🎉 OFFICIAL AIRBNB PARTNER • Trusted Lead Provider • Helping Grow the Airbnb Host Community
NEW: Priority Listing Approval • Fast-Track Host Onboarding • Partner-Level Support
JOIN 2,500+ SUCCESSFUL HOSTS • Airbnb Verified Properties • Guaranteed ROI Projections
🎉 An official Airbnb provider. Join now!
View first 3 leads for FREE. Start today!
Login
Sign up
Privacy Policy - The BNB Depot
Home Privacy Policy

Privacy Policy

Last updated: June 11, 2025

This Privacy Policy describes how The BNB Depot LLC collects, uses, and protects your personal information when you use our premium Airbnb arbitrage lead platform and related services.

Quick Summary

Data Protection

We use industry-standard encryption and security measures to protect your personal and financial information.

No Selling

We never sell your personal data to third parties. Your information is used solely to provide our services.

Your Rights

You have full control over your data with rights to access, modify, or delete your information at any time.

Cookie Control

We use cookies to improve your experience. You can control cookie preferences in your browser settings.

Table of Contents

1. Information We Collect

Personal Information You Provide

We collect information that you voluntarily provide when you register, use our services, or communicate with us:

  • Account Information: Full name, email address, phone number, mailing address
  • Authentication Data: Username, password, security questions
  • Billing Information: Billing address, payment method details (processed securely by Stripe)
  • Profile Data: Investment preferences, target markets, experience level
  • Communication Data: Messages, support requests, feedback, survey responses
  • Business Information: Company name, business license details, investment history

Information Collected Automatically

When you use our platform, we automatically collect certain technical information:

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages viewed, time spent, clicks, search queries, feature usage
  • Location Data: General geographic location based on IP address
  • Performance Data: Load times, error reports, system activity logs
  • Cookie Data: Preferences, session information, analytics data

Information from Third Parties

We may receive information about you from other sources:

  • Social Media Platforms: Profile information when you connect social accounts
  • Payment Processors: Transaction data from Stripe and other payment providers
  • Marketing Partners: Lead information, demographic data for targeted advertising
  • Public Databases: Property ownership records, business registration data
  • Analytics Providers: Website interaction data, user behavior insights
Sensitive Information: We do not knowingly collect or process sensitive personal information such as racial or ethnic origin, political opinions, religious beliefs, health data, or biometric information.

2. How We Use Your Information

Account Management

  • Create and manage your account
  • Authenticate your identity
  • Process membership subscriptions
  • Handle billing and payments

Service Delivery

  • Provide curated property leads
  • Facilitate landlord connections
  • Deliver market analysis reports
  • Provide ROI calculations

Customer Support

  • Respond to inquiries and issues
  • Provide technical assistance
  • Offer investment guidance
  • Resolve billing disputes

Platform Improvement

  • Analyze usage patterns
  • Improve service quality
  • Develop new features
  • Optimize user experience

Communications

  • Send service notifications
  • Share market updates
  • Deliver promotional content
  • Provide educational resources

Security & Compliance

  • Prevent fraud and abuse
  • Ensure platform security
  • Comply with legal obligations
  • Maintain audit trails

3. Legal Basis for Processing

We only process your personal information when we have a valid legal basis under applicable law:

Contractual Necessity

Processing necessary to provide our services, manage your account, and fulfill our contractual obligations to you.

Consent

Where you have given explicit consent for specific processing activities, such as marketing communications or analytics.

Legitimate Interests

For our legitimate business interests, such as improving our services, fraud prevention, and network security.

Legal Compliance

To comply with applicable laws, regulations, court orders, and governmental requests.

