Privacy Policy
Last updated: 12 April 2026
SelfLet is built by Burl Digital. We take your data seriously — this policy explains what we collect, why, and what we do with it. No legalese for the sake of it.
Who we are
SelfLet is a product of Burl Digital, based in the United Kingdom. If you have questions about your data, contact us at hello@selflet.co.uk.
What we collect
When you use SelfLet, we collect and store:
- Account information — your name and email address when you sign up
- Property data — addresses, property details, compliance dates, and documents you upload (certificates, tenancy agreements, condition reports, photos)
- Tenant information — names, contact details, tenancy dates, and rent amounts you enter
- Financial data — rent records, expense entries, and payment tracking data you input
- Communications — messages logged through the comms log feature
- Usage data — basic analytics about how you use the platform (page views, feature usage) to help us improve the product
We do not collect data from your device beyond what you actively enter into SelfLet.
Why we collect it
Everything we collect is to make SelfLet work for you:
- To provide the property management features you signed up for
- To send you compliance deadline reminders and important account notifications
- To process your subscription payment
- To improve the product based on how it's actually used
We don't sell your data. We don't use it for advertising. We don't share it with anyone who isn't directly involved in running SelfLet.
Who has access to your data
We use a small number of trusted services to run SelfLet:
- Supabase — database and file storage (your property data, documents, and account info are stored here)
- Stripe — payment processing (handles your card details and subscription billing — we never see or store your full card number)
- Resend — transactional emails (sends you confirmation emails, reminders, and notifications)
- Vercel — hosting (serves the SelfLet website and app)
Each of these services has their own privacy policy and processes data under contract with us. We don't share your data with anyone else.
How we protect your data
- All data is transmitted over HTTPS (encrypted in transit)
- Data is stored in Supabase with row-level security — you can only access your own data
- File uploads are stored in private buckets with access controls
- Passwords are hashed — we can't read them and neither can anyone else
- We don't store payment card details — Stripe handles all of that
Cookies
SelfLet uses minimal cookies:
- Authentication cookie — keeps you logged in. Essential for the app to work.
- No tracking cookies — we don't use third-party advertising or tracking cookies.
How long we keep your data
Your data stays in SelfLet for as long as you have an active account. If you cancel your subscription, your data is retained for 90 days in case you change your mind, then permanently deleted.
If you want your data deleted sooner, email us at hello@selflet.co.uk and we'll sort it within 30 days.
Your rights (UK GDPR)
Under UK data protection law, you have the right to:
- Access — request a copy of the data we hold about you
- Correction — ask us to fix inaccurate data
- Deletion — ask us to delete your data
- Portability — request your data in a machine-readable format
- Object — object to processing of your data in certain circumstances
To exercise any of these rights, email hello@selflet.co.uk. We'll respond within 30 days.
If you're not happy with how we've handled things, you can complain to the Information Commissioner's Office (ICO).
Children
SelfLet is a business tool for property landlords. It's not designed for or directed at anyone under 18. We don't knowingly collect data from children.
Changes to this policy
If we make significant changes, we'll email you. Minor wording tweaks won't trigger a notification, but the "last updated" date at the top will always reflect the latest version.
Questions?
Email us at hello@selflet.co.uk. We're real people and we'll get back to you.