← Back

Privacy Policy

Last update: April 15, 2026

1. Who We Are

Onseason provides technology services for property managers (PMCs) and guests, including booking websites, AI website builders, and a vacation rental network. The company operates as a data controller.

Contact Details

  • Email: privacy@onseason.ai
  • Phone: +359 875 333 000
  • Address: 27 Solunska Str., Sofia 1000, Bulgaria

2. What Data We Collect

  • Identification Data: Full name, email, phone number, postal address
  • Booking Data: Property booked, check-in/check-out dates, number of guests, preferences
  • Payment Data: Processed securely via Stripe (we do not store card details)
  • Communications: Messages between guests and PMCs with support team
  • Technical Data: IP address, browser type, operating system, cookies
  • Profile Data: Saved properties, preferences, reviews or feedback

3. Why We Process Your Data

  • Managing bookings and reservations
  • Facilitating secure payments
  • Enabling guest-PMC communication
  • Sending booking confirmations and essential updates
  • Complying with legal obligations
  • Providing support and dispute resolution
  • Improving and personalizing services
  • Sending marketing communications when permitted

4. Legal Grounds for Processing

  • Performance of a contract for bookings, payments, and communication
  • Legitimate interests for platform functionality and fraud prevention
  • Consent for marketing communications (withdrawable anytime)
  • Legal obligation for tax compliance and regulatory requirements

5. Sharing of Personal Data

Data sharing occurs with:

  • PMCs: Fulfilling bookings
  • Stripe: Processing payments
  • Service Providers: Hosting, analytics, CRM tools
  • Legal Authorities: When required by law

We do not sell or rent your personal data to third parties.

6. International Transfers

Data transferred outside the EEA uses Standard Contractual Clauses (SCCs) to maintain GDPR compliance.

7. Data Retention

Data TypeRetention Period
Account DataWhile active
Booking RecordsUp to 7 years
Payment DataTemporarily, deleted after processing
Support / CommunicationFor internal analysis and resolution

8. Data Security

Safeguards include:

  • Encryption of sensitive data during transmission
  • Access control for authorized personnel only
  • Regular audits and vulnerability assessments

However, no system is 100% secure.

9. Your Rights Under GDPR

  • Access to your data
  • Rectification of inaccurate information
  • Erasure request (subject to legal exceptions)
  • Restriction on processing
  • Data portability in structured format
  • Objection to processing
  • Withdrawal of consent

10. Exercising Your Rights

Contact privacy@onseason.ai for requests. We will respond within 30 days in accordance with GDPR.

11. Cookies and Tracking Technologies

Used for enabling functionality, analyzing behavior, personalizing experience, and delivering marketing content when permitted.

12. Changes to This Policy

Updates occur periodically with major changes communicated via email or platform notification.

13. Contact Us

  • Email: privacy@onseason.ai
  • Address: 27 Solunska Str., Sofia 1000, Bulgaria
  • Phone: +359 875 333 000