Privacy Policy

We collect only what we need to provide the service. That breaks down into three buckets:

Account information

When you create an account, we store your email address, your name, and a hashed password. If you sign in with Google, we additionally store the name, email, and profile picture Google returns through the OAuth flow. We never see or store your Google password.

Content you upload or generate

DealDesk lets you upload lease PDFs, attach photos to space reports, and generate letters of intent, abstracts, financial models, comps, commission invoices, and deal records. All of that content is stored on your behalf so you can retrieve it later. We treat it as confidential and do not share it with other DealDesk users outside your own organization.

Gmail integration data (optional)

If you connect Gmail, we store an OAuth refresh token granted under three scopes: gmail.readonly, gmail.compose, and gmail.send. We use gmail.readonly to read your lease-negotiation email threads so DealDesk can identify the deal terms stated in them, base rent, lease term, free rent, tenant-improvement allowance, operating-expense terms and escalations, and prepare draft replies and Letters of Intent for your review. We use gmail.compose to create those replies as drafts in the original thread, which you review and send yourself from Gmail. We use gmail.send only to send the specific emails you compose and approve inside DealDesk. The extracted content is stored in your private, organization-scoped workspace, encrypted at rest, and is accessible only to you and members of your organization. We do not sell it, share it with third parties for their own purposes, use it for advertising, or use it to develop or train generalized AI models. We do not request any scope that lets us modify or delete your existing mail. You can revoke access at any time from your Google Account settings or from DealDesk’s integrations page; your ingested email data is deleted upon disconnection or on request.

Usage and operational data

We keep minimal operational logs, timestamps of requests, the routes you hit, error traces, so we can keep the service running and debug problems. These logs are retained for up to 30 days.

We use the data above to (a) authenticate you, (b) provide the features you explicitly ask for (abstracting a lease, drafting an LOI, sending an email you composed, etc.), (c) operate and secure the service, and (d) respond to support requests. We do not use your lease documents, abstracts, or other uploaded content to train generic AI models.

To run DealDesk, we rely on a small number of processors. Each one receives only the data necessary for its role:

• Supabase , hosts our database, authentication, and file storage. Your account credentials and uploaded content live here.
• Anthropic , provides the Claude AI models that power lease extraction, LOI drafting, and risk review. Documents are sent through Anthropic’s API with zero-retention enabled where available.
• Amazon Web Services (Bedrock) and Google Cloud (Vertex AI) , additional Claude model providers used for failover. Same zero-retention posture.
• Google , provides OAuth sign-in and, if you opt in, the Gmail API used to send LOIs.
• Inngest , handles background job processing (extraction, long-running tasks). Receives only job identifiers, not document contents.
• Netlify , hosts the application and serves static assets.
• Stripe , processes subscription payments. Receives your name, email, billing address, and payment method details (we never see or store your full card number). Governed by Stripe’s own privacy notice.
• Resend , delivers transactional email (account verification, password reset, support replies, billing receipts). Receives your email address and the message body for the email we’re sending you.

We do not sell your personal information. We do not share your data with advertisers or data brokers.

You can update your profile and disconnect integrations at any time from Settings. To request a copy of your data, correct it, or delete your account entirely, email andrewbframe@gmail.com and we’ll action it within 30 days.

California residents (CCPA / CPRA)

If you live in California, you have the right to know what personal information we have collected about you, the right to delete it, the right to correct it, and the right to opt out of any “sale” or “sharing” of personal information. We do not sell or share personal information as those terms are defined by the CCPA. To exercise these rights, use the email above. We will not discriminate against you for exercising them.

EEA/UK residents (GDPR)

If you are in the European Economic Area or United Kingdom, you have rights of access, rectification, erasure, restriction, portability, and objection under GDPR. Our lawful basis for processing is contract performance (providing the service you signed up for) and legitimate interest (keeping it secure). To exercise these rights, use the email above.

DealDesk’s use and transfer of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements. Specifically: we do not use Gmail data to train generalized AI models, we do not transfer Gmail data except as necessary to provide or improve the user-facing feature, we do not sell Gmail data, and we do not allow humans to read Gmail data unless we have your explicit consent, it’s needed for security purposes, or it’s required by law.

DealDesk publishes a Chrome extension called DealDesk for CoStar that adds a one-click Save to DealDesk button to CoStar property pages. When you click that button, the extension reads the page you’re currently viewing (building data, the Space table, document and image URLs), sends that data to getdealdesk.co using your existing DealDesk session cookie, and may follow up with a separate request to fetch the property’s images using your CoStar session so they can be attached to your Space Report.

What the extension reads and transmits

The extension only reads pages on product.costar.com and www.costar.com, and only at the moment you click the button. It transmits the scraped property data to getdealdesk.co only. Image bytes are fetched from CoStar’s authenticated CDN (csgpimgs.com) using your existing CoStar session and forwarded to DealDesk Storage so they can be attached to your report.

What the extension does NOT do

The extension does not read or transmit your CoStar username, password, session token, or any other CoStar credential. It does not run on pages other than CoStar. It does not read your browsing history, bookmarks, or any other site’s data. It does not contain third-party analytics, advertising, or telemetry.

Permissions the extension requests

The extension requests activeTab, scripting, and storage permissions, plus host permissions for product.costar.com, www.costar.com, csgpimgs.com (CoStar’s image CDN), and getdealdesk.co. The storage permission is used only to remember your preferred API base URL for development. Source code for the extension is published in the public DealDesk repository so you can audit exactly what it does.

We keep your account data for as long as your account is active. When you delete your account, we remove your personal information and uploaded content within 30 days. Anonymized aggregates (e.g., “N abstracts processed this month”) may be retained for operational analytics. Backups are retained for up to 90 days, after which deleted content is permanently purged.

We rely on Supabase’s row-level security, encrypted storage at rest, and TLS in transit. OAuth refresh tokens are stored encrypted. We follow the principle of least privilege for server-side credentials. No system is perfectly secure, if you spot a vulnerability, email us at the address above.

DealDesk is built for commercial real estate professionals. It is not directed to anyone under 18, and we do not knowingly collect personal information from children.

DealDesk’s infrastructure is hosted in the United States. If you access the service from outside the United States, you consent to your information being transferred to and processed in the United States, where data-protection laws may differ from those in your jurisdiction.

We’ll update this policy when our practices change. If the change is material, we’ll notify you by email or in-app before it takes effect. The “Last updated” date at the top of this page always reflects the current version.

Questions, requests, or complaints? Email andrewbframe@gmail.com. DealDesk is operated by Andrew Frame as a sole proprietorship based in California, United States.