Back to Home

Privacy Policy

Last updated: 6/16/2026

At JA Property Care (JPC), we take privacy and data security seriously. This policy delineates our clear, data-minimization practices and operational protocols built in adherence to the Jamaica Data Protection Act (JDPA).

1. JDPA Structural Definitions

To ensure absolute compliance, the platform operates under distinct legal data responsibilities:

  • The Landlord / Property Management Agency acts exclusively as the Data Controller. They determine what information is requested from tenants and retain full ownership over the legal basis for processing tenancy data.
  • JA Property Care acts strictly as the Data Processor. We host, secure, and route this information solely on behalf of instructions given by the Data Controller to keep the platform functional.

2. Information We Process

We process only the minimum information required to successfully validate user sessions, preserve account balances, and track property activity:

  • Account Profiles: User names, corporate email addresses, validated mobile numbers, and Taxpayer Registration Numbers (TRN) provided during corporate signup.
  • Tenancy Core Architecture: Lease timelines, property addresses, formal maintenance requests, and digital document uploads handled by landlords or tenants.
  • Diagnostic Metadata: System interaction logs, network identifiers, and platform performance data used strictly to verify application stability and block brute-force security threats.

3. Authorized Sub-Processors & Obfuscation

We utilize trusted third-party infrastructure components to optimize performance and security under strict guardrails:

  • System Diagnostics & Session Monitoring: We implement diagnostic logging SDKs (e.g., Sentry) to trace unexpected application crashes and rendering faults. These tools collect session telemetry, but are hard-configured with advanced data-masking rules. Private user text fields, passwords, and sensitive alphanumeric indicators are programmatically blacked out at the browser level before data transmission.
  • Payment Gateway Interfaces: Financial transactional frameworks are processed via highly secure, external, PCI-compliant payment integrations. JA Property Care never views, stores, or captures raw credit card numbers or banking passwords on our local databases.

4. Technical Safeguards & Multi-Tenant Separation

JPC enforces rigorous security mechanisms to prevent data leaks. Your information is isolated via PostgreSQL Row-Level Security (RLS) policies and encrypted at rest within secure cloud databases. This ensures tenant metadata, landlord statements, and contractor work orders can never be crossed or viewed by unauthorized accounts.

5. The 30-Day Hard Purge Rule

Personal data is never kept indefinitely. When an agency actively removes a tenant profile, or when an organization cancels their subscription, the data is instantly hidden from operational applications. Within a strict timeline of 30 calendar days, the data is completely overwritten and permanently purged from active production servers and rolling database backups.

6. Exercise of Data Subject Rights

Under the JDPA, individual data subjects (tenants, agents, and staff) retain the right to access, rectify, or demand the erasure of their records. Because JPC acts as a Data Processor, data access or erasure requests should be submitted directly to your respective Landlord or Property Manager (the Data Controller). For platform inquiries regarding security or our designated data protection practices, you may reach our infrastructure operations team at privacy@jpcofficial.com.