loader

Privacy Policy

Who We Are

The People Behind the Smart Software

Welcome to the Privacy Policy of Devstayz Private Limited (referred to as "Company," "Devstayz," "DVS," "we," "our," or "us"). We are a legally registered private limited company specializing in providing cutting-edge hotel and restaurant management software, including sophisticated Property Management Systems (PMS), state-of-the-art restaurant POS solutions, comprehensive inventory and staff management tools, and a suite of cloud-based hospitality technology solutions.

Our core mission at DVS is to handle your valuable data in a manner that is secure, fully transparent, and globally compliant, regardless of whether your operations are based in India or anywhere else in the world.

This detailed Privacy Policy is designed to inform you precisely how DVS collects, processes, stores, discloses, and protects your personal and business information. This policy governs your use of:

  • The DVS official Website (www.devstayz.com)
  • Our SaaS software and cloud applications
  • All Mobile applications and APIs
  • Our Customer support, training, and consulting services

By actively using any DVS services, you are accepting the terms outlined in this Privacy Policy. If you do not agree with these terms, we kindly ask that you refrain from using DVS software and services. Your trust is paramount, and we are committed to upholding the highest standards of data privacy.

Information We Collect

As a provider of cloud-based software solutions for the demanding hospitality and F&B industry, we collect various types of data. This collection process strictly adheres to compliance standards of India, the European Union (EU), and the USA. Every piece of collected data has a clear and lawful purpose and is not shared with unauthorized parties.

Types of information collected and how we secure & use it.
Information Type Details Collected Security & Purpose
Personal Information Your name, email ID, phone number, billing & shipping address, payment details, and user profile information. Payment data is always stored in encrypted form via PCI-DSS compliant gateways (e.g., Razorpay, Stripe, PayPal). User credentials and passwords are stored in hashed and encrypted forms to ensure a secure login.
Business Information Detailed property data (room types, rates, inventory), staff schedules, POS billing records, guest history, menu, and stock management data. Essential for streamlining business operations — for example, DVS PMS stores bookings, invoice generation, and occupancy reporting data securely to provide those services.
Technical Information Device ID, browser type, operating system, IP address, cookies, and log files. Used for software optimization, robust fraud detection, and maintaining overall system security.
Communication Information Records from support tickets, live chat or email queries, training session participation, and any feedback or reviews submitted. Helps the DVS team provide superior customer support and drives product improvement initiatives.

Purpose of Data Use: Why We Process Your Data

At DVS, we use your data strictly for defined and legal purposes. We are committed to not misusing your data, and we will never engage in unauthorized selling or renting of your information. Our goal is complete transparency in how your data serves you.

How DVS uses your data and its real-world impact.
Purpose Description and Real-World Impact
Service Delivery Providing core software services for hotels and restaurants: seamless room booking, accurate billing, restaurant POS functionality, staff management, reports, and analytics. Ensures smooth and efficient property and restaurant operations.
Billing & Payments Handling secure subscription payments, accurate invoice generation, and financial reporting. We use encrypted payment gateways and accounting integrations to guarantee accuracy and safety.
Customer Support Storing communication and historical support logs for technical troubleshooting, training, and software guidance. Enables our support team to provide quick and effective solutions.
Product Improvement Analyzing software usage patterns and user feedback to continuously optimize and upgrade the DVS PMS and POS systems. Directly improves operational efficiency for hotel and restaurant clients.
Legal & Regulatory Compliance Retaining and verifying data for mandatory purposes like tax audits, fraud prevention, and adherence to government regulations. DVS strictly follows globally applicable standards and local Indian laws.
Communication Sending essential product updates, service announcements, and promotional emails only to users who have opted-in. Users have the right to opt-out of marketing communications at any time.

3. Data Sharing and Third-Party Disclosure

Devstayz Private Limited (DVS) will never share or sell your personal or business data to unauthorized third parties. We only disclose data in specific situations where it is absolutely necessary for service delivery, legal compliance, or operational efficiency. To guarantee security, we sign Data Processing Agreements with every third party, ensuring compliance with global regulations like GDPR, CCPA, and the Indian IT Act.

Examples of Necessary Third-Party Sharing
  • Payment Gateways: When you process a payment through the DVS PMS or restaurant POS software, limited payment information is shared with secure, PCI-DSS compliant payment gateways (e.g., Razorpay, Stripe, PayPal). This occurs in a strictly encrypted environment, and the gateways are only granted access for the sole purpose of transaction processing.
  • Cloud Hosting & IT Service Providers: We use trusted cloud service providers and IT vendors to host our software and mobile applications. These partners access data only for maintenance, uptime, backup, and disaster recovery and are legally bound by contract not to use the data for unauthorized purposes.
  • Analytics & Marketing Tools: We share anonymized or aggregated data with analytics and CRM platforms (like Google Analytics) to track product usage and enhance user experience. This data helps us optimize software performance and product features.
  • Regulatory Authorities: In cases of law enforcement requests or government requirements, DVS is compelled to share information for legal compliance, such as tax audits or fraud detection.

