top of page

Privacy Policy
Last Updated: 2025-03-19

1. Introduction

Welcome to NordStay. Your privacy is important to us, and we are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and protect your information when you use the NordStay platform and services.

If you do not agree to this policy, please discontinue use of our services.

 

2. Information We Collect

We collect personal information when you use our platform, including:

2.1 Information You Provide to Us

  • Contact Information: First name, last name, phone number, postal address, email address, date of birth, profile photo.

  • Identity Information: Government-issued ID, verification details, or a selfie for verification purposes.

  • Payment Information: Bank details, payment method, security deposits, transaction history.

  • Additional Profile Information: Gender, preferred language(s), city, personal description.

  • Information About Others: Co-traveller details, emergency contacts.

  • Biometric Information: Facial recognition data (with consent, where required by law).

  • Other Information: Messages, surveys, promotions, address book contacts, booking details.

2.2 Information Automatically Collected

  • Geolocation Data: IP address, GPS data, device-based location tracking.

  • Usage Information: Searches, bookings, additional services, engagement with our website and ads.

  • Device Information: IP address, hardware/software information, crash data.

  • Cookies and Tracking Technologies: See Section 7 (Cookies Policy) for details.

  • Payment Transaction Information: Payment history, billing details, financial interactions.

2.3 Information from Third Parties

We may collect information from:

  • Referrals and Co-travellers (e.g., when invited to a trip).

  • Travel Insurance Partners (e.g., claim details).

  • Financial Institutions (e.g., payment verification, fraud prevention).

  • Flexible Payment Providers (e.g., instalment plan details).

  • Background Check Providers (e.g., fraud detection, identity verification).

 

3. How We Use Your Information

We process personal data to:

3.1 Provide, Improve & Develop Our Services

  • Process bookings and payments.

  • Develop and enhance the platform.

  • Provide customer service.

  • Customise your experience.

3.2 Ensure Safety & Legal Compliance

  • Verify identity and prevent fraud.

  • Conduct background checks.

  • Comply with legal and regulatory obligations.

  • Protect the security of users and properties.

  • Monitor, detect, and report any suspected fraudulent, criminal, or illegal activities occurring within our properties to the relevant law enforcement or regulatory authorities, in compliance with applicable laws.

3.3 Marketing & Advertising

  • Personalised advertisements via Meta (Facebook Ads) and Google AdSense.

  • Promotions, referral programs, loyalty schemes.

  • Measuring ad effectiveness.

 

4. Sharing & Disclosure of Information

We may share personal data:

  • With Your Consent: When you approve sharing.

  • With Service Providers: (e.g., payment processors, identity verification).

  • With Business Partners: (e.g., travel insurers, finance partners).

  • For Legal Compliance: To respond to court orders, prevent illegal activity, or report suspicious or illegal activities to authorities.

  • In Mergers or Business Transfers: If our business is sold or merged.

 

5. Security & Data Breaches

We use administrative, technical, and physical security measures to protect your data. In the event of a data breach, we will:

  • Investigate the issue promptly.

  • Notify affected users and regulators as required by law.

  • Take necessary actions to prevent future breaches.

 

6. Data Retention Policy

We retain personal data for as long as necessary to:

  • Fulfil contractual and legal obligations.

  • Maintain financial records (e.g., tax reporting).

  • Prevent fraud and security risks.

After this period, data is securely deleted or anonymised.

 

7. Cookie Policy & User Consent Management

We use cookies and tracking technologies to enhance your experience and improve marketing. This includes:

7.1 What Cookies We Use

  • Essential Cookies: Enable core functionality (e.g., login, payments).

  • Analytics Cookies: Track website usage (Google Analytics).

  • Marketing Cookies: Deliver targeted ads (Google AdSense, Meta Ads).

  • Performance Cookies: Improve platform efficiency.

7.2 Managing Cookie Preferences

You can control cookies by:

  • Adjusting browser settings (blocking or deleting cookies).

  • Using our cookie consent tool (opt-in/opt-out options available).

 

 

8. Third-Party Services and Integrations

Parts of NordStay may link to third-party services or integrate with external platforms. While we carefully select these providers, NordStay does not own or control them. When you interact with third-party services and choose to use them, you provide your information directly to them, and their respective privacy policies apply.

We currently use third-party providers for:

  • Payment Processing: Stripe (for handling transactions securely).

  • Advertising & Analytics: Google Ads, Google Analytics, Meta Ads (for marketing and site performance tracking).

  • Property & Booking Management: Airbnb, Booking.com, Guestflow (for managing reservations and listings).

  • Productivity & Workflow Automation: Monday.com, Zapier (for internal operations and task automation).

  • Mapping & Location Services: Google Maps/Earth (for location-based services).

We carefully select these providers to align with our security and compliance requirements; however, NordStay is not responsible for their independent privacy practices.

 

 

9. International Data Transfers

If we transfer data outside the UK/EU, we implement safeguards such as:

  • Standard Contractual Clauses (SCCs) approved by UK/EU regulators.

  • Data Processing Agreements (DPAs) with third parties.

  • Compliance with UK GDPR & EU GDPR regulations.

 

10. Your Rights (GDPR & UK GDPR Compliance)

You have the right to:

  • Access Your Data – Request a copy of your data.

  • Correct Your Data – Update incorrect details.

  • Erase Your Data – Request data deletion (subject to legal obligations).

  • Restrict Processing – Limit how we use your data.

  • Object to Processing – Opt out of marketing communications.

  • Withdraw Consent – Revoke previously given consent.

To exercise your rights, email contact@NordStay.co.uk.

11. Changes to This Privacy Policy

We may periodically update this Privacy Policy. Substantial changes will be posted on this page, and where appropriate, we will notify you by email.

 

12. Contact Us

If you have any questions, please contact us at:
📧 contact@NordStay.co.uk

 

 

13. Legal Jurisdiction

This Privacy Policy is governed by the laws of England and Wales, including the UK GDPR and the Data Protection Act 2018

 

14. Property Owners Right to Lodge a Complaint

We are committed to addressing privacy concerns in a timely manner. If you believe your data has been misused, please contact us first, and we will make every effort to resolve your complaint.

 

When you contact us with a complaint:

  • We will acknowledge receipt of your complaint within five working days.

  • We aim to resolve your concern within 30 days.

  • If further investigation is required, we will keep you informed of the progress and expected timeline.

  • If you remain unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s data protection authority, via their website at www.ico.org.uk.

MENU

bottom of page