Privacy Statement

Scope

This Statement applies to personal data we process about guests, hosts, prospective hosts, and visitors to our Services. It applies to data collected online and offline, including when you contact support, engage with our marketing, or interact with our partners.

If you are an employee or applicant, different notices may apply.

Personal data we collect

The categories of personal data we may collect include:

• Identifiers. Name, email address, phone number, postal address, account ID, booking ID, government ID where legally required for identity or compliance checks.
• Commercial information. Bookings, stay history, property listings, payouts, payment methods tokenized by our payment processor, dispute records.
• Internet or device activity. IP address, device identifiers, cookie IDs, approximate location derived from IP, pages viewed, links clicked, session duration, referral URLs, user agent, app events, crash logs.
• Geolocation data. Approximate location from IP and, if you permit, precise location from device settings in our mobile apps.
• Payment and financial data. Cardholder name and last four digits, billing address, payout account details for hosts, tax information where required by law. Full card data is handled by our payment processor.
• Communications. Messages with guests or hosts, support inquiries, feedback, reviews, call metadata and recordings where permitted by law with notice.
• Profile and preferences. Saved searches, favorites, language, currency, accessibility needs you choose to share.
• Inferences. Preferences or interests derived from other data, such as likely price sensitivity, preferred property types, or likelihood of fraud risk.
• Sensitive data. Only where required and with appropriate safeguards, for example government ID for host onboarding or tax verification, or limited information to meet legal obligations. We do not seek to collect health, racial or ethnic origin, or biometric templates unless required by law and with notice.

See our Cookie Statement for more about online identifiers and tracking technologies.

Sources of personal data

• Directly from you when you create an account, book a stay, or list a property.
• Automatically through cookies, pixels, SDKs, and similar technologies.
• From third parties such as payment providers, identity verification services, analytics vendors, advertising partners, channel partners, and public databases.
• From other users, for example when a host supplies co-host details, or a guest includes another traveler’s information for a booking.

How we use personal data

• Provide, operate, and improve the Services, including booking and hosting features.
• Create and manage accounts, authenticate users, and facilitate communications.
• Process payments, issue invoices and receipts, and remit host payouts.
• Personalize content, remember preferences, and recommend listings.
• Provide customer support and respond to inquiries.
• Protect the integrity and security of the Services, prevent fraud, abuse, and spam.
• Comply with legal, tax, and regulatory obligations, including municipal compliance.
• Conduct analytics, reporting, and product research and development.
• Send service messages, transactional emails, and, with consent where required, marketing communications.
• Show and measure promotions and advertisements, including interest-based ads.

Legal bases for processing (EEA and UK)

Where GDPR or UK GDPR applies, we rely on the following legal bases:

• Performance of a contract. To provide the Services you request, such as a booking or payout.
• Legitimate interests. To secure and improve the Services, prevent fraud, and personalize experiences, balanced against your rights.
• Consent. For placing non-essential cookies and sending marketing where required. You can withdraw consent at any time.
• Legal obligations. To comply with tax, accounting, and regulatory requirements.
• Vital interests. In rare situations to help prevent serious harm.

How we share personal data

We share personal data as necessary for the purposes described above:

• With hosts and guests to fulfill a booking. For example, guest name and contact details to the host, and property details and host contact to the guest.
• With service providers under contract who process data for us, such as payment processors, cloud hosting, customer support, analytics, marketing, identity verification, and security providers.
• With advertising and analytics partners for measurement and interest-based advertising. See Your choices below for options to opt out where applicable.
• With authorities, regulators, or law enforcement where required by law or to protect rights, property, or safety.
• In connection with a corporate transaction, such as merger, acquisition, or asset sale.
• With your consent or at your direction, including integrations you choose to enable.

We do not sell personal information in the common sense of the word. Under certain privacy laws, sharing for targeted advertising or using advertising cookies may be considered a sale or sharing. See Your choices to opt out where available.

Cookies and similar technologies

We use cookies, pixels, tags, SDKs, and similar technologies to operate the Services, understand usage, and show relevant promotions. For details and controls, see our Cookie Statement.

We respond to Global Privacy Control where legally required and supported. See Your choices.

Data retention

We retain personal data for as long as necessary to fulfill the purposes described in this Statement, including providing the Services, complying with legal obligations, resolving disputes, and enforcing agreements. Retention periods vary by data type and use case. When data is no longer needed, we take steps to delete, de-identify, or aggregate it.

Security

We use administrative, technical, and physical safeguards designed to protect personal data. Measures include encryption in transit, access controls, logging, backups, and vendor due diligence. No system is perfectly secure. If we detect a breach that affects your personal data, we will notify you consistent with applicable law.

International data transfers

We operate globally. Your personal data may be transferred to and processed in countries other than the one where you live. Where required, we use transfer mechanisms such as Standard Contractual Clauses and implement additional safeguards to protect your data.

Children’s privacy

The Services are not directed to children under 13, and we do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, contact us and we will take appropriate action. In some jurisdictions, we may treat users under 16 as minors for certain opt-in choices.

Automated decision-making and profiling

We may use automated systems to help detect fraud, secure accounts, and personalize recommendations and pricing. Where required by law, you can request human review of decisions, express your point of view, or contest a decision that produces legal or similarly significant effects.

Your privacy rights

Depending on your location, you may have the right to:

• Access a copy of your personal data.
• Request correction of inaccurate or incomplete data.
• Request deletion of your personal data.
• Object to or restrict certain processing.
• Request data portability.
• Withdraw consent where processing is based on consent.
• Opt out of sale or sharing for targeted advertising, and opt out of profiling for decisions with legal or similarly significant effects where applicable.
• Appeal a decision if we deny your request, where required by law.

To exercise rights, submit a request via the links below or contact us. We will verify your identity before acting on a request. Authorized agents may submit requests where permitted, subject to verification.

• Submit a privacy request: Request portal
• Opt out of sale or sharing and targeted advertising: Do Not Sell or Share My Personal Information
• Open cookie preferences: Cookie preferences

We do not discriminate against you for exercising privacy rights.

Additional disclosures for certain jurisdictions

Your choices

• Manage marketing preferences from emails or in account settings.
• Control cookies through our cookie preferences and your browser settings.
• Control precise location sharing in your device settings.
• Use Global Privacy Control where supported to express opt-out preferences.

Contact us

For questions about this Statement or our privacy practices, or to exercise rights, contact us:

• Email: support@kiks.com
• Mail: KIKS Vacation Rentals, LLC, Attn: Privacy, 12347 Rush St South El Monte California 91733

Changes to this Statement

We may update this Privacy Statement to reflect changes in laws, technology, or our Services. If changes materially affect your rights or obligations, we will provide reasonable advance notice unless an urgent update is required by law or security needs. Review the Last updated date at the top of this page.