Homable Privacy Policy
Last Updated: 10 February 2026 (Beta Version)
1. Introduction and Beta Disclaimer
Homable ("we", "us", or "our") is committed to protecting your personal data and privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use Homable's website, mobile application, and services (collectively, the "Services").
We adhere to the EU General Data Protection Regulation (Regulation (EU) 2016/679, "GDPR"), the German Federal Data Protection Act (Bundesdatenschutzgesetz, "BDSG"), the German Telecommunications-Telemedia Data Protection Act (Telekommunikation-Telemedien-Datenschutz-Gesetz, "TTDSG"), the EU Digital Services Act (Regulation (EU) 2022/2065, "DSA"), and the EU Regulation on electronic identification and trust services (Regulation (EU) No 910/2014, "eIDAS"), as applicable.
Beta Disclaimer: Homable is currently a private, non-commercial beta platform, operated for testing and evaluation purposes only. It is not operated by a registered company and does not offer commercial services as defined by §5 TMG (German Telemedia Act). The platform does not involve any paid features, monetization, or brokerage activity. No legal, financial, or real estate advice is provided. Use is entirely voluntary. The site is intended to assess interest and functionality only and may be modified or taken offline at any time. Features and data processing activities may evolve during the beta phase, but we will not reduce your rights or the level of protection without proper notice.
By using our Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with this Policy, please discontinue use of our Services.
2. Data Controller and Contact Information
The data controller responsible for the processing of your personal data in connection with Homable is:
Nikita Mullovskii Saarbruecker Str. 7 10405 Berlin, Germany Email: dmytro@homable.de Phone: +49 176 356 08052
Data Protection Contact Person: Nikita Mullovskii serves as both the data controller and the designated contact person for all data protection matters. For any questions, concerns, or requests regarding your personal data, you may contact:
- Email: dmytro@homable.de
- Postal Address: Attn: Data Protection -- Nikita Mullovskii, Saarbruecker Str. 7, 10405 Berlin, Germany
3. Scope
This Privacy Policy applies to personal data we process in relation to:
- Visitors to our website or application;
- Users who register an account or use our Services (including beta testers);
- Any other individuals whose data we receive in connection with our Services (e.g., if you sign a document via our platform, go through identity verification, or submit a pre-qualification request).
It covers both EU and non-EU users. We provide equal privacy protections to all users wherever you are located. If local laws grant you additional rights beyond the GDPR (for example, California's CCPA or Brazil's LGPD), we will honour those as well.
4. Categories of Personal Data We Collect
We only collect personal data that is necessary for the purposes described in this Policy (data minimisation principle). Below are the categories of data we may collect:
4.1 Account and Profile Information
When you create an account, you provide your name, email address, and phone number. Homable uses a passwordless login process: we send a secure one-time login link or verification code to your email address to authenticate your access. We do not store passwords. You may also provide optional profile details such as a profile photo (avatar) or address.
4.2 Identity Verification Data (via Veriff)
When identity verification is required (e.g., for listing a property or submitting a pre-qualification request), we use Veriff (Veriff OU, Estonia, EU) as a secure third-party identity verification provider. You may be asked to submit a government-issued ID document and perform a biometric facial scan. Please note:
- Homable does not store your ID documents or facial scans. These are processed directly by Veriff.
- Homable only receives extracted identity attributes: first name, last name, date of birth, nationality, document type, document address, and verification status.
- Homable does not share your original ID documents with any third parties.
- Any biometric processing (facial recognition) by Veriff is based on your explicit consent, which you provide at the time of verification (Art. 9(2)(a) GDPR).
4.3 Ownership Verification Documents
If you list a property, we may request proof of ownership, such as title deeds, land registry excerpts (Grundbuchauszug), or similar documents. These are reviewed manually for verification purposes and stored securely. They are not shared externally unless you explicitly consent (e.g., for transfer to a notary partner or an approved buyer/tenant).
4.4 Property Listing Data
When you post a property listing, you provide details including:
- Property address or approximate location
- Property type (apartment, house, etc.)
