Privacy policy.
At Quasor we provide a CRM for Argentine real estate agencies. That means we handle data — yours and your customers'. This policy explains what we do with that data, how we protect it, and what rights you have over it. It's written in plain English, not impenetrable legalese. If anything is unclear, write to us at privacidad@quasor.io.
30-second summary: your data is yours. We use it only to deliver the service you contracted. We don't sell it to third parties. You can request export or deletion at any time.
01What data we collect
Data you give us directly
When you contract Quasor you share information about your business: name, email, phone, tax address, and the credentials of the platforms we integrate with (Meta Business, Google Ads, your current CRM, WhatsApp Business, etc.). This information is required to configure and operate the system.
Data generated by use of the system
Once the CRM is running, the platform stores the day-to-day operational data of your agency: leads received through your integrations, assignment of each lead to a sales rep in your team and to a property in the catalog, schedules of visits and meetings, receipts and payment data, recorded interactions with the customer, conversion metrics, and any information flowing from your external integrations (Meta Lead Ads forms, Google Ads, WhatsApp Business, Tokobroker, etc.).
Technical and usage data
We automatically collect basic technical data: IP address, browser, device, pages visited within the system, and activity timestamps. We use it for monitoring, security, and product improvement.
02What we use the data for
- Operating the service: without your data we cannot give you the CRM, integrations, or reports. It's the primary use.
- Support: when you ask for help, we review your account to be able to solve the problem.
- Billing: we generate monthly invoices using your tax data.
- Product improvement: we analyze aggregated and anonymized patterns to understand which features customers use the most and improve what matters.
- Operational communications: we notify you of important service changes, incidents, and updates. We never spam you with promotions.
03What we do NOT do with the data
- We do not sell it to third parties. Not to data brokers, not to advertisers, not to anyone.
- We do not use it to train generic AI models. If we use AI within your account (lead scoring, for example), the model runs on your data, to benefit you, without mixing it with other customers' data.
- We do not share it with third parties, except for the specific cases in the next section.
04Who we share data with
Only with providers necessary to operate the service, and only the bare minimum:
- Infrastructure providers (Google Cloud): to host the database and servers. They sign confidentiality agreements with us.
- Platforms you connect: when you authorize an integration with Meta (Facebook/Instagram), Google Ads, WhatsApp Business, Tokobroker, or another platform, data flows between those platforms and Quasor according to the specific permissions you granted during authentication. We never access pages, accounts, or data you have not explicitly connected, and we never publish content on your behalf. We comply with Meta Platform Terms and their Developer Policies.
- Authorities: if an Argentine judicial authority requires it through a valid order, we comply with the law. We would notify you unless the order prohibits us from doing so.
05Integration with Meta (Facebook and Instagram)
When a Quasor customer connects their Meta Business account to the platform, we access through Meta's official APIs (Graph API, Marketing API, Lead Ads API) the following data:
- List of pages the user manages (permission
pages_show_list): so the customer can choose which page or pages to connect to Quasor. - Leads from Lead Ads forms (permission
leads_retrieval): name, email, phone, and answers the lead completed in the form, together with the lead ID, form ID, page ID, and submission date/time. - Public profile (permission
public_profile): name and profile photo of the Facebook user who connected the account, used only to display them as an authenticated user in Quasor.
This data syncs automatically to the customer's CRM. Important clarifications:
- We do not publish content on the user's behalf.
- We do not access pages or accounts that have not been explicitly connected.
- We do not store Meta passwords (authentication is via OAuth).
- If the user revokes permissions from the Facebook settings, we stop syncing new data immediately.
Processing roles: with respect to leads' data, Quasor acts as data processor and the real estate agency contracting the service is the data controller. Leads retain all rights under Argentine Law 25.326 vis-à-vis the controller, and Quasor cooperates with the agency to guarantee them.
How do I delete my data? If you are a lead who completed a form and want your data deleted, follow the instructions at Delete my data.
06Integration with Google
When a Quasor customer connects their Google account to the platform, we access through the Google Ads API the following data, according to the permissions the customer grants during OAuth authentication:
- Google Ads (scope
https://www.googleapis.com/auth/adwords): Google Ads accounts the user manages, campaigns, configured lead form assets, and the data of leads who completed forms (name, email, phone, and form answers, together with the lead ID, form ID, campaign ID, and submission date/time). We use this access only to sync leads to the customer's CRM. - Account identification (scopes
openid,https://www.googleapis.com/auth/userinfo.email): email of the Google account of the user who connected the integration, used only to identify which account authenticated the connection within Quasor.
