Privacy Policy

Last updated: December 13, 2025

At Guest Gem, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

Information We Collect

Account Information

When you create an account, we collect your name, email address, company name, and password. This information is necessary to provide you with access to our platform.

Hotel and Review Data

We collect information about your hotels, including property names, addresses, and review platform credentials. We also process guest reviews from connected platforms to generate AI-powered responses.

Usage Data

We automatically collect information about how you interact with our service, including pages visited, features used, and actions taken. This helps us improve our platform.

How We Use Your Information

  • Provide, maintain, and improve our AI-powered review response service
  • Generate personalized review responses using artificial intelligence
  • Send you service updates, security alerts, and support messages
  • Analyze usage patterns to enhance user experience
  • Comply with legal obligations and protect our rights

Data Security

We implement industry-standard security measures to protect your data:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Secure authentication with password hashing
  • Regular security audits and vulnerability assessments
  • Access controls and employee training on data protection

Your Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate data
  • Deletion: Request deletion of your data (see our Data Deletion page)
  • Portability: Receive your data in a portable format
  • Objection: Object to certain processing of your data

Data Retention

We retain your personal data only for as long as necessary to provide our services and fulfill the purposes described in this policy. When you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal compliance.

Third-Party Services

We use trusted third-party services to operate our platform:

  • Cloud Hosting: Vercel and Railway for application hosting
  • Database: Supabase for secure data storage
  • AI Services: OpenAI, Anthropic, and Google for AI-powered features
  • Authentication: Supabase Auth for secure user authentication

These providers are contractually bound to protect your data and only process it on our behalf.

Cookies

We use essential cookies to enable core functionality such as authentication and session management. We may also use analytics cookies to understand how users interact with our service. You can control cookie preferences through your browser settings.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

privacy@guestgem.com