- Size (square metres), number of rooms
- Price or rent amount, fees
- Availability date
- Videos, photographs, floor plans
- Energy performance certificates
- Appraisal reports and other supporting documents
By submitting a listing, you agree that this information may be made publicly available on our platform. Supporting documents (floor plans, energy certificates, appraisals) may contain personal data or property identifiers and are stored securely.
4.5 Pre-Qualification Request Data
If you submit a buyer or tenant pre-qualification request, we collect a comprehensive set of data to present your profile to property owners. This may include:
- Verified identity details (via Veriff): first name, last name, date of birth, ID verification status, document address
- Employment and income information: employer name, job title, contract type, sector, LinkedIn URL, payslips, bank statements, supporting documents
- Financial situation and purchase/rent readiness: down payment proof, financing status, SHUFA credit report, savings declaration, net income
- Household and lifestyle data: family status, number of adults/children, pets, interests/hobbies, voluntary introduction (text or video)
- Rental history: prior landlords, eviction or late payment history, missed payments, landlord references
Providing this information is mandatory for interaction with listings (e.g., requesting viewings, submitting offers). Homable does not independently verify, score, or endorse this information. It is only shared with property owners after your explicit consent.
4.6 E-Signature and Contract Data
If you use our platform to electronically sign documents -- such as a Letter of Intent (LOI) or a residential rental contract -- via our integrated partner Dropbox Sign, we collect the information contained in those documents. This may include names, addresses, signatures, and any other personal data in the document being signed. The LOI is auto-filled using information you have provided. Rental contracts are based on standard German templates and auto-filled with submitted user data.
Electronic signatures facilitated through Dropbox Sign constitute advanced electronic signatures within the meaning of the eIDAS Regulation (Regulation (EU) No 910/2014). For rental agreements exceeding 12 months, German civil law (§550 BGB) may require a qualified electronic signature (QES) or physical signature for enforceability. Homable does not currently provide QES functionality.
4.7 Document Exchange Data
Homable offers secure document exchange tools allowing owners and seekers to share documents directly, including those commonly required for mortgage applications or notary preparation, such as:
- Title deeds
- SHUFA credit reports
- Energy performance certificates
- Floor plans
Documents remain confidential and are shared only with your explicit action or consent.
4.8 Communication and Messaging Data
We store messages sent via Homable's internal messaging system for delivery and moderation purposes. This system enables user-to-user communication for property inquiries. We may also retain communications you send us directly (e.g., support requests, feedback). Homable does not routinely monitor private communications beyond what is necessary for safety, support, or enforcement of our Terms.
4.9 Usage and Technical Data
We automatically collect certain data about how you use our Services, including:
- IP address (anonymised where feasible) and device/browser information
- Timestamps of visits and actions
- Page views, searches, and listing interactions
- Authentication and login attempts
- Cookie identifiers
4.10 Contact and Support Data
If you contact us for support or feedback (by email, chat, or other means), we collect the information you provide (such as your name, contact information, and the content of your message) and retain records of correspondence.
4.11 Sensitive Data
We do not actively seek to collect sensitive personal data (such as racial or ethnic origin, political opinions, health information, etc.) unless necessary. The only sensitive data we may process is biometric data for identity verification, and only with your explicit consent (Art. 9(2)(a) GDPR). We ask that you not share sensitive data with us unless required for the Service.
5. How We Collect Data
5.1 Directly from You
Most data is provided directly by you: during sign-up, when filling out forms, uploading documents, submitting pre-qualification requests, signing documents, or communicating with us. You have choices about what information to provide, but some data is necessary for using core features. If you choose not to provide required data, you may not be able to use certain parts of the Service.
