Effective date: July 7, 2026
This policy explains what personal information Distressed Signals collects from users of the Service, how we use it, and the choices you have. It also explains how we handle the public-records data about properties and their owners that the Service presents.
Account data: your email address and a password (stored by our authentication provider in hashed form — we never see your password). Subscription data: your plan tier and billing status. Payment card details are collected and stored by our payment processor, not by us. Usage data: standard technical logs (IP address, browser type, pages accessed) generated by our hosting infrastructure for security and reliability purposes.
We do not sell your personal information. We do not share your email with third parties for their marketing. We do not run third-party advertising or ad-tracking scripts on the Service.
To operate your account and subscription, to send transactional email (signup confirmation, password reset, billing notices), to send service updates you have signed up for, to prevent abuse, and to improve the Service. You can opt out of non-essential email at any time.
The property information displayed in the Service — including owner names and mailing addresses — comes from public government records: City of Buffalo code enforcement data and the Erie County assessment roll. This information is a matter of public record and is republished here with analysis for lawful business purposes. If you are a property owner and believe a record is inaccurate, the authoritative correction path is with the issuing government office; you may also contact us at the address below with questions about how your information appears in the Service.
We use a small number of infrastructure providers to run the Service: a database and authentication provider, a web hosting provider, a payment processor, and an email provider. Each receives only the data needed to perform its function and is bound by its own privacy and security obligations.
The Service uses authentication tokens (stored in your browser) to keep you signed in. We do not use third-party advertising or cross-site tracking cookies.
Account data is retained while your account is active. You may request deletion of your account and associated personal data at any time by emailing us; we will delete it within 30 days, except records we must retain for billing, tax, or legal compliance.
Access to our database is restricted and enforced at the database layer; authentication is handled by an established provider; payment data never touches our servers. No system is perfectly secure, but the Service is built so that the most sensitive data (passwords, payment cards) is held by specialists, not by us.
The Service is for users 18 and older. We do not knowingly collect information from children.
Depending on where you live, you may have rights to access, correct, or delete personal information we hold about you. Email us and we will honor these requests for all users regardless of jurisdiction.
We may update this policy; material changes will be posted here with a new effective date.
Privacy questions or requests: upgrade@distressedsignals.com