Last updated: October 17, 2025
RoomReady collects only the information required to deliver localised housekeeping workflows, offline reliability, push notifications, and billing. This policy explains the data we gather, where we store it, and how long we keep it.
We store manager and cleaner account details (name, email, phone), hotel profile data (hotel name, address, time zone), room numbers, cleaner invitations, checklist progress, issue reports, notification preferences, push tokens, billing and payment metadata, analytics events (e.g., Google Analytics, Sentry), support conversations, IP addresses, device IDs, session tokens, and timestamps tied to assignments, skips, and inspections.
Data powers assignments, offline replay, alerts, reporting, billing enforcement, localisation, and stability improvements. Aggregated analytics help prioritise features without identifying individual cleaners or hotels.
We only share information with vetted processors under confidentiality obligations or when legally required: Vercel (US/EU) for hosting, MongoDB Atlas (US/EU/Singapore) for the database, Stripe (US/EU) for billing, Resend (US) for transactional email, Firebase (global) for push notifications, Google Analytics (US) for usage insights, and Sentry (US) for error tracking.
We apply encryption in transit and at rest, role-based access, rate limits, monitoring, and audit logging. Offline queues purge after 30 days, assignments retain 90 days, audit logs 180 days, and billing records follow statutory accounting periods. If we become aware of a personal data breach we will notify affected users within 72 hours or sooner when required by law.
Contact us to access, correct, export, or delete personal data. We verify identity for security before fulfilling requests. Disabling analytics in hotel settings limits certain insights but core functions continue. We respond to verified requests within 30 days.
Under the Thai PDPA, GDPR, and similar laws you have the right to access, correct, delete, restrict, or object to processing, request data portability, and lodge a complaint with a supervisory authority. Submit requests via support@roomready.app; we respond within 30 days and will explain any lawful basis for declining.
Mintstack AB (RoomReady) is the data controller. Email support@roomready.app or write to Mintstack AB, [ADD SWEDISH COMPANY ADDRESS], Stockholm, Sweden. Provide sufficient detail so we can verify your identity and hotel affiliation.
We update this policy when our practices evolve. Material changes are announced 30 days in advance via email and a dashboard banner. The latest version and effective date appear at the top of this page.
RoomReady uses essential cookies for authentication, localisation, and session management. When analytics is enabled we use Google Analytics cookies. You can disable cookies in your browser, but essential cookies are required for the service. Links for popular browsers are provided in the help centre.
RoomReady is not directed to individuals under 18 and we do not knowingly collect their data. If we discover we have personal data about a minor we will delete it and may disable associated accounts.