5.2 Whether Data Provision Is Mandatory or Voluntary
In accordance with Art. 13(2)(e) GDPR, we inform you of the following:
| Data Category | Mandatory / Voluntary | Consequence of Non-Provision |
|---|---|---|
| Account data (name, email, phone) | Mandatory | Cannot create an account or use the platform |
| Identity verification (Veriff) | Mandatory for listing properties or submitting pre-qualification requests | Cannot list properties or apply for listings |
| Ownership documents | Mandatory for property listings | Listing cannot be verified or published |
| Pre-qualification data | Mandatory for requesting viewings or submitting offers | Cannot interact with listings as a seeker/buyer |
| Listing data | Mandatory for publishing a listing | Cannot publish a property listing |
| E-signature data | Voluntary (only if you choose to sign documents) | Cannot use LOI or rental contract signing features |
| Document exchange data | Voluntary | Cannot share documents with other users or partners |
| Profile photo / avatar | Voluntary | No impact on core functionality |
| Communication data | Voluntary (arises from your use of messaging) | Cannot communicate with other users via the platform |
| Cookies (non-essential) | Voluntary (consent-based) | Reduced analytics; core functionality unaffected |
5.3 Through Automated Technologies
When you use our website or application, we use cookies, log files, and similar technologies to automatically collect usage data (see Section 11: Cookies & Tracking). This helps us understand how users navigate our Service and enables certain functionalities (like staying logged in).
5.4 From Third Parties
We may receive information about you from third-party sources in specific situations: for example, if Veriff provides us with verification results, or if Dropbox Sign returns a signed document. In all cases, we ensure those third parties have lawful rights to share your data with us and that you have been informed.
6. Purposes and Legal Bases for Processing
We only use your personal data for specified, explicit, and legitimate purposes. The table below sets out the purposes, relevant data categories, and legal bases under the GDPR:
| Purpose | Data Categories | Legal Basis (GDPR) |
|---|---|---|
| Account creation and management -- Creating and managing your account; passwordless authentication via email | Account data, contact info | Art. 6(1)(b) -- Performance of contract |
| Providing the platform service -- Displaying listings, enabling search and filters, delivering messages, hosting documents and profiles, facilitating pre-qualification requests | Account data, listing data, communication data, pre-qualification data | Art. 6(1)(b) -- Performance of contract |
| Identity verification -- Verifying user identity via Veriff for trust and safety | Identity verification data (incl. biometric) | Art. 6(1)(f) -- Legitimate interest (platform safety); Art. 9(2)(a) -- Explicit consent (for biometric data) |
| Ownership verification -- Reviewing title deeds, land registry excerpts to validate property ownership | Ownership documents | Art. 6(1)(b) -- Performance of contract; Art. 6(1)(f) -- Legitimate interest (fraud prevention) |
| Pre-qualification processing -- Collecting and sharing seeker/buyer profiles with property owners upon explicit consent | Pre-qualification data, identity data | Art. 6(1)(a) -- Consent (for sharing with owners); Art. 6(1)(b) -- Performance of contract |
| LOI signing -- Auto-filling and facilitating electronic signing of Letters of Intent via Dropbox Sign | E-signature data, account data, listing data | Art. 6(1)(b) -- Performance of contract |
| Rental contract signing -- Auto-filling and facilitating electronic signing of rental contracts via Dropbox Sign | E-signature data, account data | Art. 6(1)(b) -- Performance of contract |
| Secure document exchange -- Enabling users to share documents (title deeds, SHUFA, energy certs, floor plans) with other users | Document exchange data | Art. 6(1)(b) -- Performance of contract; Art. 6(1)(a) -- Consent |
| Sharing with mortgage/notary partners -- Forwarding documents and pre-filled profiles to mortgage or notary partners upon explicit consent | Pre-qualification data, ownership docs, profile data | Art. 6(1)(a) -- Explicit consent |
| Internal messaging -- Facilitating user-to-user communication for property inquiries | Communication data, account data | Art. 6(1)(b) -- Performance of contract |
| Content moderation -- Reviewing, editing, or removing content that violates our Terms or applicable laws; using automated tools and human moderators (DSA compliance) | Listing data, communication data, usage data | Art. 6(1)(f) -- Legitimate interest (platform safety, legal compliance); Art. 6(1)(c) -- Legal obligation (DSA) |
| Service communications -- Sending confirmations, verification codes, security alerts, feature updates, and changes to terms/policies | Contact info | Art. 6(1)(b) -- Performance of contract |
| Customer support -- Responding to inquiries and resolving issues | Contact data, communication data | Art. 6(1)(f) -- Legitimate interest |
