GDPR

The General Data Protection Regulation (GDPR) is a comprehensive European data protection law that strengthens individuals' rights and sets strict rules for organizations that collect, use, and store personal data.

At Roomspilot, we are committed to respecting your privacy and protecting your data. Our platform is designed with privacy in mind, and we strive to maintain full compliance with the GDPR across all services and operations.

We store all user data on secure servers located within the European Union. Servers are fully GDPR-compliant and certified under DIN ISO/IEC 27001 for information security management.

You have the following rights under the GDPR:

- Access your personal data.
- Correct inaccuracies in your personal data.
- Delete your personal data.
- Object to the processing of your personal data.

More information on how to exercise these rights can be found in our Privacy Policy.

Roomspilot acts as a data processor on behalf of property hosts, who are the data controllers. For data subject requests such as data deletion or correction, we will forward your request to the appropriate host unless otherwise required by law.

We are committed to transparency, privacy, and providing tools for hosts (our customers) and guests to manage their data responsibly.