Privacy Policy

Last updated: 21.05.2026

STAY (“the platform”, “we”, “us”) is a local accommodation platform and information service for Kerteminde Municipality available at stay.sammenomalt.dk. We respect your privacy and comply with the EU General Data Protection Regulation (GDPR) and Danish law.

1. Who we are

Data Controller:
Fonden Kerteminde Erhverv

Operational Entity:
ETKerteminde

Reg. no.: 30528298, Denmark
Email: jdc@etkerteminde.dk
Lindøalléen 101
5330 Munkebo

Technical Operator / Data Processor:
SevenYellowMonkeys
Reg. no.: 21939609
Krogen 3
5370 Mesinge

Responsible for hosting, maintenance, and technical user support on behalf of ETKerteminde.
For technical support, please contact STAY Support.

2. What this policy covers

This Privacy Policy explains:

what personal data we collect,
how and why we use it,
how long we keep it,
and what rights you have as a user.

It applies to:

Visitors – people browsing the platform.
Guests – users who send accommodation inquiries.
Hosts – residents listing a room, annex, or home.
Local Businesses – local businesses and cultural venues creating profiles.

We only collect information necessary for the operation of the platform and the services you use.

3. What data we collect

a) Visitors

Cookies and analytics data (IP address, browser type, device info, pages visited).
Consent choices through the GDPR/cookie banner.

b) Guests

Name, contact information, email, phone number.
Messages exchanged with hosts.
Inquiry dates and property details.

c) Hosts

Name, address, contact details.
Identity verification (passport or driver’s licence).
Listing content and messages with guests.

d) Local Businesses

Business name, address, contact person, phone, email.
Description, photos, opening hours, amenities and links.
Payment of one-time profile fee.

These profiles are displayed publicly on the platform to promote local businesses to visitors. You can edit or request deletion of your profile at any time.

The platform does not process or store payment information related to accommodation. Payments between guests and hosts take place directly between the parties outside the platform.

4. Why we collect data (Purpose & Legal basis)

Purpose	Legal basis under GDPR
Creating and managing accounts, listings and profiles	Article 6(1)(b) – Contract
Facilitating accommodation inquiries and communication between guests and hosts	Article 6(1)(b)/(f) – Contract / Legitimate interest
Handling passport/driver’s licence verification and security	Article 6(1)(c)/(f) – Legal obligation / Legitimate interest
Customer support and communication	Article 6(1)(b)/(f) – Contract / Legitimate interest
Marketing and platform analytics (non-identifiable)	Article 6(1)(a) – Consent (via cookies)
Technical operation and fraud prevention	Article 6(1)(f) – Legitimate interest

5. Cookies & analytics

We use functional cookies necessary for login and operation, and optional analytics cookies to improve usability. You control which cookies are stored through the GDPR consent banner. For details, see our Cookie Policy or the cookie settings panel in your browser.

6. How we share data

We only share your data with trusted partners necessary for operating the platform or fulfilling legal obligations:

Identity verification: we verify hosts using passport or driver’s licence.
Technical providers: trusted third parties providing hosting, email, and maintenance, bound by data processing agreements.

We do not sell, rent, or share your data with advertisers.

7. Data retention

We keep personal data only as long as necessary:

Inquiry data and communication records: up to 5 years.
Host verification data: 7 years, where required by law.
Messages: up to 3 years after last activity.
Local Business profiles: stored as long as the profile is active or until deletion is requested.
Cookies: according to your browser and consent settings.

You can delete your account at any time and control which data and cookies are stored via our Privacy Center. However, certain data may be retained where required by law.

8. Your rights

Under GDPR, you have the right to:

Access the data we hold about you.
Correct inaccurate information.
Request deletion (“right to be forgotten”), where legally possible.
Limit or object to certain processing.
Receive a copy of your data (data portability).
Withdraw consent for cookies or marketing at any time.

To exercise these rights, contact STAY Support.
If you believe your rights are violated, you can complain to the Danish Data Protection Agency (Datatilsynet) at www.datatilsynet.dk.

9. International transfers

All data is stored within the EU/EEA. If a subprocessor outside the EU is used, it will only occur under GDPR-compliant safeguards such as the EU Standard Contractual Clauses (SCCs). At the time of writing, no such transfers occur.

10. Security

We take appropriate technical and organisational measures to protect your data: SSL encryption on all connections, limited system access, pseudonymisation and audit logs, and regular security updates. Only authorised personnel have access to personal data, and all staff are bound by confidentiality obligations.

11. Children

The platform is not intended for minors under 18. Accounts or inquiries created by minors may be deleted.

12. Changes to this policy

We may update this Privacy Policy when the platform or legal requirements change. The latest version is always available at stay.sammenomalt.dk/privacy-policy. Significant changes will be communicated clearly on the platform.

13. Contact

Fonden Kerteminde Erhverv (Data Controller)
ETKerteminde (Operational entity)
Email: jdc@etkerteminde.dk
Address: Lindøalléen 101, 5330 Munkebo, Denmark

SevenYellowMonkeys (Technical support / Data Processor)
Responsible for hosting, maintenance, and user support on behalf of ETKerteminde.
For technical or support-related enquiries, please contact STAY Support.

This Privacy Policy covers all users of STAY — visitors, guests, hosts and local businesses — and fulfils GDPR transparency requirements under Articles 12–14.

Sign In

Verification Code