Privacy Statement

Updated 07.05.25
Introduction

Portal Ltd. (“Portal”, “we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Statement explains how we handle your data when you use our smart access services, including SmartLocks, Building OS, mobile applications, websites, and APIs (“Services”). Our Services are not available to individuals under 16 years old. If you have questions or concerns about this Privacy Statement or our data practices, contact us at privacy@tryportal.com or visit https://tryportal.com/privacy. If you do not wish us to process your data as outlined, please refrain from using our Services.

Scope

This Privacy Statement covers how Portal processes (e.g., collects, uses, stores, discloses, transfers, and deletes) your personal information (“Personal Information”) when you access our Services or websites. Personal Information includes any data that identifies or can be linked to you, but excludes de-identified or aggregated data. Additional details may be provided in supplementary notices at the time of data collection.

What Personal Information Does Portal Collect?

  • Personal Information You Provide: We do not store customer details such as names, email addresses, or phone numbers. We only collect minimal data necessary for access functionality, such as temporary device identifiers or access logs, which are not linked to individuals.
  • Personal Information We Collect Automatically: When you use our Services, we may collect technical data like IP addresses, device IDs, and session logs to ensure secure access and service performance. This data is not tied to personal identities and is used in aggregated form for analytics.
  • Personal Information from Third Parties: We do not receive Personal Information from third parties, we will only receive information regarding your booking at a Hotel or lease at a Development.

How Does Portal Use My Personal Information?

We use collected data solely for legitimate purposes:

  • To facilitate secure access to properties via SmartLocks and Building OS.
  • To maintain, improve, and troubleshoot our Services.
  • To ensure compliance with legal obligations.
  • To protect our systems and users from fraud or security threats.

No marketing, remarketing, or data sales occur, as we do not retain identifiable customer information.

Does Portal Share My Personal Information?

We do not share, sell, or rent your Personal Information. Data is only disclosed:

  • To service providers (e.g., cloud hosting) under strict confidentiality agreements, limited to technical support for access services.
  • In the event of a merger, acquisition, or insolvency, where we ensure the transferee adheres to this policy.
  • For legal reasons (e.g., court orders or regulatory requests), where required by law to protect Portal, users, or the public.

GDPR Compliance

For users in the European Economic Area (EEA), Portal complies with the General Data Protection Regulation (GDPR), last updated 7 May 2025. We process minimal data (e.g., temporary device identifiers, access logs) only where necessary to provide access services, relying on the legal basis of contractual necessity under our terms of service. We do not store customer details, engage in marketing, or sell data, minimising data retention.

Your Rights Under GDPR:

  • Right to Access: Request a copy of data we hold about you.
  • Right to Rectification: Ask us to correct inaccurate data (though limited due to minimal collection).
  • Right to Erasure: Request deletion of your data, subject to legal retention periods.
  • Right to Restrict Processing: Limit how we use your data.
  • Right to Data Portability: Receive your data in a structured format (where applicable).
  • Right to Object: Object to processing (e.g., for analytics), though our use is minimal.
  • Right to Withdraw Consent: Not applicable, as we do not rely on consent.
  • Right to Complain: Contact your local data protection authority (e.g., ICO in the UK).

We retain data only for the duration needed to provide access (typically 30 days), then delete or anonymise it. For further details or to exercise rights, contact privacy@tryportal.com. Data may be processed in the EU or UK, with appropriate safeguards under GDPR Article 46 (e.g., Standard Contractual Clauses) if transferred outside the EEA.

Cookies and Similar Technologies

We use cookies and tracking technologies to enhance service performance and security (e.g., session management). These are not used for advertising. You can manage cookie preferences via your browser settings.

Is Personal Information About Me Secure?

We employ industry-standard technical and organisational measures to protect your data. However, no system is entirely secure. If you suspect unauthorised activity, contact https://tryportal.com/support immediately. For vulnerabilities, refer to our Vulnerability Disclosure Programme.

International Users

Data may be processed in the EU or UK. We ensure GDPR compliance for transfers, using appropriate safeguards. Contact privacy@tryportal.com for details on transfer mechanisms.

Changes to This Privacy Statement

We may update this Privacy Statement, posting revisions at https://tryportal.com/privacy with the new date. Material changes will be notified via our website or email before taking effect.

What If I Have Questions or Concerns?

Contact us at privacy@tryportal.com for queries or complaints. For EEA residents, our EU Representative is: eurepresentative@tryportal.com.

Devices
RetrofitReplaceSmartLock PROModuleAirSmartDisc
Software
DashboardGuest AppStaff AppCo-Lab*
Resources
BlogAbout PortalChangelogPricingContactRequest a Demo
Legal
Privacy StatementEULAVDP
At Portal, we're transforming access management for the world's leading hotels and property developments, creating smarter, more efficient spaces through innovative technology.
© Portal Technologies 2025