Domanage logo
Domanage
Blog
Sign In

Legal

Privacy Policy

Effective date: 1 March 2026  ·  Last updated: 1 March 2026

Domanage is a property management platform operated by LexyCode (“we”, “our”, or “us”), the data controller, available at domanage.app. This Privacy Policy explains what personal data we collect, how we use it, and the rights you have regarding your data.

By using Domanage you agree to the practices described in this policy. If you do not agree, please do not use the service.

1. Data We Collect

We collect the following categories of information:

  • Account information — your name and email address when you register.
  • Property & tenancy data — property details, tenant names and contacts, lease terms, utility meter readings, fixed expenses, bills, and payment records that you enter into the platform.
  • Payment information — subscription billing is handled entirely by Stripe. We do not store your card number, CVC, or full payment credentials; Stripe retains those on your behalf.
  • Usage data — standard server logs including IP addresses, browser type, pages visited, and timestamps, used for security and service improvement.
  • Email template — if you configure a custom email template for tenant bills, that template text is stored in your account.

2. How We Use Your Data

We use the data we collect to:

  • Provide, operate, and improve the Domanage service.
  • Process subscription payments via Stripe.
  • Send transactional emails (bill PDFs, account notifications) via Resend.
  • Detect and prevent fraud, abuse, and security incidents.
  • Comply with legal obligations.

We do not sell your personal data to third parties, and we do not use it for advertising purposes.

3. Third-Party Processors

We share data only with service providers that are necessary to operate the platform:

  • Stripe — payment processing and subscription management. Data shared: name, email, billing information.
  • Resend — transactional email delivery. Data shared: tenant email addresses and bill content when you send an email bill.
  • Vercel — application hosting and edge network. Data processed: all traffic to domanage.app.
  • Neon — managed PostgreSQL database hosting. Data stored: all application data in encrypted form.

Each processor is contractually bound to protect your data and to use it only to provide services to us.

4. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we will delete or anonymise your personal data within 30 days, except where we are required to retain it for legal or accounting purposes (typically up to 7 years for financial records under Croatian law).

5. Your Rights (GDPR)

If you are located in the European Economic Area you have the following rights regarding your personal data:

  • Access — request a copy of the personal data we hold about you.
  • Rectification — ask us to correct inaccurate data.
  • Erasure — request deletion of your data (“right to be forgotten”).
  • Portability — receive your data in a machine-readable format.
  • Restriction — ask us to limit how we use your data while a dispute is resolved.
  • Objection — object to processing based on legitimate interests.

To exercise any of these rights, contact us at info@domanage.app. We will respond within 30 days. You also have the right to lodge a complaint with your national data protection authority.

6. International Data Transfers

Some of our third-party processors are based outside the European Economic Area (EEA) or may process data on infrastructure located outside the EEA:

  • Stripe — headquartered in the United States; transfers are covered by Standard Contractual Clauses (SCCs) and Stripe’s participation in the EU–US Data Privacy Framework.
  • Vercel — global edge network; EU traffic is routed through EU regions where possible; transfers to non-EEA regions are covered by SCCs.
  • Neon — database hosted in AWS eu-central-1 (Frankfurt) by default; any cross-region replication is covered by SCCs.
  • Resend — US-based; transfers are covered by SCCs.

Where transfers occur, we rely on appropriate safeguards (SCCs or an adequacy decision) as required by Chapter V of the GDPR. You can request a copy of the applicable transfer mechanism by contacting us at info@domanage.app.

7. Cookies

We use a single session cookie to keep you logged in. We do not use tracking or advertising cookies.

8. Security

We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or disclosure. All data is transmitted over TLS and stored in encrypted databases. However, no system is completely secure; please contact us immediately if you suspect a security incident.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice in the application. Continued use of Domanage after changes are posted constitutes acceptance of the updated policy.

10. Contact

The data controller is LexyCode, operator of Domanage. Questions about this policy or requests to exercise your rights? Contact us at info@domanage.app.

← Back to home·Terms of Service