Privacy Policy

StaySignals provides a booking-fraud trust layer for hotel OTAs. Our service uses account information, usage information, browser and device signals, and booking context to produce a risk score, risk level, and suggested action for a checkout decision.

This Privacy Policy explains what we collect, how we use it, when we share it, and the commitments we make around customer and traveler data.

Account information includes names, work email addresses, authentication details, organization membership, project settings, API key metadata, billing status, and support messages.

Customer Data means data that customers or their applications submit to StaySignals through the dashboard, browser SDK, API, or related integrations. This may include browser and device signals, IP-derived context, email and booking fields, check history, risk decisions, and related metadata.

Usage information includes pages viewed, features used, API request metadata, diagnostic events, and information needed to maintain the reliability and security of the service.

We use information to provide and administer StaySignals, authenticate users, operate projects and API keys, generate risk scores, assign risk levels, return suggested actions, display decision history, troubleshoot issues, improve product quality, prevent abuse, and comply with legal obligations.

We do not use Customer Data for advertising networks, data broker products, unrelated profiling, or any purpose that is outside providing, protecting, supporting, or improving StaySignals.

We do not sell, rent, trade, or expose Customer Data. We do not use Customer Data to build marketing audiences for third parties, and we do not disclose Customer Data except as described in this policy, as instructed by the customer, or as required by law.

We do not misuse Customer Data. Access is limited to people and systems with a business need to operate, secure, support, or improve StaySignals.

Customers are responsible for making sure they have the rights and notices needed to send data to StaySignals, including any traveler or end-user information submitted through their implementation.

We may share information with service providers that help us host, secure, monitor, support, bill for, and operate StaySignals. These providers are only permitted to process information for the services they provide to us.

We may disclose information when required by law, legal process, or to protect the rights, safety, and security of StaySignals, our customers, end users, or the public.

If StaySignals is involved in a merger, acquisition, financing, or sale of assets, information may be transferred as part of that transaction, subject to this policy or a policy that provides materially similar protection.

We retain information for as long as needed to provide the service, maintain security, support customer use, resolve disputes, enforce agreements, and meet legal obligations.

When information is no longer needed, we delete it, de-identify it, or retain it only in a protected backup or archival state until deletion is practical.

We use administrative, technical, and organizational safeguards designed to protect information against unauthorized access, disclosure, alteration, and destruction.

No method of transmission or storage is completely secure, but we treat Customer Data as sensitive business data and work to protect it accordingly.

Depending on where you are located, you may have rights to request access, correction, deletion, portability, restriction, or objection regarding personal information.

Customers can manage account and organization information in the dashboard. For other privacy requests, contact us using the email below.

We may update this Privacy Policy from time to time. When we do, we will revise the date above. If a change materially affects how we handle Customer Data, we will provide notice through the service or another reasonable channel.

If you have questions about this policy or want to make a privacy request, reach us at leo@pageonelab.com.