Privacy Policy
Last updated: April 2026
1. Information We Collect
Shadow Checkin collects information you provide when creating an account (name, email, property details) and data generated through your use of the service (guest records, booking data, staff activity). We also collect passport images uploaded during guest check-in, which are stored securely in encrypted storage.
2. How We Use Your Information
We use your information to provide and improve the Shadow Checkin service: powering Shadow, processing guest check-ins, parsing booking confirmations from your connected email inbox, generating police reports, and showing you property analytics. We do not sell your data to third parties.
3. Data Storage and Security
Your data is stored in secure, encrypted databases hosted by Supabase. Passport images are stored in access-controlled storage buckets. Third-party access tokens (such as Gmail or Outlook OAuth tokens you grant when connecting a bookings inbox) are encrypted at rest. Row-level security ensures properties can only access their own data.
4. Data Sharing
We share data only as necessary to provide the service:
- With Supabase, for hosting and database storage.
- With Google or Microsoft, only when you connect a bookings inbox — we read incoming OTA confirmation emails on your behalf so Shadow can pre-register arrivals.
- With Anthropic, to power Shadow's passport OCR and email parsing.
- Blacklist data may be shared across properties in the network to protect the hospitality community.
5. Your Rights
You can access, update, or delete your account data at any time through the Settings page. You can disconnect OTA integrations and remove stored credentials. For data deletion requests, contact us at support@shadowcheckin.com.
6. Contact
For questions about this privacy policy, email support@shadowcheckin.com.