HealingStays
Back to Home

Data Privacy Policy

Last Updated: February 7, 2026

Our Commitment to Privacy

TheHealingStays recognizes the sensitive nature of mental health information and is committed to protecting your privacy with the highest standards of data security and confidentiality.

Key Privacy Principles:

  • Minimal data collection - only what's necessary
  • Explicit consent for sensitive information
  • Strong encryption and security measures
  • No selling or sharing of personal data
  • User control over their information

Information We Collect

1. Account Information

When you create an account, we collect:

  • Name and email address
  • Phone number (optional)
  • Password (encrypted)
  • Profile preferences

2. Booking Information

  • Booking dates and property selections
  • Guest count and special requirements
  • Payment information (processed securely through third-party providers)
  • Communication with hosts

3. Health Disclosure Information (Sensitive)

With your explicit consent, we may collect:

  • Mental health conditions (for appropriate property matching)
  • Mobility or accessibility needs
  • Dietary restrictions
  • Emergency contact information

Note: This information is encrypted, shared only with your chosen host, and never used for marketing purposes.

4. Usage Data

  • Pages visited and features used
  • Search queries and filters applied
  • Device information and browser type
  • IP address and location (city/state level only)

5. Communications

  • Messages between guests and hosts
  • Support inquiries and feedback
  • Reviews and ratings

How We Use Your Information

We use collected information solely for:

  • Service Delivery: Facilitating bookings, connecting guests with hosts, processing payments
  • Safety & Support: Ensuring guest safety, providing customer support, resolving disputes
  • Platform Improvement: Analyzing usage patterns to enhance user experience (anonymized data only)
  • Communication: Sending booking confirmations, important updates, and safety alerts
  • Legal Compliance: Meeting legal obligations and protecting rights

✓ We NEVER:

  • Sell your personal information to third parties
  • Use health information for advertising or marketing
  • Share your data without explicit consent
  • Track you across other websites

Data Security Measures

We protect your data through:

Encryption

End-to-end encryption for sensitive data, SSL/TLS for all transmissions

Access Controls

Strict employee access policies, multi-factor authentication

Secure Storage

Data stored in secure, compliant data centers with regular backups

Anonymization

Analytics data anonymized to prevent individual identification

Your Privacy Rights

You have the right to:

  • Access: Request a copy of all data we hold about you
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and associated data
  • Portability: Receive your data in a machine-readable format
  • Opt-Out: Unsubscribe from marketing communications
  • Consent Withdrawal: Revoke consent for data processing at any time

Exercise Your Rights:

Email: privacy@thehealingstays.com

We will respond within 30 days of your request.

Data Retention

We retain your data only as long as necessary:

  • Active Accounts: Data retained while account is active
  • Booking Records: Retained for 7 years for legal/tax compliance
  • Health Disclosures: Deleted 90 days after stay completion (unless required for safety investigations)
  • Deleted Accounts: Personal data permanently deleted within 30 days (except legally required records)

Contact Our Privacy Team

Questions, concerns, or requests regarding your privacy:

Email: privacy@thehealingstays.com

Data Protection Officer: dpo@thehealingstays.com