Compliance with Google API Services User Data Policy (Limited Use): Quasor's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:
- We do not use data obtained from Google APIs to train generalized AI models.
- We do not sell that data to third parties.
- We do not share it with third parties for advertising or marketing purposes.
- We do not transfer it to third parties except to provide or improve the CRM features the customer contracted, to comply with applicable law, or when the customer explicitly authorizes it.
- Human access to this data by the Quasor team is limited to security cases, customer-requested support, or legal compliance.
Clarifications:
- We do not access accounts the user has not explicitly connected.
- We do not store Google passwords (authentication is via OAuth).
- If the user revokes permissions from https://myaccount.google.com/permissions, we stop syncing new data immediately.
Processing roles: with respect to lead data obtained via Google Ads Lead Forms, Quasor acts as data processor and the real estate agency contracting the service is the data controller, as clarified above for Meta data.
How do I delete my data? If you are a lead who completed a Google Ads form and want your data deleted, follow the instructions at Delete my data.
07Integration with Tokobroker
When an agency connects its Tokobroker account to Quasor, we automatically sync the property catalog the agency manages on that platform: address, characteristics, photos, price, and status of each property. That data is used within the CRM to link each lead with the property they inquired about and operate the rest of the flow (visit schedules, receipts, sales rep assignment).
We do not access information from Tokobroker beyond the catalog of the agency that authorized the connection, and the sync stops the moment the agency revokes the integration or cancels the service.
08Where your data lives
We host data on Google Cloud infrastructure, in the US East (Virginia, United States) region, with daily redundancy. Google Cloud is one of the most widely used and certified cloud platforms in the world (ISO 27001, SOC 1/2/3, among others), ensuring enterprise-grade security standards for your information.
09How we protect it
- Encryption in transit (TLS 1.3) and at rest (AES-256).
- Access to the system with two-factor authentication.
- Audit logs of any administrative access.
- Automatic daily backups with 30-day retention.
- The Quasor team signs NDAs and accesses data only when strictly necessary for support.
10Your rights
Under Argentine Law 25.326 on Personal Data Protection, you have the right to:
- Access the data we have about you or your company.
- Rectify incorrect information.
- Delete data when it is no longer needed.
- Export all your data in standard format (CSV, JSON) at any time.
- Object to specific uses you don't accept.
To exercise any of these rights write to privacidad@quasor.io. We respond within 72 business hours at most.
11What happens if you cancel the service
If you cancel your account:
- We export all your data within the following 7 days (or sooner if you need it urgently).
- We keep a backup of your operational data for 90 days in case you want to return.
- After those 90 days, we delete everything except the billing records that AFIP (Argentine tax authority) requires us to retain (5 years, General Resolution 1415/2003).
Data from Meta: leads obtained via Meta Lead Ads are stored while the customer's account is active. If the customer revokes Meta permissions or disconnects the integration, we stop receiving new leads immediately; leads already received remain in the customer's CRM under their responsibility. If the customer cancels the Quasor service entirely, the general deletion timelines described above apply.
Data from Google: leads obtained via Google Ads Lead Forms are stored while the customer's account is active. If the customer revokes Google permissions or disconnects the integration, we stop receiving new data immediately; already-synced data remains in the customer's CRM under their responsibility. If the customer cancels the Quasor service entirely, the general deletion timelines described above apply.
12Minors' data
Quasor is not directed to anyone under 18 and we do not knowingly collect personal data of minors. If we become aware that data of a minor has been uploaded without valid parental consent, we delete it as soon as we know. If you are a parent or guardian and believe data of a minor in your care has been uploaded, write to privacidad@quasor.io.
13Cookies and tracking
We use essential technical cookies (session, language preferences) and a single analytics tool: Plausible, which does not use cookies and does not track individuals. We do not use Google Analytics, Meta Pixel, or fingerprinting tools.
14Changes to this policy
If we update this policy we notify you by email at least 30 days in advance if the changes are substantial. If they are minor (clarifications, vendor name changes), we publish them here without individual notice.
15Contact
For any questions about this policy or your data:
- Email: privacidad@quasor.io
- WhatsApp: +54 9 223 689 2809
- Address: Mar del Plata, Buenos Aires, Argentina