Privacy Policy

Booking data. Guest email, time block, payment method tokens — never raw card numbers.

Operational data. Sensor telemetry, lock events, agent decisions.

Marketing data. Form submissions, UTM parameters, page views on this site.

To deliver the service contracted by our customer (the property operator), to operate and improve the platform, to comply with legal obligations, and — with consent — for marketing.

The property operator is the data controller for their own bookings and guests. ZenSpace, Inc. is the data processor.

For our own marketing data (form submissions on this site), ZenSpace, Inc. is the controller.

With our customer (the property operator). With sub-processors strictly under data processing agreements: Stripe for payments, AWS for hosting, MongoDB Atlas for storage, Resend for email.

Never sold.

Right to access, right to deletion, right to portability, right to object. Submit a request to privacy@zenspace.io.

Essential cookies (session). Analytics cookies (with consent). UTM tracking is session-only via sessionStorage. See our Cookie Policy for the full breakdown.

The service is not intended for users under 18.

Encryption in transit (TLS 1.3) and at rest (AES-256). SOC 2 Type II in progress. Annual penetration testing.

Updates posted with a revised effective date. Material changes notified via email to registered users.

privacy@zenspace.io