Cooveb Privacy Policy
Effective Date: 18 May 2026 Last Updated: 18 May 2026
1. Introduction
At Cooveb, we respect your privacy and are committed to keeping your personal information safe. This Privacy Policy explains how Cooveb ("Cooveb", "we", "us", or "our") collects, uses, stores, shares, and protects information when you use our AI-powered hotel discovery and booking platform, including our website, mobile experience, voice interface, and any related services (collectively, the "Services").
By using Cooveb, you agree to this Privacy Policy. If you do not agree, please do not use our Services.
2. Who We Are (Data Controller)
Cooveb is the data controller responsible for your personal information.
Contact:
- Email: privacy@cooveb.com
- Website: https://cooveb.com
For privacy-related inquiries, requests, or complaints, please contact us at privacy@cooveb.com. We aim to respond within 30 days.
3. Information We Collect
We collect only the information necessary to provide our Services. This includes:
3.1 Information You Provide Directly
- Account information: Name, email address, and password when you create an account.
- Booking information: Guest name, contact details, travel dates, room preferences, and any special requests needed to complete a hotel booking.
- Payment information: Payment card details or payment method information processed securely via our payment processor. Cooveb does not store full card numbers on our systems.
- Communications: Messages, queries, or feedback you send to us via support, email, or our AI assistant.
3.2 Information We Collect Automatically
- Usage data: Pages visited, features used, search queries entered, hotels viewed, and interactions with the AI concierge (voice and text).
- Device and technical data: IP address, browser type and version, operating system, device identifiers, and time zone.
- Log data: Server logs, error reports, and performance data.
- Location data: Approximate location derived from IP address. We do not collect precise GPS location unless you explicitly grant permission.
3.3 Cookies and Tracking Technologies
We use cookies and browser local storage to:
- Keep you signed in across sessions (authentication)
- Track organizer onboarding progress
- Store your AI concierge conversation history locally on your device
- Store event pass and info-pack data locally on your device
Cookies we use:
| Type | Name / Source | Purpose | Duration |
|---|---|---|---|
| Essential | Supabase auth session (sb-*) | Authenticates your login session | Session / up to 1 year |
| Essential | organizer_onboarding_step | Tracks onboarding progress for organizer accounts | Session |
Local storage (not cookies): We use browser localStorage to store your AI chat conversation history, event pass data, and info-pack data. This data never leaves your device and is not transmitted to our servers for tracking purposes.
We use Vercel Analytics for basic, privacy-first page view measurement. Vercel Analytics does not use cookies or persistent identifiers — it measures traffic using anonymized, aggregated signals only. No personal data is stored by this service.
We do not use advertising cookies, third-party tracking cookies, or cookie-based analytics. Cooveb does not integrate Google Analytics, Meta Pixel, or any similar cookie-based tracking service.
You can clear cookies and localStorage at any time through your browser settings. Clearing essential cookies will sign you out of your account.
4. How We Use Your Information
We use your information for the following purposes and on the following legal bases:
| Purpose | Legal Basis |
|---|---|
| Creating and managing your account | Contract performance |
| Processing hotel bookings and confirming reservations | Contract performance |
| Providing AI-powered hotel search and recommendations | Contract performance / Legitimate interest |
| Processing payments securely | Contract performance / Legal obligation |
| Sending booking confirmations and transactional emails | Contract performance |
| Sending marketing or promotional emails (only with consent) | Consent |
| Responding to support inquiries | Contract performance / Legitimate interest |
| Improving and developing our Services | Legitimate interest |
| Detecting and preventing fraud and abuse | Legitimate interest / Legal obligation |
| Complying with applicable laws and legal obligations | Legal obligation |
| Analytics and platform performance monitoring | Legitimate interest |
5. Marketing Communications
Cooveb does not send marketing or promotional messages unless you have given clear, explicit consent. You may withdraw this consent at any time by:
- Clicking the "unsubscribe" link in any marketing email, or
- Contacting us at privacy@cooveb.com
Withdrawal of marketing consent does not affect transactional communications related to active bookings.
6. How We Share Your Information
Cooveb does not sell, rent, trade, or share your personal information with third parties for their own marketing or advertising purposes.
We may share your information only in the following circumstances:
6.1 Service Delivery
When you make a hotel booking, limited booking-related information (guest name, contact details, dates, preferences) is shared with:
- The selected hotel or property
- Our hotel content and availability providers (e.g. Hotelbeds, Amadeus)
This information is used solely to confirm and fulfill your booking.
6.2 Payment Processing
Payment information is securely transmitted to our payment processor(s) to complete your transaction. Our payment processors are PCI-DSS compliant. Cooveb does not store full payment card details.