| Analytics and service improvement -- Analysing usage patterns, improving platform design and performance | Usage data, cookie data | Art. 6(1)(f) -- Legitimate interest; TTDSG §25 consent for non-essential cookies |
| Marketing communications -- Newsletters, product updates (if introduced in the future) | Contact info | Art. 6(1)(a) -- Consent |
| Legal compliance and protection -- Complying with legal obligations, handling law enforcement requests, establishing/exercising/defending legal claims | All relevant data categories | Art. 6(1)(c) -- Legal obligation; Art. 6(1)(f) -- Legitimate interest |
| Future payment processing -- When launched: processing reservation deposits via licensed EU payment service provider (PSP) | Account data, payment data (processed by PSP) | Art. 6(1)(b) -- Performance of contract |
Automated decision-making: We do not use your personal data for automated decision-making, including profiling, that produces legal or similarly significant effects on you. Our recommender system is not personalised: listings are ordered based on user-selected criteria (location, price, property type) and may be sorted by date (newest first). All users using the same search parameters see similar results. Homable does not allow paid placement or promoted listings that would unfairly influence search results.
7. Consent Management
Where we rely on your consent as the legal basis for processing, we obtain it through clear, affirmative actions. You have the right to withdraw consent at any time without affecting the lawfulness of processing performed before withdrawal. Specific consent mechanisms include:
- Identity verification consent: You consent to biometric processing when you voluntarily initiate the Veriff verification flow.
- Pre-qualification data sharing: Your pre-qualification data is shared with property owners only after you provide explicit consent via a clear opt-in prompt.
- Mortgage/notary partner sharing: Your documents and profile are forwarded to mortgage or notary partners only after you confirm consent via a one-time confirmation prompt.
- Cookie consent: Non-essential cookies (e.g., analytics) are set only after you consent via our cookie banner, in accordance with TTDSG §25.
- Marketing consent: If introduced, marketing communications will only be sent with your explicit opt-in consent. Every marketing email will include an unsubscribe link.
You can manage your consent preferences at any time via your account Privacy Settings or by contacting us at dmytro@homable.de.
8. Data Sharing and Recipients
We do not sell or rent your personal information to third parties. We only share your data as described below, and we ensure appropriate data protection agreements (Art. 28 GDPR) are in place with all processors.
8.1 Other Users (with Your Knowledge or Consent)
- Public listing data: When you post a listing, the content (property details, price, photos, floor plans, etc.) is publicly visible to all visitors. Your first name, avatar, and general location may also be shown alongside your listing.
- Pre-qualification data: When you submit a pre-qualification form, the information you provide (name, employment info, financial data, uploaded proofs) is shared with the listing owner only after your explicit consent.
- Document exchange: Documents you choose to share (title deeds, SHUFA, energy certificates, floor plans) are transmitted only upon your explicit action.
- Homable does not reveal your email, ID documents, or exact address to other users unless you voluntarily include them in your content.
8.2 Trusted Service Providers (Processors)
| Provider / Category | Purpose | Location |
|---|---|---|
| Amazon Web Services (AWS) | Web hosting, infrastructure, databases, backups | EU (EU-based datacentres) |
| Veriff (Veriff OU) | Identity verification (ID documents, biometric facial scan). Homable never stores your ID documents or biometric data. Veriff processes these directly; Homable only receives extracted attributes. | Estonia (EU) |
| Dropbox Sign (Dropbox, Inc.) | Electronic signature facilitation for LOIs and rental contracts. Receives documents and limited identity metadata (name, email) to facilitate signing. | USA (safeguarded via SCCs) |
| Email delivery service (e.g., SendGrid, SES) | Sending verification emails, notifications, and service communications | EU/USA (safeguarded via SCCs) |
| SMS verification service (e.g., Twilio) | Sending SMS verification codes | USA (safeguarded via SCCs) |
| Google Analytics (Google LLC) | Website usage analytics (with IP anonymisation; only with your cookie consent) | USA (safeguarded via SCCs) |
8.3 Payment Service Provider (Future Use)
When Homable launches integrated payment features (e.g., for reservation deposits), all monetary transactions will be processed exclusively through a licensed third-party payment service provider (PSP) authorised to operate within the European Union. Homable will not receive, hold, or manage any user funds directly. The PSP will act as an independent data controller for payment-related data (names, payment references, bank details). Use of the payment feature will be subject to the PSP's own terms and privacy policy, which will be presented clearly at the time of use.
