Privacy Policy

This Privacy Policy describes how the Adaptive Rate Platform (a B2B self-storage pricing and revenue intelligence service) collects and uses information. We operate a database-driven comp engine, facility profiles, pricing recommendations (including “equivalent rate bands”), audit logs, approvals, and data import features. This policy is a template for review by your legal counsel and does not constitute legal advice.

• Account information: names, emails, company/portfolio details, role metadata for Authorized Users.
• Facility and operational data: facility addresses, unit mix, occupancy, rates, promotions, comps, approvals, audit logs, and any imported data (including third-party rate data if provided by Customer).
• Usage data: pages viewed, feature usage, device identifiers, IP address, browser type, time zone, and general telemetry used to improve reliability and user experience.
• Support interactions: messages, tickets, and attachments you send to our support or success teams.
• Integration data: data exchanged with connected systems (e.g., PMS, BI exports, or future integrations) as configured by Customer.

• Provide, operate, and secure the Service, including comp scoring, recommendations, and audit logs.
• Improve accuracy, performance, and user experience, including analytics and feature development.
• Prevent, detect, and investigate security incidents or misuse.
• Provide customer support, training, and communications about updates or changes.
• Generate aggregated and de-identified insights that do not identify Customer or facilities to improve the Service.

Depending on jurisdiction, processing may be based on performance of a contract with Customer, legitimate interests in providing and improving the Service, compliance with legal obligations, or consent where required. This template does not constitute a determination of legal bases; consult counsel for your specific use.

• Vendors/subprocessors: We may use trusted infrastructure and tooling partners for hosting, analytics, logging, email, and support functions under appropriate data protection terms.
• Legal or compliance: We may disclose information to comply with law, legal process, or to protect rights, safety, or security.
• No sale of personal information: We do not sell personal information as commonly defined in privacy regulations.
• Business transfers: In a merger, acquisition, or asset sale, data may transfer subject to this Policy.

We retain information for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Retention schedules may be adjusted based on Customer configurations or legal requirements.

We implement commercially reasonable safeguards such as encryption in transit, access controls, audit logging, and monitoring. No system is perfectly secure; we encourage Customers to maintain their own security measures and promptly report suspected incidents.

Data may be processed in locations where we or our vendors operate. Where required, we may use appropriate safeguards (such as standard contractual clauses) for cross-border transfers. Customers remain responsible for ensuring their configurations and data sourcing comply with applicable transfer rules.

We may use cookies and similar technologies for authentication, preferences, analytics, and improving the Service. You can disable cookies through browser settings, but some features may not function correctly. We do not use third-party advertising pixels in the core app experience.

For Facility Data and Customer Content, Customer is the controller (or business) and the Service acts as a processor (or service provider). We process Facility Data only per Customer instructions to deliver the Service, including comp calculations, recommendations, approvals, and audit logs. Customers are responsible for data sourcing, accuracy, and compliance with data protection laws.

Depending on jurisdiction, individuals may have rights to access, correct, delete, or restrict certain personal data. Requests should be directed to the Customer (data controller) for Facility Data. You may also contact us at [INSERT CONTACT EMAIL], and we will coordinate with the relevant Customer where applicable.

The Service is not directed to children under 16 and should not be used to store personal data about children. If you believe such data has been provided, contact us to remove it.

We may update this Policy to reflect changes to the Service or legal requirements. Material changes will be communicated through the Service or by email when feasible. Continued use after the effective date indicates acceptance.

For privacy questions or requests, contact [INSERT COMPANY NAME] at [INSERT CONTACT EMAIL]. This document is a template; consult qualified counsel to tailor it to your business and jurisdictions.