6.3 Infrastructure and Technology Providers
We use the following categories of service providers to operate our platform:
- Cloud infrastructure: Hosting, database, and storage (e.g. AWS, Vercel)
- Authentication: Secure sign-in services
- Email delivery: Transactional email providers (e.g. Resend)
- Analytics: Platform usage analytics
All third-party providers are contractually required to protect your information and may only use it to provide services to Cooveb.
6.4 Legal and Safety Disclosures
We may disclose your information when required to:
- Comply with applicable law, regulation, or legal process
- Respond to lawful requests from public authorities
- Prevent, detect, or investigate fraud, security incidents, or illegal activity
- Protect the rights, property, or safety of Cooveb, our users, hotels, or the public
6.5 Business Transfers
If Cooveb is involved in a merger, acquisition, restructuring, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email or prominent notice on our website before your information is transferred and becomes subject to a different privacy policy.
7. International Data Transfers
Cooveb operates globally. Your information may be transferred to and processed in countries other than the country in which you reside, including the United States and other countries where our service providers operate. These countries may have different data protection laws than your home country.
When transferring personal data internationally, we rely on appropriate safeguards including:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Adequacy decisions where applicable
- Other lawful transfer mechanisms as required
By using Cooveb, you acknowledge that your information may be processed internationally under these safeguards.
8. Your Rights and Choices
Depending on your location, you may have the following rights regarding your personal information:
| Right | Description |
|---|---|
| Access | Request a copy of the personal information we hold about you |
| Correction | Request correction of inaccurate or incomplete information |
| Deletion | Request deletion of your personal information ("right to be forgotten") |
| Portability | Request your data in a structured, machine-readable format |
| Restriction | Request that we restrict processing of your information |
| Objection | Object to processing based on legitimate interests |
| Withdraw Consent | Withdraw consent at any time where processing is based on consent |
| Non-Discrimination | We will not discriminate against you for exercising your rights |
How to exercise your rights: Email privacy@cooveb.com with your request. We will respond within 30 days. We may need to verify your identity before processing your request.
EU/UK users: You have the right to lodge a complaint with your local data protection supervisory authority if you believe we have not handled your information in accordance with applicable law.
California residents (CCPA/CPRA): You have the right to know, delete, correct, and opt out of the sale or sharing of personal information. Cooveb does not sell or share personal information for cross-context behavioral advertising. To submit a verifiable consumer request, contact privacy@cooveb.com.
Other jurisdictions: We respect privacy rights under applicable local laws including but not limited to Brazil (LGPD), Canada (PIPEDA), Australia (Privacy Act), India (DPDP Act), and other applicable national laws.
9. Automated Decision-Making and AI
Cooveb uses artificial intelligence to power hotel recommendations, voice search, and concierge features. These systems analyze your search queries, preferences, and usage patterns to surface relevant results and improve your experience.
This automated processing does not produce legally significant decisions about you as an individual — it surfaces hotel options and information based on your inputs.
We do not use automated profiling to make decisions that would have a legal or similarly significant effect on you without human review.
10. Data Security
Cooveb takes reasonable administrative, technical, and organizational measures to protect your personal information from unauthorized access, loss, misuse, alteration, or disclosure. These measures include:
- Encryption of data in transit (TLS/HTTPS) and at rest
- Access controls and authentication requirements for internal systems
- Regular security reviews and vulnerability assessments
- Incident response procedures
However, no online service or electronic storage system can be guaranteed to be completely secure. In the event of a data breach that affects your rights and freedoms, we will notify you and relevant authorities as required by applicable law.
11. Data Retention
We retain your personal information only for as long as necessary to:
- Provide the requested Services
- Maintain your account while it is active
- Comply with legal, tax, and regulatory obligations
- Resolve disputes and enforce our agreements
- Prevent fraud and maintain security records
When information is no longer required for these purposes, we will delete or anonymize it in accordance with our internal retention schedules. Booking records may be retained for up to 7 years for tax and legal compliance purposes.
12. Children's Privacy
Cooveb is not directed at children under the age of 16 (or 13 in the United States). We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without verifiable parental consent, we will take steps to delete that information promptly.
If you believe we have inadvertently collected information from a child, please contact us at privacy@cooveb.com.
13. Third-Party Links
Our Services may contain links to third-party websites, hotels, or services. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party services you access through Cooveb.
14. Changes to This Privacy Policy
Cooveb may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes, we will:
- Post the updated policy with a revised effective date
- Notify registered users via email or in-app notice for significant changes
Your continued use of Cooveb after any update constitutes acceptance of the revised Privacy Policy.
15. Contact Us
For any questions, concerns, or requests relating to this Privacy Policy or your personal information, please contact:
Email: privacy@cooveb.com Website: https://cooveb.com
We are committed to working with you to resolve any privacy concerns promptly and fairly.
Cooveb Privacy Policy — Effective 18 May 2026