1. Introduction
DirectStay ("we," "us," or "our") respects your privacy and is committed to protecting your personal
information. This Privacy Policy details how we collect, process, disclose, and safeguard your
personal data when you use our website, mobile applications, and related services (collectively, the
"Platform"). By accessing or using the Platform, you agree to the practices outlined in this Privacy
Policy.
This policy complies with the General Data Protection Regulation (GDPR), the California Consumer
Privacy Act (CCPA), and applicable privacy regulations.
2. Information We Collect
2.1 Personal Information
We collect personal information that you voluntarily provide when registering, booking, or interacting
with our Platform, including but not limited to:
- Contact Information: Name, email address, phone number, and mailing address.
- To respond to your inquiries, provide customer support, and communicate with you.
- To send SMS, emails, or phone communications (with your consent).
- Account Information: Username, password, profile details, and preferences.
- Transaction Information: Payment details, booking history, and financial information.
- Verification Information: Government-issued identification (when required).
2.2 Usage and Device Information
We automatically collect certain information when you interact with our Platform:
- Usage Data: IP addresses, browser type, operating systems, referring pages, and user
interactions.
- Device Data: Device identifiers, mobile network details, and device specifications.
- Cookies and Tracking Technologies: Information via cookies, web beacons, and similar
technologies (refer to Section 5).
3. How We Use Your Information
We utilize collected information to:
- Provide and Enhance Services: Process bookings, facilitate transactions, and improve user
experience.
- Communications: Send service notifications, marketing communications (with consent), and
respond to user inquiries.
- Security and Compliance: Protect Platform security, integrity, and comply with legal requirements.
- Analytics and Development: Evaluate user behavior to enhance service quality and functionality.
- Marketing: Develop and deliver personalized marketing and advertisements, respecting consent
requirements.
4. Legal Bases for Processing (GDPR)
For European Economic Area (EEA) residents, our legal basis for processing includes:
- Consent: Explicit consent provided by you.
- Contractual Necessity: Processing required to fulfill our contractual obligations to you.
- Legal Obligations: Compliance with applicable laws and regulations.
- Legitimate Interests: Our legitimate business interests, balanced against your rights and freedoms.
5. Cookies and Tracking Technologies
We use cookies and similar technologies to:
- Authenticate and secure user sessions.
- Analyze Platform usage and user interactions.
- Personalize and enhance user experience.
You may manage cookie preferences through your browser settings. Refer to our detailed Cookie
Policy for more information.
6. Sharing and Disclosure
We may share your personal information with:
- Service Providers: Third-party vendors handling payments, hosting, and customer support.
- Legal Authorities: As required by law or legal proceedings.
- Business Transactions: During mergers, acquisitions, or asset transfers.
- Consent-Based Sharing: With explicit consent or upon your direction.
DirectStay does not sell your personal information.
7. Data Retention
Your personal information is retained only as long as necessary to achieve stated purposes or meet
legal obligations. Data no longer required is securely deleted or anonymized.
8. Data Security
We implement comprehensive security measures to protect your personal information. However, no
digital transmission or storage method can guarantee absolute security.
9. International Data Transfers
Your data may be transferred internationally, including outside your home jurisdiction, with varying
privacy protections. We ensure appropriate safeguards and compliance with applicable laws during
these transfers.
10. Your Rights
10.1 GDPR Rights (EEA Residents)
- Access: Request personal data access.
- Rectification: Correct inaccurate or incomplete data.
- Erasure: Request deletion, subject to certain limitations.
- Restriction: Limit data processing.
- Portability: Receive data in a portable format.
- Objection: Object to processing under legitimate interests.
- Consent Withdrawal: Withdraw consent without affecting previous lawful processing.
10.2 CCPA Rights (California Residents)
- Right to Know: Information about personal data collected.
- Deletion: Request data deletion, with exceptions.
- Opt-Out: Opt-out from selling personal data (Note: DirectStay does not sell data).
To exercise your rights, contact us via details provided in Section 13.
11. Children's Privacy
DirectStay does not knowingly collect data from individuals under 18. If such information is
identified, it will be promptly deleted upon notification.
12. Changes to Privacy Policy
We reserve the right to update this Privacy Policy periodically. Changes will be posted on our
Platform, indicated by a revised "Last Updated" date. Continued use of our Platform indicates
acceptance of the updated policy.
13. Contact Information
For questions, concerns, or to exercise your rights, please contact:
DirectStay Legal & Privacy Department
Email: [email protected]
Address: 1718 Capitol Ave. Cheyenne, WY 82001