Privacy Policy

Information We Collect

We collect only what we need to host you well:

• Booking details — name, email, phone number, billing address, dates of stay, number of guests, and any special requests you share with us.
• Payment information — processed directly by our payment processor (Stripe). We never see or store your full card number on our servers.
• Messages — anything you send through our contact form, email, or SMS so we can reply and keep a record of the conversation.
• Account data — if you book through Airbnb, VRBO, or another channel, we receive the guest data that platform shares with us.
• Site usage — basic analytics like pages viewed and device type, used in aggregate to improve the site.

How We Use It

• To process your reservation, take payment, and send confirmations.
• To send check-in instructions, arrival reminders, and follow-up messages tied to your stay.
• To respond to inquiries you send through the contact form.
• To comply with tax, legal, and accounting requirements.
• To improve our properties and service based on what guests tell us.

We do not sell your personal information, and we do not use it for third-party advertising.

Cookies & Site Analytics

We use a small number of cookies — strictly necessary cookies that keep the site working (for example, remembering your session if you sign in to manage a booking) and aggregate analytics to understand which pages guests find useful. We do not use advertising cookies or cross-site trackers.

Third-Party Services

We rely on a few trusted vendors to operate the business. Each only sees the data it needs to do its job:

• Supabase — our hosted database and authentication provider. Stores booking and account records.
• Stripe — processes payments and stores card information directly under PCI-compliant terms.
• Beds24 — channel manager that synchronizes calendars and reservations with listing platforms.
• Airbnb & VRBO — if you booked through them, your reservation data is governed by their privacy policies as well.
• Email & SMS providers — used to send booking confirmations, check-in details, and replies to your messages.

Your Rights

Depending on where you live (California, the EU/UK, and others), you may have the right to:

• Request a copy of the personal information we hold about you.
• Correct information that is inaccurate.
• Ask us to delete your data — subject to legal record-keeping rules around past reservations and tax records.
• Opt out of non-essential marketing emails at any time.

Email hello@crystalpointproperties.com and we’ll respond within 30 days.

Data Retention

We keep reservation and payment records for as long as required by tax and accounting law (typically seven years). Contact-form messages are retained for up to two years so we have context if you return to us. After those periods, we delete or anonymize the data.

Security

We protect your information with industry-standard practices — TLS encryption in transit, encrypted database storage, role-based access for our team, and quarterly review of who can see what. No system is perfect, but we treat your data the way we’d want ours handled.

Children

Our site is not directed to children under 13, and we do not knowingly collect personal information from them. Guests under 18 are welcome to stay with a parent or guardian who handles the booking.

Changes to This Policy

We’ll update the “Last updated” date above whenever this policy changes. Material changes will be highlighted on the home page or via email if you have an active reservation.

Contact Us

Crystal Point LLC
Attn: Privacy
Email: hello@crystalpointproperties.com