Privacy Policy

Last Updated: March 3, 2026

Entity: RoomService AI Inc. (Delaware, USA)

1. Introduction

RoomService AI Inc. ("we," "us," or "our") provides AI-driven guest service solutions via www.roomserviceai.com. This Privacy Policy explains how we collect, use, and protect your information globally. By using our website or opting into our SMS services, you agree to these practices.

2. Information We Collect

  • Direct Information: Name, email, and phone number when you request info or a demo.
  • Automated Information: IP address, browser type, and usage data collected via cookies.
  • SMS Consent Data: We track the time, date, and source (IP) of your opt-in to comply with international "Proof of Consent" requirements.

3. SMS & Mobile Communications (A2P 10DLC Compliance)

We use SMS to provide requested information and follow-up support.

  • Consent: Mobile consent is obtained via an explicit, unchecked checkbox on our web forms.
  • No Sharing: Mobile information will not be shared with third parties/affiliates for marketing/promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
  • Rates & Frequency: Message frequency varies. Message and data rates may apply.
  • Control: Reply STOP to opt-out at any time. Reply HELP for assistance.

4. International Data Transfers (EU/UK/Global)

As a US-based Delaware corporation, we process data in the United States.

  • Safeguards: For users in the EU and UK, we process data based on Standard Contractual Clauses (SCCs) or the EU-U.S. Data Privacy Framework.
  • Lawful Basis: For EU/UK/Singapore/South Africa, our lawful basis for SMS and email marketing is Explicit Consent. For service-related communication, it is Legitimate Interest or Contractual Necessity.

5. Region-Specific Rights

Depending on your location, you have specific rights regarding your data:

  • EU (GDPR) & UK (DPA 2018): You have the right to access, rectify, or erase your data ("Right to be Forgotten"), and the right to data portability.
  • California (CCPA/CPRA): You have the right to know what data is collected and to opt-out of the "sale" of data. Note: We do not sell your personal data.
  • South Africa (POPIA): We maintain data only for specified, lawful purposes. You may object to processing at any time.
  • Singapore (PDPA): We honor Do Not Call (DNC) registry requirements and process opt-outs within 10 business days.

6. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes for which it was collected (e.g., as long as you are a client or active lead). SMS opt-in records are kept for the duration of the communication plus 4 years to defend against potential regulatory inquiries.

7. Security

We implement industry-standard encryption (SSL/TLS) for data in transit and at rest. Access to personal data is restricted to authorized employees on a "need-to-know" basis.

8. Contact & Redress

If you have questions or wish to exercise your rights, please contact:

Privacy Officer
RoomService AI Inc.
Delaware, USA

privacy@roomserviceai.com