8.4 Mortgage and Notary Partners (with Explicit Consent)
With your explicit consent via a clear, one-time confirmation prompt, Homable may forward your submitted documents and pre-filled profile to:
- Mortgage partners -- to initiate financing processes
- Notary partners -- to prepare preliminary sale agreements or other notarial documents
Homable does not evaluate or modify any shared content. The third-party recipient will act as a separate data controller for the received information. Homable is not responsible for the services, data handling, or outcomes of any third-party partner.
8.5 Legal and Safety Disclosures
We may disclose personal data to third parties if required by law or legal process, or if we have a good-faith belief that such disclosure is reasonably necessary to:
- Comply with a legal obligation, request from authorities, or court order;
- Enforce our Terms of Service or other agreements;
- Address fraud, security, or technical issues;
- Protect the rights, property, or safety of Homable, our users, or the public.
8.6 Corporate Transactions
If Homable is involved in a merger, acquisition, financing, reorganisation, bankruptcy, or asset sale, your data may be transferred to the prospective parties under the condition that they continue to respect your personal data in a manner consistent with this Privacy Policy. We will notify you of any such transfer.
9. International Data Transfers
Homable is based in Berlin, Germany, and stores and processes personal data primarily on servers located within the European Union (EU). We use EU-based infrastructure (e.g., AWS Europe).
However, some of our service providers (Dropbox Sign, Google Analytics, email/SMS services) may be located in or operate servers in the United States or other countries outside the European Economic Area (EEA). Whenever we transfer personal data outside the EEA, we ensure appropriate safeguards are in place in accordance with GDPR Chapter V (Art. 44--49), including:
- Standard Contractual Clauses (SCCs): European Commission-approved model clauses obligating recipients to protect data to EU standards.
- Adequacy decisions: Where the European Commission has determined a country provides adequate data protection.
- Additional technical measures: Encryption in transit (HTTPS/TLS) and at rest, reducing the risk of unauthorised access during transfers.
- Data Processor Agreements: All service providers must commit to GDPR compliance and equivalent safeguards.
You may contact us at dmytro@homable.de for information about international data transfers or to obtain a copy of the relevant safeguards.
10. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. Specific retention periods are as follows:
| Data Category | Retention Period | Legal Basis for Retention |
|---|---|---|
| Account data (profile, credentials) | Duration of active account. After account deletion: removed or anonymised within 30 days, except where retention is required by law. | Art. 6(1)(b) GDPR; §257 HGB, §147 AO for commercial/tax records |
| Listing data and content | Until you remove the listing or delete your account. Backups purged within 60 days of deletion. | Art. 6(1)(b) GDPR |
| Identity verification results (from Veriff) | Extracted attributes (name, DOB, verification status) retained for the duration of your account. Homable does not store ID documents or biometric data. Veriff retains verification data per its own retention policy. | Art. 6(1)(f) GDPR |
| Ownership documents (title deeds, land registry) | Duration of active listing plus up to 3 years after removal (for dispute resolution). | Art. 6(1)(f) GDPR; §195 BGB (general limitation period) |
| Pre-qualification data | Duration of active application process. Deleted or anonymised within 6 months after application is concluded, unless longer retention is required for legal claims. | Art. 6(1)(a), (b) GDPR |
| E-signature records (LOI, rental contracts) | 6--10 years after contract conclusion, as these constitute legally relevant transaction records. | §257 HGB (6 years for commercial correspondence); §147 AO (10 years for tax-relevant documents); Art. 6(1)(c) GDPR |
| Document exchange data | Duration of the related transaction plus up to 3 years for potential dispute resolution. | Art. 6(1)(b), (f) GDPR; §195 BGB |
| Communication logs (internal messaging) | Duration of related listings plus up to 3 years after for safety audits, support, or legal claims. Messages may be retained as part of the recipient's inbox even if sender deletes their account. | Art. 6(1)(f) GDPR |
