StayTick logo

Last updated: 2026

1. Who we are

StayTick is an online accommodation-booking platform (StayTick.com and StayTick.es) operated from Spain. For the purposes of data-protection law, StayTick is the data controller of the personal data we process about you. If you have any questions about this policy or how we handle your data, you can contact us at info@staytick.com or +34 643195384.

2. What data we collect

We collect the following categories of personal data:

  • Account data: name, email address, password and, where provided, phone number.
  • Booking data: details needed to make and manage your accommodation reservation, such as guest names, dates, accommodation chosen and your booking reference.
  • Payment-related data: your payment is handled by third-party payment processors. We receive confirmation of payment and limited transaction details, but we do not collect or store your full card number.
  • Usage and device data: information about how you use the platform, collected through cookies and similar technologies (for example IP address, browser type and pages viewed).
  • Communications: messages you send us, such as support requests.

3. How and why we use your data

We use your personal data for the following purposes, relying on the legal bases indicated:

  • To provide the booking service (process your booking, send confirmations, manage cancellations and support) — legal basis: performance of a contract.
  • To process payments through our payment providers — legal basis: performance of a contract and legal obligation.
  • To improve and secure the platform and prevent fraud — legal basis: our legitimate interests.
  • To send marketing communications where you have opted in — legal basis: consent, which you can withdraw at any time.
  • To comply with legal, tax and accounting obligations — legal basis: legal obligation.

4. Who we share your data with

We share personal data only as needed to provide our service and never sell it. Recipients may include:

  • The hotel or accommodation supplier for your booking, so they can provide your stay.
  • Payment processors (for example Stripe) and instalment providers (for example Scalapay) to handle your payment.
  • Trusted service providers who support our platform (for example hosting, communications and customer-support tools), acting on our instructions.
  • Authorities or advisers where required by law or to protect our legal rights.

5. International transfers

Your data is primarily processed within the European Economic Area. Where a provider processes data outside the EEA, we put appropriate safeguards in place, such as European Commission adequacy decisions or Standard Contractual Clauses, to ensure your data remains protected.

6. Data retention

We keep your personal data only for as long as necessary for the purposes described above — in particular to manage your bookings and account, and to meet legal, tax and accounting obligations. When data is no longer needed, we delete or anonymise it.

7. Your rights

Under the GDPR you have the right to:

  • access the personal data we hold about you;
  • request rectification of inaccurate or incomplete data;
  • request erasure of your data where applicable;
  • request restriction of processing;
  • data portability;
  • object to certain processing, including direct marketing;
  • withdraw your consent at any time where processing is based on consent.

You also have the right to lodge a complaint with the Spanish Data Protection Agency (Agencia Española de Protección de Datos, AEPD) if you believe your data has not been handled properly.

8. Cookies

We use cookies and similar technologies to operate the platform, remember your preferences, measure usage and, with your consent, support analytics and marketing. You can manage your preferences through the cookie banner or your browser settings; some cookies are necessary for the platform to function.

9. Security

We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss or misuse. Payment data is handled by PCI-compliant payment processors. While no system can be guaranteed completely secure, we work to keep your information protected.

10. Changes to this policy

We may update this Privacy Policy from time to time. The "last updated" date above shows when it was last revised. We encourage you to review this page periodically.

11. Contact and how to exercise your rights

To exercise any of your rights or ask a question about your privacy, contact us at:

  • Email: info@staytick.com
  • Phone: +34 643195384