Privacy Policy

PearlAudit (“we,” “us,” or “our”) operates the PearlAudit platform, a property intelligence service for New York City commercial real estate professionals. This Privacy Policy explains what information we collect, how we use it, and your rights with respect to it.

PearlAudit is a B2B professional tool. We do not collect, store, or sell consumer personal information for advertising purposes.

Account information. When you create an account, we collect your name, email address, and organizational affiliation. Authentication is handled by a third-party authentication provider. We receive a unique user identifier and the fields above; we do not receive or store passwords.

Usage data. We log the searches you perform, the dossiers you generate, PDF downloads, and timestamps for each action. This forms an audit trail tied to your account.

Billing information. Payment processing is handled by our billing provider. We receive confirmation of payment status and plan tier; we do not store full card numbers or bank account details.

Technical data. We collect standard server logs including IP address, browser user agent, and request timestamps for security and performance monitoring. We do not use cookies for advertising or behavioral tracking.

The property records we surface in dossiers are sourced from publicly available NYC municipal records. PearlAudit does not generate, store, or transmit personally identifiable information about property owners or residents. We process public government records only.

We do not collect demographic information, purchase histories, or behavioral profiles for advertising purposes. We do not sell your data to third parties.

We use the information we collect to:

• Provide and maintain the PearlAudit platform and your account
• Generate property dossiers in response to your searches
• Track credit and dossier usage against your plan limits
• Send transactional emails (receipts, password resets, usage alerts)
• Diagnose errors and improve platform performance
• Comply with legal obligations and enforce our Terms of Service

We do not use your search queries to train machine learning models, nor do we share your query history with other customers.

PearlAudit uses the following third-party services, each operating under their own privacy policies:

• Authentication provider — user authentication and session management
• Mail delivery provider — physical mail delivery for printed dossiers (address information you provide for mail delivery is transmitted to this provider)
• NYC municipal data sources — public government records; no personal data is transmitted

We do not use Google Analytics, Meta Pixel, or any third-party advertising trackers.

Account information and usage logs are retained for the duration of your account and for up to 3 years after account closure, to support billing disputes, legal compliance, and audit requirements.

You may request deletion of your account and associated data at any time by contacting us at founders@pearlaudit.com. We will process deletion requests within 30 days, subject to any legal retention obligations.

All data is encrypted in transit using TLS 1.3. Data at rest is encrypted using AES-256. Access to production systems is restricted to PearlAudit personnel on a need-to-know basis. We do not grant third-party vendors direct access to your account data.

While we implement industry-standard security measures, no system is perfectly secure. If you believe your account has been compromised, contact us immediately at founders@pearlaudit.com.

You have the right to access, correct, or request deletion of your personal information. To exercise any of these rights, email founders@pearlaudit.com. We will respond within 30 days.

If you are located in the European Economic Area or the United Kingdom, additional rights under GDPR or UK GDPR may apply. Contact us to discuss your specific situation.

We may update this Privacy Policy from time to time. Material changes will be communicated via email to the address on your account. The “Last updated” date at the top of this page reflects the most recent revision.

Questions about this Privacy Policy or your data should be directed to: