Skip to main content

Advanced Website: General Data Protection Regulation (GDPR) compliance information and resources

The information in this article is relevant only for Pro users at this time. For information about booking websites for Lite users, refer to the Guesty Booking Engine

What is the GDPR?

The General Data Protection Regulation (GDPR) is a regulation in the European Union (EU) designed to strengthen and unify privacy and personal data protections for all individuals within the EU.

Who does the GDPR affect?

The GDPR applies to organizations located within the EU, as well as organizations located outside of the EU that offer goods or services to, or monitor the behavior of, individuals within the EU. It applies to all companies processing and holding the personal data of individuals residing in the EU regardless of the company’s location.

‘Personal data’ is any information that can be used to directly or indirectly identify a person. It can be anything from a name, photo, email address or bank details to posts on social networking websites, medical information or a computer IP address.

Guesty Websites & The GDPR

Guesty takes personal data protection and the right to online privacy seriously. Guesty has completed a thorough review of the legal and technical impacts of the GPDR to and continues to make adjustments to our products, services, and documentation to comply with the GDPR. This includes giving Guesty Websites users more control over their personal data and providing the necessary tools to protect the information of visitors to Guesty websites.

How has Guesty Websites addressed GDPR compliance?

  • We have conducted a security audit in line with the GDPR’s security recommendations.
  • Guesty’s organizational policies, especially our data security and data privacy policies, are completed in accordance with the GDPR framework. Our staff is fully aware of the need for strong data security and privacy practices across the entire company. This is an ongoing process and we see it as a key factor to our success in this project.
  • Guesty is documenting and developing all operational procedures required to support an individual’s right to review any of their private data that we store, the right to be forgotten, etc.
  • We have updated all our data processing agreements in light of GDPR requirements.
  • Commitment to privacy & data security is a long-term commitment, not a one-off project. Guesty remains committed to data security and privacy and we will help provide the tools you need in an ever-changing landscape of regulation and real-world threats.
  • We have enabled the following new features:
    • You can now easily create a privacy page to enable you to communicate information about processing the personal data of your users in a clear and transparent way.
    • Your contact forms can now include convenient opt-in notifications to collect consent from site visitors to process their form responses.
    • The right of your users to be forgotten can be realized with the help of the form responses tab in your site dashboard.
    • Minimization of data collections and pseudonymization of analytic data.
Was this article helpful?
0 out of 0 found this helpful