Core Platform

Guest Experience

Revenue & Analytics

Operations

By property type

By scale

Integrations

Learn

For developers

Company

Tools

PricingCompare
Sign inGet started

Legal

Privacy Policy

Last updated: April 11, 2026

1. Data Controller

SwiftGuest, operated by Appsclicks, is the data controller for information collected through the SwiftGuest platform. For guest data entered by property managers, the property is the data controller and SwiftGuest acts as a data processor.

2. Data We Collect

  • Account information — name, email address, property details, contact information
  • Booking data — reservations, guest records, room assignments, check-in/out dates
  • Payment data — transactions are tokenized via Rapyd, Tranzila, PayPal, or Stripe. We never store raw card numbers, CVVs, or full card data on our servers
  • Analytics — usage patterns, feature interactions, and performance metrics to improve the Service

3. Legal Basis for Processing

  • Contract performance — processing necessary to provide the Service you subscribed to
  • Legitimate interest — analytics, security monitoring, and service improvement
  • Consent — optional communications and non-essential data processing, which you may withdraw at any time

4. Data Retention

Retention periods are configurable per property. Financial records are retained for a default of 7 years to comply with tax and accounting obligations. Account data is deleted within 30 days of account closure, unless legal retention applies.

5. Your Rights

Under GDPR and applicable data protection laws, you have the right to:

  • Access — request a copy of your personal data
  • Rectification — correct inaccurate or incomplete data
  • Erasure — request deletion of your data (“right to be forgotten”)
  • Portability — receive your data in a structured, machine-readable format
  • Objection — object to processing based on legitimate interest

Contact privacy@swiftguest.com to exercise any of these rights. We respond within 30 days.

6. Third-Party Services

  • Cloudflare — hosting, CDN, and edge infrastructure
  • Rapyd — global payment processing (PCI DSS Level 1 compliant)
  • Tranzila — Israeli payment rail (PCI DSS compliant)
  • PayPal — global wallet payment processing (PCI DSS compliant)
  • Channex — channel manager for OTA distribution
  • Resend — transactional email delivery
  • Slack — internal notifications and support chat

7. Cookies

We use essential cookies only. Our session cookie (sg.session_token) expires after 90 days and is required for authentication. We do not use tracking or advertising cookies. See our full Cookie Policy.

8. Children's Privacy

The Service is not intended for individuals under 18. We do not knowingly collect data from children.

9. Changes

We may update this policy and will notify you of material changes via email. Continued use after changes constitutes acceptance.

10. Contact

For privacy inquiries: privacy@swiftguest.com