← Back to home

Privacy Policy

Last updated: April 4, 2026

1. Data we collect

We collect the minimum data needed to operate the Service:

  • Account information: email address and password (hashed)
  • Listing data: property details imported from Airbnb (photos, descriptions, pricing, availability)
  • Guest booking data: name, email, dates, and payment details (processed by Stripe — we do not store card numbers)
  • Usage data: pages visited, browser type, and IP address for security and analytics

2. How we use your data

  • To generate and display your direct booking page
  • To process guest bookings and payments
  • To synchronize availability with Airbnb
  • To send booking confirmations and account notifications
  • To prevent fraud and abuse

3. Legal basis for processing

We process your personal data on the following legal bases:

  • Contract performance — to create and manage your account and process bookings
  • Legitimate interest — for analytics, security, and fraud prevention
  • Consent — for marketing emails (you may withdraw consent at any time)

4. Data sharing

We do not sell your personal data. We share data only with:

  • Stripe — for payment processing
  • Your guests — booking confirmations include your property details and contact information
  • Service providers — hosting and email delivery, bound by data processing agreements

5. International data transfers

Your data may be processed in the European Union and the United States. When data is transferred outside the EU, we ensure appropriate safeguards are in place, including Standard Contractual Clauses and adequacy decisions, to protect your personal data in accordance with GDPR requirements.

6. Data retention

We retain your data for as long as your account is active. Upon account deletion, personal data is removed within 30 days, except where retention is required by law (e.g., billing records).

7. Your rights (GDPR)

If you are in the European Economic Area, you have the right to:

  • Access and receive a copy of your personal data
  • Rectify inaccurate data
  • Request deletion of your data
  • Object to or restrict processing
  • Data portability

To exercise these rights, contact us at hello@comebackdirect.com.

8. Cookies

We use essential cookies only — session cookies for authentication and security. We do not use tracking cookies or third-party advertising cookies.

9. Security

We use industry-standard measures to protect your data, including encrypted connections (TLS), hashed passwords, and secure payment processing via Stripe.

10. Changes to this policy

We may update this policy from time to time. Material changes will be communicated via email.

11. Contact

For privacy-related inquiries, contact us at hello@comebackdirect.com.

For data protection inquiries: hello@comebackdirect.com

Terms of Service