How we keep your booking safe

• Admin and host accounts sign in over HTTPS using email/password authentication provided by our managed backend.
• Sessions are scoped per browser; signing out clears them on the device.
• Role-based access controls limit who can manage properties, bookings and reviews.

• All booking prices are calculated on our server using the published per-night rate and add-on prices — they cannot be modified from the browser.
• Reviews submitted by guests are held for moderation before they appear on a property page.
• Availability data exposed publicly is limited to date ranges only — guest names, phone numbers and amounts are never exposed.

• We collect the name, mobile number and booking details you submit so we can confirm your stay. Optional notes are stored as you type them.
• Property photos uploaded by hosts are stored in a private bucket and only the public listing image is served openly.
• Customer profile data (name, phone) is visible only to the owner of the account and authorised administrators.
• We do not sell your personal data to third parties.

For privacy requests, data deletion, or to report a security concern, reach the founder line directly:

WeekendStay relies on a managed cloud backend for hosting, authentication and database services. We configure the application-level controls listed above; the underlying platform handles infrastructure security. Guests and hosts are responsible for keeping their own login credentials confidential.