Rentpass

Privacy notice

Last updated 16 May 2026

Rentpass is a tenant-led, consent-based rental references platform for the Greek market. This page describes what data we process, why, and how to control it. The data controller is Rentpass; you can reach us at the address in the Contact section below.

What we process

  • Email address and display name — what you give us at signup, used to log you in and to label your tenant report.
  • Verified AFM (hashed) — extracted from your AADE ΜΗΤΡΩΟ when you verify your identity. We compute HMAC-SHA256(AFM, server pepper) and store only the 64-character hash. The plain AFM is never persisted.
  • Tenancy metadata — start date, end date, and AADE declaration number, parsed from each rental declaration you upload.
  • References — four 1–5 ratings, a would-rent-again flag, and an optional free-text comment. Each reference is bound by hashed AFM to a contract you previously uploaded.
  • Invitee email addresses — stored on invitation rows so we can email the landlord and accept their reply.
  • Audit log — operational events (sign-ups, AFM verifications, share-link views, account deletions) recorded with operational counts only and no personal payloads.

What we never keep

  • The original PDFs you upload. ΜΗΤΡΩΟ and rental-declaration files live only inside a temporary directory while the request is being processed and are destroyed the moment the request finishes — whether parsing succeeded or failed.
  • Your plain AFM. Only the HMAC-SHA256 hash is stored. A full database dump would not expose any tax IDs without also stealing the server pepper, which lives only in the API process's environment.
  • Property addresses, monthly rent, or landlord plaintext names. These are deliberately not persisted, even though the parser sees them in the PDF.

How long we keep it

  • While your account exists — for as long as you want. You can delete everything from the dashboard at any time.
  • Once you delete your account — every tenancy, reference, invitation, share link, and outstanding password-reset token tied to you is removed. The audit log retains a de-identified record that a deletion occurred (no user ID, no email).
  • If you never had an account — your email address may still exist on an invitation row because a tenant invited you to leave a reference. Write to the contact address below and we'll remove it.

Your rights

GDPR Articles 15–17 and 20 give you the right to access, correct, port, and erase your data. The fastest paths:

  • Erase your account — sign in, go to your dashboard, scroll to the “Danger zone” section, type your email to confirm, and we delete everything.
  • Anything else (access, correction, portability, or erasure without an account) — write to the address below. We'll respond within 30 days.

Legal basis

The lawful basis for processing your personal data is your explicit consent under GDPR Art. 6(1)(a). You can withdraw it at any time via the deletion paths above.

Contact

privacy@rentpass.gr