Privacy Policy

Last updated: May 22, 2026

Who we are

StayGuide is operated by Abdulrehman Irfan (sole proprietor), based in the United States, trading as "StayGuide" ("we", "us", "our"). For the personal data described in this notice, we act as the data controller. You can contact us at any time via our contact page.

Information we collect

We collect the information you provide when creating an account (such as email and name), the guidebook content you upload, and basic usage data (such as page views and device type) needed to operate the Service.

How we use it

We use your information to operate, secure, and improve StayGuide, to deliver your guidebooks to your guests, and to communicate with you about your account.

Legal basis for processing

Where the GDPR or UK GDPR applies, we process your personal data on the following bases: performance of a contract (to provide the Service you signed up for), legitimate interests (to secure the Service, prevent fraud, and improve our product), legal obligation (e.g. tax and accounting records), and consent (where required, e.g. for non-essential cookies or marketing emails — which you can withdraw at any time).

Sharing

We do not sell your personal data. We share information only with service providers who help us run the Service, including:

  • Paddle.com Market Ltd ("Paddle") — our Merchant of Record and payment processor. When you purchase a subscription, Paddle receives your billing details (name, email, billing address, payment information) to process the sale, handle taxes, issue invoices, and manage refunds and subscriptions on our behalf. Paddle acts as an independent data controller for payment data. See Paddle's Privacy Notice.
  • Hosting, database, and infrastructure providers used to run the Service.
  • Analytics and email delivery providers used to operate and communicate about the Service.
  • Professional advisers (legal, accounting) and authorities where required by law.

Cookies

We use a small number of essential cookies for authentication and to remember your preferences.

Data retention

We retain your data for as long as your account is active, and afterwards only as long as needed for legal, tax, or fraud-prevention purposes. You can request deletion at any time by contacting us.

Your rights

Depending on where you live, you may have the right to access, correct, export, restrict, object to, or delete your personal data, and to withdraw consent or lodge a complaint with your local data protection authority. To exercise these rights, contact us and we will respond within the period required by law (typically one month under GDPR).

International transfers

We are based in the United States and our service providers may process data in the US and other countries. Where data is transferred from the UK/EEA, we rely on appropriate safeguards such as Standard Contractual Clauses.

Security

We use industry-standard safeguards to protect your data, but no system is perfectly secure. Please use a strong, unique password for your account.

Contact

Privacy questions? Reach out here.