Oase / Ops Home

Legal

Privacy Policy

Effective Date: April 27, 2026

1. Overview

StayOps Pro (“we”, “us”, “our”) operates the Oase / Ops hotel operations platform. This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using the Service you agree to this Policy and to our Terms of Service.

2. Information We Collect

  • Account information — name, email, hotel name, role, and password (stored hashed with bcrypt).
  • Operational data — rooms, issues, comments, photos, tasks, and audit logs you create while using the Service.
  • Billing data — handled by Stripe; we never see or store full card numbers. We retain Stripe customer and subscription IDs to manage billing.
  • Technical data — IP address, browser / device info, and access logs used to keep the Service secure.
  • Communications — content of support tickets and emails you send us.

3. How We Use Information

  • Operate, maintain, and improve the Service
  • Process payments and prevent fraud (via Stripe)
  • Send transactional emails (welcome, password reset, staff invitations, support replies, daily digests) via Resend
  • Provide customer support
  • Comply with legal obligations

We do not sell your personal information.

4. Sharing of Information

We share information only with service providers that help us run the Service:

  • Stripe — payment processing
  • Resend — transactional email delivery
  • Cloud infrastructure — hosting and storage

We may also disclose information when required by law or to protect our rights, property, or safety.

5. Data Retention

Operational data is retained for as long as your account is active. Completed issues older than 365 days are auto-purged nightly. On account termination, data is retained for 30 days (in case you reactivate) and then permanently deleted, except where retention is required by law.

6. Security

We use industry-standard security measures: bcrypt for password hashing, JWT in httpOnly cookies for sessions, TLS for all traffic, rate-limiting on sensitive endpoints, and rotating one-time tokens for password resets. No system is 100% secure — you remain responsible for keeping your credentials safe.

7. Your Rights

Depending on where you live, you may have rights to access, correct, export, or delete your personal data. Email support@stayopspro.com and we'll respond within 30 days.

8. Cookies

We use a small number of cookies that are strictly necessary to run the Service (session cookies, CSRF protection). We don't use third-party advertising or tracking cookies.

9. Children

The Service is not directed to children under 16, and we don't knowingly collect personal information from them.

10. Changes

We may update this Policy from time to time. Material changes will be communicated by email and/or in-app notice.

11. Contact

Privacy questions? Email support@stayopspro.com.

Terms of ServiceFranchise / Enterprise License← Back to home

Made with Emergent