Privacy Policy

Last updated: 2026-04-23

1. What we collect

When you sign up we collect your name, email, and hashed password. When you add a property we store its metadata (name, address, room types, rates, photos). Guests who book through the engine have their name, email, phone and country stored as guest records in your workspace.

2. What we do NOT collect

• We never see or store payment card data — Stripe handles all card processing.
• We do not track you across other websites.
• We do not sell or share your data with third parties for marketing.

3. Service providers we use

• Stripe — payment processing (Stripe Connect destination charges).
• Resend — transactional email delivery (signup, booking confirmations).
• Zodomus — OTA channel manager integration (only for hotels who activate this feature).
• Hostinger / our VPS — hosting infrastructure, EU data center.
• Let's Encrypt — TLS certificates.

4. Data retention

Your data is kept as long as your account is active. If you cancel, we keep your data for 90 days in case you want to reactivate, then delete it permanently. You can request immediate deletion by emailing privacy@siambookinghotel.com.

5. Your rights (GDPR)

• Access — request a copy of all your data.
• Rectification — ask us to correct inaccurate info.
• Erasure — request permanent deletion.
• Portability — export your data as CSV / JSON.
• Objection — opt out of marketing emails (we rarely send any).

Email privacy@siambookinghotel.com to exercise any of these rights. We respond within 30 days.

6. Cookies

We use one first-party session cookie (__Secure-better-auth.session_token) to keep you logged in. No third-party cookies, no advertising cookies, no tracking pixels.

7. Contact

Privacy questions: privacy@siambookinghotel.com