What data we collect: Voice commands (processed, not stored), room identifiers (tokenised), and operational logs.
How we use it: Solely to execute guest requests and route them to hotel staff. Never for AI training, profiling, or cross-hotel aggregation.
Who owns the data: The hotel, always. Vertassit acts as a Data Processor only.
How long we keep it: Raw audio without a wake word is purged within 30 seconds. Conversational data is deleted at checkout. Operational logs are encrypted and tokenised.
Third parties: OpenAI (during pilot phase only, under strict GDPR-compliant terms) and PMS integration partners where applicable. No data is ever sold or shared commercially.
Your rights: Guests can request access, rectification, or erasure of their data through the hotel directly.
Security: TLS encryption in transit, encryption at rest, role-based access controls, and a 72-hour breach notification protocol.
Contact: contact@vertassit.com