This Privacy Policy (the "Policy") outlines how Jorgo Sarl ("the Company", "we", "us") collects, uses, and protects personal data provided by users ("User", "Client", "you") of the theRoom.host service. We operate in strict accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679.
The Company as a Data Processor: When you upload guest information (names, booking dates, passport details) to our platform, you are the Data Controller and we are the Data Processor. We process this data only to provide the service.
The Company as a Data Controller: We are the Controller for the data you provide to create your account (your name, email, billing info).
We process the following categories of data:
Account Information: Full name, email address, phone number, and company details.
Guest Data (provided by you): Information about your guests necessary for property management (e.g., identity details, stay dates).
Payment Information: Processed via secure, PCI DSS-compliant third-party gateways. We do not store full credit card numbers on our servers.
Technical Data: IP address, browser type, and usage statistics collected via cookies for platform optimization and security.
We process data based on:
Contractual Necessity: To provide the management tools you signed up for.
Legal Obligation: To comply with tax, accounting, and EU reporting laws.
Legitimate Interest: To improve service security and functionality.
Consent: For marketing communications (can be withdrawn at any time).
We do not sell your data. Disclosure to third parties occurs only:
To provide the service (e.g., syncing with Booking.com, Airbnb, or payment providers).
To hosting providers (servers located within the European Economic Area).
If required by law or a court order.
We implement industry-standard technical and organizational measures (including SSL/TLS encryption and regular backups).
Retention: Account data is kept for the duration of your subscription plus any period required by tax law (usually 5–10 years).
Guest Data: Deleted or anonymized upon your request or after account termination.
Under EU law, you have the following rights:
Access & Rectification: View and update your data at any time via your Dashboard.
Erasure ("Right to be forgotten"): Request deletion of your personal data.
Data Portability: Request a copy of your data in a machine-readable format.
Object to Processing: Opt-out of marketing or profiling.
For any privacy-related inquiries, please contact our Data Protection representative at: Jorgo Sarl Email: info@theroom.host