Privacy Policy

Last updated: December 2024

1. Introduction

GetLively ("we", "us", or "our") operates the GetLively platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our rental matching platform. Please read this Privacy Policy carefully. By using our Service, you agree to the collection and use of information in accordance with this policy.

This Privacy Policy is compliant with the General Data Protection Regulation (GDPR) (EU) 2016/679 and applicable German data protection laws.

2. Data Controller

The data controller responsible for the processing of your personal data is:

GetLively

Email: contact@getlively.de

Website: www.getlively.de

For any questions regarding data protection, please contact us at: contact@getlively.de

3. Information We Collect

3.1 Information You Provide

  • Account Information: Email address, password, first name, last name, role (tenant or landlord)
  • Profile Information:
    • For Tenants: Income, job, city preference, phone number, household size, pets, smoking preferences
    • For Landlords: Company name, phone number, address
  • Identity Documents: ID documents, SCHUFA credit reports, payslips (uploaded by tenants). Important: Documents are immediately deleted upon admin review and are never stored after verification.
  • Housemate Information: Names, contact information, income, employment details (if applicable)
  • Listing Information: Property details, images, availability, requirements (for landlords)
  • Communication: Messages sent through our platform

3.2 Information Collected Automatically

  • IP address and browser information
  • Device information and operating system
  • Usage data (pages visited, features used)
  • Cookies and similar tracking technologies (see Cookie Policy)

4. How We Use Your Information

We use the collected information for the following purposes:

  • Service Provision: To provide and maintain our rental matching service
  • Matching: To match tenants with suitable listings based on requirements and preferences
  • Verification: To verify tenant qualifications and landlord authenticity. Documents are reviewed by our admin team and immediately deleted after verification. Only the verification status is retained.
  • Communication: To facilitate communication between tenants and landlords
  • Booking Management: To manage viewing appointments and bookings
  • Account Management: To create and manage user accounts
  • Notifications: To send service-related notifications and updates
  • Improvement: To improve and optimize our Service
  • Compliance: To comply with legal obligations and prevent fraud

5. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

  • Contractual Necessity (Art. 6(1)(b) GDPR): Processing necessary to perform the rental matching service contract
  • Consent (Art. 6(1)(a) GDPR): Your explicit consent for specific processing activities (e.g., document verification)
  • Legitimate Interests (Art. 6(1)(f) GDPR): Our legitimate interests in fraud prevention, service improvement, and platform security
  • Legal Obligation (Art. 6(1)(c) GDPR): Compliance with applicable laws and regulations

6. Data Sharing and Disclosure

6.1 Sharing with Landlords

When you apply for a listing or create a booking, we share relevant information with the landlord:

  • Your profile information (name, income, preferences)
  • Document verification status (whether your documents are verified) - only for listings you apply for. Note: The actual document files are deleted immediately after verification and are never shared with landlords.
  • Housemate information (if applicable)
  • Booking and communication history

6.2 Service Providers

We may share data with trusted service providers who assist us in operating our Service:

  • Hosting and cloud storage providers
  • Email service providers
  • Payment processors (if applicable)

All service providers are contractually obligated to protect your data and comply with GDPR requirements.

6.3 Legal Requirements

We may disclose your information if required by law or in response to valid requests by public authorities.

7. Data Retention

We retain your personal data only for as long as necessary:

  • Account Data: Retained while your account is active and for 12 months after account deletion
  • Documents: Documents are immediately deleted upon admin review and verification. Only the verification status (approved/rejected) is retained permanently. Documents are never stored after verification is complete.
  • Booking Data: Retained for 3 years after the last booking for legal and accounting purposes
  • Communication Data: Retained for 2 years after the last message

After the retention period, we will securely delete or anonymize your data.

8. Your Rights (GDPR)

Under GDPR, you have the following rights regarding your personal data:

Right of Access (Art. 15 GDPR)

You can request a copy of all personal data we hold about you.

Right to Rectification (Art. 16 GDPR)

You can request correction of inaccurate or incomplete data.

Right to Erasure (Art. 17 GDPR) - "Right to be Forgotten"

You can request deletion of your data. You can delete your account at any time in your profile settings.

Right to Restrict Processing (Art. 18 GDPR)

You can request restriction of data processing in certain circumstances.

Right to Data Portability (Art. 20 GDPR)

You can request your data in a structured, machine-readable format.

Right to Object (Art. 21 GDPR)

You can object to processing based on legitimate interests.

Right to Withdraw Consent (Art. 7 GDPR)

You can withdraw consent at any time where processing is based on consent.

To exercise these rights, please contact us at: contact@getlively.de

9. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • Encryption of data in transit (HTTPS/TLS)
  • Secure file storage with access controls
  • Password hashing and secure authentication
  • Regular security assessments and updates
  • Limited access to personal data (role-based access)

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

10. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. For detailed information, please see our Cookie Policy.

11. International Data Transfers

Your data is primarily stored and processed within the European Union. If we transfer data outside the EU, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

12. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us.

13. Data Breach Notification

In the event of a data breach that may affect your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and inform affected users without undue delay.

14. Complaints

You have the right to lodge a complaint with a supervisory authority if you believe our processing of your personal data violates GDPR. The relevant authority in Germany is:

Der Bundesbeauftragte für den Datenschutz und die Informationsfreiheit

Website: www.bfdi.bund.de

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

16. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

GetLively

Email: contact@getlively.de

Website: www.getlively.de

German Version: For the German version of this Privacy Policy (Datenschutzerklärung), please see our Datenschutz page.