Privacy Policy for Bay To Stay
This Privacy Policy explains how Bay To Stay collects, uses, stores, shares, retains, and deletes personal data when you use the Bay To Stay mobile application on Android or iOS. This page is intended to satisfy the privacy disclosure requirements for Google Play and the Apple App Store.
Bay To Stay allows users to create accounts, sign in, browse stays and services, use maps and location-based features, upload images, receive notifications, and request account deletion from inside the app. We do not sell your personal data.
1. Data We Collect
We collect the following categories of data, depending on how you use Bay To Stay:
- Personal data: your name, email address, phone number, account credentials, profile information, user-submitted content, booking or listing details you enter, support messages, and any photos you upload.
- Authentication data: account identifiers and sign-in data processed through Firebase Authentication. If you choose a social sign-in method, we may also receive basic account information made available by that provider, such as your name, email address, or profile image.
- Usage data: app launches, screens viewed, features used, session activity, approximate timestamps of interactions, and analytics events generated while you use the app.
- Device information: device model, operating system, app version, language, time zone, IP address, mobile network information, app instance identifiers, and push notification token.
- Location data: approximate or precise location only when you grant permission and use location-dependent features such as nearby stays, recommendations, maps, or unit location selection.
- Camera and photo library data: photos or media you choose to capture or upload, for example when creating or editing a listing or profile.
2. How We Use Data
We use the data described above to provide the app and operate our services in a way users would reasonably expect. Specifically, we use data to:
- create and manage your account, authenticate sign-in attempts, and secure access to the app;
- deliver core app functions such as listings, bookings, profile management, messaging, maps, and user support;
- personalize content, nearby recommendations, and search results based on app activity and location features you choose to use;
- send transactional and service notifications, including account, security, booking, or app-related updates;
- measure engagement, monitor performance, improve features, troubleshoot issues, and prevent abuse or fraud;
- comply with legal obligations, resolve disputes, and enforce our terms and platform security rules.
3. Third-Party Services
Bay To Stay uses third-party service providers that process data on our behalf or as independent service providers for specific functions:
- Firebase Authentication: used for account creation, sign-in, session management, and account security.
- Firebase Analytics: used to understand app usage, screen views, feature adoption, and product performance.
- Firebase Cloud Messaging: used to deliver push notifications and store a device notification token when notifications are enabled.
These providers may process device information, app identifiers, usage events, and account-related data strictly for the purposes above. Their handling of data is governed by their own privacy and security obligations. Bay To Stay requires that third-party providers used by the app support policy-compliant data handling.
4. Sharing of Data
We share data only when necessary to operate Bay To Stay and only for legitimate business or legal purposes. This may include sharing with hosting providers, analytics providers, authentication providers, notification infrastructure, and service providers that support app operations. We may also disclose information if required by law, to protect users, investigate fraud or abuse, or enforce our legal rights.
We do not sell personal data and we do not use personal data collected in Bay To Stay for data brokerage purposes.
5. Data Retention
Data retention depends on the type of data and whether your account remains active. How long we retain data is described below:
- Active account data: retained for as long as your account is active and needed to provide the app’s services.
- Account profile, user content, and core service records after account deletion: deleted or irreversibly anonymized within 30 days after a valid account deletion request is completed.
- Analytics records, security logs, and technical diagnostics: generally retained for up to 90 days from collection unless a shorter lifecycle applies.
- Backups: encrypted backup copies may persist for up to 90 days before automatic overwrite.
- Legally required or fraud-prevention records: if we must retain limited information for legal compliance, payment or booking dispute handling, fraud prevention, security, or enforcement of our agreements, we may retain only the minimum necessary data for up to 180 days after account deletion, or longer if required by law.
When retention periods expire, data is deleted, anonymized, or securely overwritten according to the nature of the system storing it.
6. Data Deletion
Data deletion is available from inside the app because Bay To Stay allows account creation. Users can request deletion in the app through the account or profile area where the delete account option is presented.
Inside the app: submit the in-app delete account request and confirm your identity.
Outside the app: you may also use the public deletion page at delete-account.html or email runsoft.develop@gmail.com with the phone number or email associated with your account.
After a verified deletion request:
- your access to the account is disabled and active sessions are revoked;
- personal data associated with the account is scheduled for deletion or anonymization within 30 days;
- analytics, logs, and backup copies are removed on their normal retention cycle described in the data retention section;
- limited records may be kept only where necessary for fraud prevention, dispute handling, platform integrity, or legal compliance.
If a deletion request cannot be completed immediately because additional verification is needed, we may ask for enough information to confirm that the request is being made by the account owner.
7. Security
We use reasonable administrative, technical, and organizational safeguards designed to protect personal data from unauthorized access, loss, misuse, or alteration. These measures include encrypted transmission over HTTPS, access controls, authentication safeguards, restricted internal access, and monitoring intended to detect abuse or unauthorized activity.
No system can be guaranteed to be 100% secure, but we work to reduce risk and to limit access to data to authorized personnel and service providers who need it to operate Bay To Stay.
8. Your Choices
You may choose whether to grant location, camera, photo library, and notification permissions. If you deny certain permissions, some features of Bay To Stay may not function as intended. You may also update certain account information from within the app.
9. Changes to This Policy
We may update this Privacy Policy when our features, data practices, or legal obligations change. When we make material updates, we will revise the effective date on this page. Continued use of Bay To Stay after an update means the updated policy applies to future use of the app.
10. Contact Information
If you have questions about this Privacy Policy, data retention, data deletion, or how long we retain data, contact Bay To Stay at runsoft.develop@gmail.com.