4. Data Security: Protecting Your Information

Devstayz Pvt. Ltd. (DVS) implements industry-standard security measures to protect your data from unauthorized access, misuse, loss, or destruction. Your data's safety is a continuous process for us.

Security Measures in Place
  • Encryption: We use SSL/TLS encryption for sensitive data during transmission (when data moves across networks) and AES-256 encryption for data at rest (when it is stored). This keeps your payment and personal details secure.
  • Access Control: Our software and cloud infrastructure utilize role-based access control. Only authorized employees and service partners have limited access, and they operate under strict legal and contractual obligations.
  • Monitoring & Audits: We perform continuous monitoring, vulnerability scanning, and regular penetration testing on DVS systems. This allows us to detect and fix security gaps in real-time, which is critical for highly sensitive hotel/restaurant POS and PMS systems handling financial and guest data.
  • Backups & Disaster Recovery: DVS maintains multiple secure data center backups and robust disaster recovery plans. This ensures that the recovery process is fast and secure should a system failure or data loss occur.
  • Breach Notification: In the unlikely event of a data breach, DVS will immediately notify the affected users and relevant legal authorities, as required by regulations like the GDPR and the Indian IT Act.

The principle is clear: your data is used only for its intended purpose and is always housed within a secure environment.

5. Cookies and Tracking Technologies

Devstayz Private Limited (DVS) uses cookies and various tracking technologies on our website and software platforms. These are necessary to improve the user experience, ensure smooth operations, and maintain compliance. These tools are critical for website navigation, session management, and software personalization.

Types and Purposes of Cookies
Cookie Type Purpose and Functionality User Impact if Disabled
Essential Cookies Necessary for the core functionality of the software and website, including login sessions, account authentication, POS & PMS workflow tracking, and booking confirmations. Core features will not function, and your user experience will be severely limited.
Performance & Analytics Cookies Collect anonymized data on page visits, software module usage, transaction time, and user behavior. Helps DVS with software improvement, feature optimization, and overall operational efficiency.
Functional Cookies Used to remember user preferences, such as language selection and interface customization. Ensures that every visit is personalized and seamless.
Marketing / Tracking Cookies Used for tracking audience behavior and campaign effectiveness if you have opted-in to marketing emails or promotions. Used to deliver more relevant advertisements and promotions.
  • Providing users with a visible cookie consent banner and a clear opt-out option.
  • Informing users that they can disable cookies, but this may limit access to certain features.

This transparency ensures that our hospitality software and website are fully user-friendly, legally compliant, and respect your privacy at all times.

6. Your User Rights: Maintaining Control Over Your Data

Devstayz Private Limited (DVS) recognizes and upholds user rights under the norms of India, GDPR, and CCPA. These rights empower you—whether you're a hotel owner, restaurant manager, or end-user—to maintain control over your personal and business information.

A Checklist of Your Key Data Rights
Your Right What It Means for You
Access & Correction You can access and verify your stored data. You may submit a correction request to the DVS support team if any data is inaccurate or outdated.
Data Portability Users can export their account and business records in a readable format (e.g., CSV / JSON). This makes it possible to migrate your data to another PMS or software system.
Right to Delete / Erasure You can submit a request to DVS to delete your account and related data. This is processed while considering our legal compliance and operational retention policies.
Consent Withdrawal You can withdraw consent for things like marketing emails, promotional messages, and tracking at any time.
Region-Specific Rights
  • CCPA (California, USA): Includes the Right to Know, the Right to Opt-Out of Sale, and the Right to Non-Discrimination.
  • GDPR (EU): Includes the Right to Restriction of Processing, the Right to Object, and the Right to Legal Basis Disclosure.

To process any request, users should always contact us at: support@devstayz.com. DVS ensures a timely and transparent response for all inquiries.

7. Data Retention Policy

  • Active Accounts: As long as your hotel or restaurant account is active within the DVS software, your personal and business data will be securely stored. This includes all guest records, POS transactions, inventory data, staff schedules, and billing history.
  • Taxation & Audit Compliance: We are globally compliant and retain records for international regulations. In India, maintaining GST and audit records is mandatory for a specific period under Indian laws.
  • Inactive Accounts: If an account remains inactive for 12 months, DVS will securely archive or delete the data, unless its retention is required for legal obligations or dispute resolution.
  • Software Optimization & Analytics: Aggregated and anonymized historical data may be retained for essential product improvement and analytics purposes.

