Smart Landlords
Legal hubHomepage

Privacy notice

smartHMO Privacy Notice

This notice explains how personal data is handled across the smartHMO platform.

Last updated: 5 March 2026

1. Who this notice covers

This notice applies to landlords, landlord staff, maintenance users, applicants, tenants, and service contacts who interact with smartHMO. smartHMO acts as both:

  • a controller for platform account, billing, support, and security operations; and
  • a processor for customer tenancy and operational data entered by landlords.

2. Controller details

Data controller for platform operations: smartHMO. Contact: support@smarthmo.co.uk.

3. Data we process

  • Identity and profile data (name, email, username, phone).
  • Account security data (password hash, session metadata, login activity).
  • Operational tenancy data (properties, rooms, requests, documents, messages, tasks, payments).
  • Support and compliance records (audit logs, error logs, legal request history).

4. Purposes and lawful bases

  • Provide and secure the platform: contract and legitimate interests.
  • User onboarding, approval, and support: contract and legitimate interests.
  • Compliance and audit trails: legal obligation and legitimate interests.
  • Fraud and abuse prevention: legitimate interests.
  • Transactional service communications: contract and legitimate interests.

5. Sharing and subprocessors

We share data only where required to operate the service, including hosting/infrastructure, email delivery, and optional integrations configured by customers (for example accounting and identity providers). See the Subprocessor Register.

6. International transfers

Where personal data is transferred outside the UK, smartHMO applies appropriate safeguards such as UK IDTA or UK addendum to SCCs.

7. Retention and deletion

Data is retained only as long as necessary for the purposes collected, legal obligations, and dispute handling. Details are set out in the Data Retention and Deletion Standard.

8. Your rights

You may request access, correction, erasure, restriction, objection, and portability where applicable. See the Data Subject Rights Procedure.

9. Security

We apply technical and organisational controls including encryption in transit, hashed passwords, access controls, audit logging, and incident response procedures.

10. Complaints

Contact us first at support@smarthmo.co.uk. You may also complain to the UK Information Commissioner's Office (ICO): ico.org.uk/make-a-complaint.

Smart Landlords