Privacy Policy EU GDPR Compliant

How we protect and handle your personal data

Last updated: August 18, 2025

About This Service

Laundry Management System is a system for dormitory residents. We help you reserve washing machines and dryers, track usage, and manage the shared laundry facilities efficiently.

What Data We Collect

We collect only the minimum data necessary to provide our service:

  • Account Information: Name, email address, phone number
  • Usage Data: Appliance reservations, timing, and usage history
  • Technical Data: Login times, session data

Legal Basis for Processing

We process your personal data based on:

  • Legitimate Interest: Managing shared laundry facilities efficiently
  • Contract Performance: Providing reservation services
  • Consent: For non-essential communications

How We Use Your Data

Your data is used exclusively for:

  • Managing appliance reservations and scheduling
  • Resolving conflicts and operational issues
  • Account verification and security
  • Emergency contact (if needed)
Privacy Protection: Administrators see only masked versions of your personal data (e.g., john***@example.com) unless there's an operational emergency.

Data Sharing

We DO NOT share your personal data with third parties. Data is only visible to:

  • You: Full access to your own data
  • System Administrators: Masked data only (for operational purposes)
  • Database Provider (Heroku): Technical infrastructure only

Data Security

We protect your data with:

  • Password encryption (pbkdf2:sha256 hashing)
  • TLS/SSL encryption for all data transmission
  • Secure database hosting with Heroku
  • Admin action audit logging
  • Privacy-by-design data masking

Data Retention

We keep your data for:

  • Account Data: Until you delete your account
  • Reservation History: 30 days for operational purposes
  • Audit Logs: 12 months for security compliance

Your Rights (GDPR)

You have the right to:

  • Access: View all data we have about you
  • Rectification: Correct any incorrect information
  • Erasure: Delete your account and data using the "Delete Account" feature
  • Portability: Export your data using the "Export Data" feature
  • Objection: Object to data processing
How to Exercise Your Rights: Use the self-service features in your dashboard ("Export Data" and "Delete Account" buttons) or contact an administrator for additional assistance.

Contact Information

For privacy-related questions or to exercise your rights:

  • Data Controller: Dormitory Administration
  • Contact: Through the admin panel or dormitory management
  • EU Representative: Local dormitory administration

Changes to This Policy

We may update this privacy policy occasionally. Significant changes will be communicated through the application. Continued use constitutes acceptance of updates.

EU GDPR Compliance Statement: This service is designed to comply with the European Union General Data Protection Regulation (GDPR). We implement privacy-by-design principles and data minimization to protect your personal information.
← Back to Registration ← Back to Login