8. International Data Transfer

  • Encryption & Security: Data transmission always utilizes SSL/TLS encrypted channels, and storage employs AES-256 encryption. This ensures that sensitive information, such as payment details and business records, is secure from unauthorized access.
  • Legal Compliance: We strictly follow the norms of GDPR, CCPA, and the Indian IT Act. For international data transfers, we implement Data Processing Agreements (DPA) and Standard Contractual Clauses (SCCs) to secure user privacy and meet legal obligations.
  • Third-Party Vendors: When data is shared with international cloud providers or software service partners, they are given strict contractual obligations to use the data only for the intended purpose and prevent any unauthorized disclosure.

9. Children’s Privacy

  • Data Collection: If a minor user's data is mistakenly collected, DVS will immediately identify and delete it. This process is strictly managed through internal audits and automated checks.
  • Parental Consent: For compliance with COPPA in the US, parental consent is mandatory if minor data collection occurs. In such cases, DVS follows consent verification and limited data processing procedures.
  • Software & Training: We provide training and awareness to hotel and restaurant staff to prevent the misuse of minor user data. Our POS and PMS systems include features for age verification and restricted access.

10. Policy Updates and Version Control

  • Notification of Changes: Whenever the policy is updated, the "Last Updated" date on our website is changed, and registered users receive email notifications.
  • User Consent: Following significant changes, especially to marketing communication or tracking methods, we will request renewed consent from our users.
  • Version Control: DVS maintains historical versions of the Privacy Policy. This allows users and auditors to verify past compliance and changes easily.

11. Governing Law and Jurisdiction

  • India: Governed by the IT Act, the Companies Act, and all applicable hospitality regulations within India.
  • EU (European Union): GDPR norms are applicable if EU users are utilizing DVS software.
  • USA (California): CCPA rights and obligations are followed.
Dispute Resolution

Should any dispute arise, we aim for amicable settlement first, typically resolved through customer support. If formal legal action is necessary, the jurisdiction will be the courts in the Company's Registered City/State in India.

12. Contact Us: The DVS Privacy Office

If you have any questions, concerns, or need further clarification regarding this Privacy Policy or our data practices, you can contact the DVS Privacy Office directly. We are committed to providing a transparent, timely, and user-focused response.

Devstayz Private Limited (DVS) – Privacy Office
  • Email: operations@DevStayZ.in
  • Address: DevStayZ, 3rd floor, Roop Janki Tower, Shalimar Bagh Colony, Chitrakut marg, Ajmer Rd, Jaipur, Rajasthan 302021, India
  • Phone: +91-9797976950

Frequently Asked Questions (FAQ)

Your privacy questions answered simply here

A: The main principle is that every piece of collected data must have a clear and lawful purpose, and your data will never be shared with unauthorized third parties. DVS operates with a focus on security, transparency, and global compliance across all its hospitality technology solutions.

A: DVS ensures the highest security for payment data. All payment details are stored in an encrypted form and processed only through PCI-DSS compliant gateways like Razorpay, Stripe, and PayPal. Furthermore, we use SSL/TLS encryption for data transmission and AES-256 encryption for data storage.

A: No. Devstayz Private Limited (DVS) explicitly states that it will never share or sell your personal or business data to unauthorized third parties. Data is only shared when absolutely necessary for service delivery, legal compliance, or operational efficiency, and only with partners who have signed strict Data Processing Agreements.

A: DVS recognizes a wide range of rights for users globally. Under GDPR (EU), you have rights like Restriction of Processing and the Right to Object. Under CCPA (California, USA), you have the Right to Know and the Right to Opt-Out of Sale. Regardless of your location, you always have the Right to Access, Correction, and Data Portability.

A: You can submit a Right to Delete / Erasure request to DVS by contacting us directly at support@devstayz.com. This request will be processed, taking into account legal compliance requirements and necessary operational data retention policies.

A: DVS uses cookies and tracking technologies to ensure the core functionality of the software (essential cookies), personalize your experience (functional cookies), and improve product performance (analytics cookies). You can disable non-essential cookies via the consent banner or your browser settings, but be aware that disabling essential cookies will limit your ability to use core software features like login and booking confirmations.

A: If your account is inactive for 12 months, DVS's data retention policy mandates that the data will be securely archived or deleted. However, some data may be retained if required for ongoing legal obligations (like tax records) or dispute resolution.

A: DVS ensures that all cross-border data transfers are secure and legally compliant by using encrypted channels, adhering to GDPR/CCPA norms, and implementing Data Processing Agreements (DPA) with all international cloud providers and partners. This guarantees that your data is protected even when processed outside of India.