| Usage and analytics data | Raw logs (with IP): rotated and deleted within 14 months. Aggregated/anonymised analytics data may be retained indefinitely. | Art. 6(1)(f) GDPR |
| Support correspondence | Retained until issue is resolved plus up to 3 years for follow-ups and legal claims. | Art. 6(1)(f) GDPR |
| Marketing consent records | Contact info retained until you opt out. After opt-out, email kept on suppression list to honour your preference. | Art. 6(1)(a), (f) GDPR |
| Tax and legal compliance records | 6--10 years as required by German commercial and tax law. | §257 HGB (6 years); §147 AO (10 years); Art. 6(1)(c) GDPR |
| Backup copies | Backups are rotated on a regular schedule. Data may persist in backups for up to 60 days after deletion from production systems. | Art. 6(1)(f) GDPR |
Consumer withdrawal: If you exercise your right of withdrawal under our Terms of Service (Section 10 of the T&C), we will deactivate and delete your account and remove your personal data to the extent required by law, except for data we must retain for legal obligations (e.g., tax records for 6--10 years).
When we have no ongoing legitimate need to process your personal data, we will either delete it or anonymise it. If deletion is not immediately possible (e.g., data is in archives or backups), we will securely isolate it from further processing until deletion is possible.
11. Cookies and Tracking Technologies
Cookies are small text files placed on your device to store information. We use cookies and similar technologies to make our Services function properly, to understand and improve user experience, and (with your consent) for analytics.
When you first visit Homable, you will see a cookie consent banner allowing you to accept or decline non-essential cookies. We honour your choices in accordance with TTDSG §25 (Telekommunikation-Telemedien-Datenschutz-Gesetz), which requires prior consent for storing or accessing information on end-user devices unless strictly necessary for the service.
11.1 Types of Cookies
| Cookie Type | Purpose | Consent Required? |
|---|---|---|
| Essential / Strictly Necessary | Authentication, session management, security, remembering preferences. Required for core functionality. | No (TTDSG §25(2) exemption) |
| Analytics (Google Analytics) | Measuring engagement, page views, user journeys. IP addresses are anonymised. Data helps improve platform design and performance. | Yes (via cookie banner) |
| Functionality | Language selection, region preferences, enhanced personalisation features. | Depends on implementation; consent obtained where required |
We do not currently use advertising or tracking cookies. If this changes, we will update this Policy and obtain appropriate consent.
11.2 Managing Cookies
You can manage your cookie preferences via our cookie consent banner at any time. You can also adjust your browser settings to refuse or delete cookies. Note that disabling essential cookies may impair core functionality (e.g., login).
11.3 Google Analytics and Data Transfers
Data collected through Google Analytics may be processed by Google LLC on servers in the United States. We rely on Standard Contractual Clauses (SCCs) and other appropriate safeguards for any personal data transferred outside the EEA. We have configured Google Analytics to anonymise IP addresses. You can opt out of Google Analytics by rejecting analytics cookies via our banner or by using a browser plugin provided by Google.
12. Data Security
Homable implements appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, destruction, or alteration, including:
- Encryption: Data in transit (HTTPS/TLS) and at rest for databases and servers.
- Access controls: Personal data is accessible only to authorised personnel and service providers who need it, controlled through authentication and bound by confidentiality obligations.
- Security testing: Continuous security testing, audits, code reviews, and vulnerability assessments. Third-party processors (AWS, Veriff, Dropbox Sign) maintain industry certifications (e.g., ISO 27001, SOC 2).
- Anonymisation/Pseudonymisation: Where feasible, especially for analytics or testing purposes.
- Incident response: In the event of a data breach posing a risk to your rights and freedoms, we will notify you and the relevant supervisory authority as required by GDPR (Art. 33 and 34).
