Privacy Policy

Last Updated: January 11, 2025

Direct Stay Bookings respects your privacy. This policy explains how we collect, use, and protect your information.

1. Information We Collect

From Guests:

• Email address (when you sign up for updates)
• Search queries and addresses searched
• Browser information and IP address
• Usage data (pages visited, time spent)

From Property Owners (Manual Launch):

• Name, email, and phone number
• Property address and details
• Property type, size, and rates
• Notes you provide during onboarding calls

When Automation Launches:

• Stripe customer and payment method tokens (never full card numbers)
• Booking confirmation data needed to trigger automated charges

2. How We Use Your Information

For Guests:

• To provide property owner contact information
• To send updates about new properties
• To improve our service based on search behavior
• To communicate about your searches or inquiries

For Property Owners (Manual Launch):

• To list your property in our directory
• To connect you with potential guests
• To send service updates and support
• To issue manual invoices via Stripe after confirmed bookings

When Automation Launches:

• To process the flat booking fee automatically through Stripe
• To send pre-charge and receipt emails

3. Data Storage

Currently, guest and owner submissions are stored locally in your browser (localStorage) for MVP testing purposes. Operations data is tracked manually by the concierge team. When we scale:

• We will migrate to secure cloud database
• All data will be encrypted in transit and at rest
• We will implement regular security audits
• Backups will be performed daily

4. Information Sharing

We share information only as follows:

Property Owner Contact Info: Made available to guests searching our directory (this is the purpose of the service)

Payment Processing (Manual Launch): We send Stripe invoices manually; Stripe handles payment details on their servers during checkout.

Payment Processing (Automation): When card-on-file goes live, Stripe will tokenize payment details; we will never store full card numbers.

We Do Not:

• Sell your personal information
• Share your email with third parties for marketing
• Provide your data to advertisers

5. Cookies and Tracking

We use:

• Essential cookies: For basic site functionality
• Analytics: To understand how people use our service (optional Google Analytics)
• localStorage: To remember your preferences and save data

You can disable cookies in your browser settings, but some features may not work.

6. Your Rights

You have the right to:

• Access: Request a copy of your data
• Correction: Update inaccurate information
• Deletion: Request removal of your data
• Opt-out: Unsubscribe from emails at any time
• Portability: Export your data in common format

To exercise these rights, contact us at [email protected]

7. Data Retention

• Guest emails: Until you unsubscribe
• Property listings: While you're an active owner
• Search history: 90 days for analytics
• Booking records: 7 years for tax purposes

8. Security

We implement reasonable security measures including:

• HTTPS encryption for all data transmission
• Secure payment processing through Stripe
• Regular security updates
• Limited access to personal data

However, no system is 100% secure. Use strong passwords and report suspicious activity.

9. Children's Privacy

Direct Stay Bookings is not intended for users under 18. We do not knowingly collect information from children.

10. Changes to This Policy

We may update this policy. We'll notify users of significant changes via email or website notice.

11. International Users

Direct Stay Bookings operates in the United States. By using our service, you consent to data transfer to the US.

12. Contact Us

Questions about privacy?

• Email: [email protected]
• Contact form: Contact page

Note: This is a simplified privacy policy for MVP testing. Consult with a lawyer to ensure compliance with GDPR, CCPA, and other privacy laws before scaling.