

You have the right to:

  • Access your personal data and request a copy.
  • Correct inaccurate or incomplete data.
  • Delete your account and personal data.
  • Revoke consent for Google integrations at any time by disconnecting your Google account in Settings or via your Google Account permissions.
  • Export your data in a machine-readable format.

To exercise any of these rights, contact us at privacy@trackmyplace.com.

9. Google API Services — User Data Policy

TrackMyPlace offers optional Google integrations that require access to your Google account data. This section describes what data we access, why, and how we handle it.

9.1 Data We Access

When you connect your Google account, we request access to the following scopes:

  • Gmail (read and manage): We read your email messages to display relevant client communications within your TrackMyPlace campaign, and we may mark messages as read/unread, archive them, or apply labels when you take those actions inside TrackMyPlace. We do not permanently delete your emails.
  • Gmail (send): We send emails on your behalf when you compose and send messages through the TrackMyPlace platform. Emails are only sent when you explicitly initiate the action.
  • Google Calendar: We read and create calendar events to help you manage property inspections, client meetings, and settlement dates.
  • Google Contacts (read-only): We read your contacts to help you quickly add clients to your campaign. We do not modify your contacts.
  • Google Drive: We access files you specifically select or create through TrackMyPlace for document management (e.g. contracts, listing agreements).
  • Email address: We use your Google email address to identify your account.

9.2 How We Use Google Data

Google user data is used solely to provide the features described above within TrackMyPlace. Specifically:

  • We do not use Google user data for advertising or marketing purposes.
  • We do not sell, rent, or share Google user data with third parties.
  • We do not use Google user data to train machine learning or AI models.
  • We do not use Google user data for any purpose other than providing and improving the specific features you have enabled.

9.3 Storage and Protection of Google Data

  • Google OAuth tokens (access and refresh tokens) are encrypted using AES-256 encryption before being stored in our database.
  • Google user data is transmitted exclusively over HTTPS/TLS.
  • Access to Google data is restricted to authenticated users viewing only their own data.
  • We do not store copies of your Gmail messages, contacts, or calendar events beyond what is needed for real-time display.

9.4 Revoking Access

You can disconnect your Google account at any time from the Settings page in TrackMyPlace. When you disconnect:

  • Your Google OAuth tokens are immediately deleted from our database.
  • We will no longer have access to your Google account data.
  • You can also revoke access directly from your Google Account permissions page.

9.5 Google API Services Limited Use Disclosure

TrackMyPlace's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

10. Children's Privacy

TrackMyPlace is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes by posting a notice on the platform or sending you an email. Your continued use of TrackMyPlace after changes are posted constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this privacy policy or how we handle your data, please contact us at:

privacy@trackmyplace.com

Back to sign in