No method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee absolute security.
13. Your Rights Under the GDPR
Under the GDPR (and equivalent laws), you have the following rights regarding your personal data:
- Right of Access (Art. 15): Request a copy of the personal data we hold about you in a structured, commonly used format.
- Right to Rectification (Art. 16): Request correction of inaccurate or incomplete data. You can also update information via your account settings.
- Right to Erasure (Art. 17): Request deletion of your personal data ("right to be forgotten"), subject to any legal retention obligations. Deleting your data may involve closing your account.
- Right to Restrict Processing (Art. 18): Request limitation of processing in certain circumstances (e.g., while contesting data accuracy).
- Right to Data Portability (Art. 20): Receive your data in a portable, machine-readable format (e.g., JSON, CSV) and/or have it transmitted to another controller, where technically feasible.
- Right to Object (Art. 21): Object to processing based on legitimate interests. You have an unconditional right to object to direct marketing at any time.
- Right to Withdraw Consent (Art. 7(3)): Withdraw consent at any time without affecting the lawfulness of prior processing.
- Right not to be subject to Automated Decisions (Art. 22): We do not make legally significant decisions purely by automated means. If this changes, you will have the right to request human intervention and contest the decision.
How to exercise your rights: Contact us at dmytro@homable.de. We may need to verify your identity before fulfilling certain requests. We will respond within one month, or inform you if an extension of up to two additional months is needed. The first copy of your data will be provided free of charge. Excessive or repetitive requests may be subject to a reasonable fee.
14. Right to Lodge a Complaint
If you believe that our processing of your personal data infringes applicable data protection laws, you have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR).
The competent supervisory authority for Homable is:
Berliner Beauftragte fur Datenschutz und Informationsfreiheit (Berlin Commissioner for Data Protection and Freedom of Information) Friedrichstrasse 219 10969 Berlin, Germany Phone: +49 30 13889-0 Email: mailbox@datenschutz-berlin.de Website: www.datenschutz-berlin.de
You may also lodge a complaint with the supervisory authority in the EU member state of your habitual residence, place of work, or place of the alleged infringement. We would, however, appreciate the opportunity to address your concerns directly before you approach an authority -- please consider reaching out to us first at dmytro@homable.de.
15. Children and Minors
Homable is intended exclusively for users who are at least 18 years old and have full legal capacity to enter into contracts (as required by our Terms of Service, Section 3.1). We do not knowingly collect or process personal data from individuals under the age of 18. If we become aware that we have inadvertently collected personal data from a minor, we will take immediate steps to delete such data. If you believe a minor has provided us with personal data, please contact us at dmytro@homable.de.
16. Links to Third-Party Services
Our Services may contain links to third-party websites or integrations (e.g., Veriff, Dropbox Sign, Google Analytics, mortgage partners, notary partners). This Privacy Policy applies only to Homable's processing of your data. If you click a link to or interact with a third-party service, you should review their privacy policy separately. We are not responsible for the privacy practices of external services. If you have concerns about any third-party integration, please let us know at dmytro@homable.de.
17. Changes to This Policy
We keep this Privacy Policy under regular review and will update it as needed to reflect changes in our data practices, platform features, or legal requirements. If we make material changes, we will notify you by email or via a prominent notice on our website, and obtain your consent where required by law. The "Last Updated" date at the top will always indicate the most recent revision.
During the beta phase, features and data processing activities may evolve, but we will not reduce your rights or the level of protection without proper notice. Continuing to use Homable after an update signifies acceptance of the revised Policy.
18. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
| Purpose | Contact |
|---|---|
| Privacy and data protection inquiries | dmytro@homable.de |
| General help and support | dmytro@homable.de |
| Legal matters | dmytro@homable.de |
| Withdrawal notices | dmytro@homable.de |
Postal address:
Nikita Mullovskii (Homable) Saarbruecker Str. 7 10405 Berlin, Germany
Thank you for reading our Privacy Policy. Homable is committed to protecting your privacy and providing a safe, secure service. We value your trust and will always treat your personal data with care and respect.