Canadian Residents

For users in Canada, we may process your information without consent in specific circumstances permitted by law, including:

  • Fraud detection and prevention
  • Business transaction due diligence
  • Emergency situations affecting health or safety
  • Publicly available information processing
  • Compliance with legal obligations

4. When and With Whom We Share Your Information

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience, analyze usage, and deliver personalized content. Here's what you need to know:

Essential Cookies

Required for basic site functionality and cannot be disabled:

  • User authentication and session management
  • Security and fraud prevention
  • Shopping cart and checkout functionality
  • Load balancing and performance optimization

Analytics Cookies

Help us understand how visitors use our site:

  • Google Analytics (website traffic and user behavior)
  • Page view tracking and navigation patterns
  • Feature usage and engagement metrics
  • Performance monitoring and error tracking

Marketing Cookies

Used to deliver relevant advertisements and measure effectiveness:

  • Google Ads remarketing and conversion tracking
  • Facebook and LinkedIn advertising pixels
  • YouTube social plugins and embedded content
  • Cross-site tracking for personalized ads

Social Media Cookies

Enable social media features and integrations:

  • Social login functionality (Google, Facebook)
  • Social sharing buttons and widgets
  • Embedded social media content
  • Social media advertising and tracking

Managing Your Cookie Preferences

You have control over cookies and can:

  • Browser Settings: Disable cookies entirely or for specific sites
  • Opt-Out Tools: Use industry opt-out mechanisms for advertising cookies
  • Privacy Extensions: Install browser extensions that block tracking
  • Incognito Mode: Browse in private mode to limit cookie storage

Note: Disabling essential cookies may affect site functionality and prevent you from accessing certain features of our platform.

6. Social Media Login Integration

Our platform offers convenient social media login options to streamline your registration and authentication process.

7. How Long We Keep Your Information

We retain your personal information only as long as necessary to fulfill the purposes outlined in this privacy policy, unless a longer retention period is required or permitted by law.

Account Information

Retention Period: While your account is active, plus 36 months after account termination

Purpose: Service provision, customer support, legal compliance

Billing & Transaction Data

Retention Period: 7 years from last transaction

Purpose: Tax compliance, accounting requirements, dispute resolution

Usage & Analytics Data

Retention Period: 26 months from collection

Purpose: Service improvement, trend analysis, compliance with data protection laws

Communications & Support

Retention Period: 3 years from last contact

Purpose: Customer service continuity, quality assurance, dispute resolution

Security Logs

Retention Period: 1 year from creation

Purpose: Security monitoring, fraud prevention, incident investigation

Secure Deletion: When we no longer need your information, we securely delete or anonymize it using industry-standard methods to ensure it cannot be recovered or reconstructed.

8. How We Protect Your Information

We implement comprehensive security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

Technical Safeguards

  • Encryption: AES-256 encryption for data at rest, TLS 1.3 for data in transit
  • Access Controls: Multi-factor authentication and role-based access
  • Network Security: Firewalls, intrusion detection, and DDoS protection
  • Regular Updates: Security patches and system updates
  • Secure Hosting: Google Cloud Platform with enterprise-grade security

Administrative Safeguards

  • Employee Training: Regular security awareness and privacy training
  • Background Checks: Screening for employees with data access
  • Access Policies: Principle of least privilege and need-to-know basis
  • Incident Response: Documented procedures for security breaches
  • Regular Audits: Internal and external security assessments

Physical Safeguards

  • Data Centers: SOC 2 compliant facilities with 24/7 monitoring
  • Access Control: Biometric authentication and visitor logs
  • Environmental Controls: Fire suppression, climate control, backup power
  • Equipment Security: Secure disposal and destruction of storage media
  • Facility Monitoring: Surveillance systems and security personnel

Security Disclaimer

While we implement robust security measures, no system is 100% secure. We continuously monitor and improve our security practices, but cannot guarantee absolute security. We encourage you to:

  • Use strong, unique passwords for your account
  • Enable two-factor authentication when available
  • Keep your login credentials confidential
  • Report any suspicious activity immediately
  • Log out of your account when using shared devices

9. Children's Privacy Protection

Age Requirement

Our services are intended for adults aged 18 and older. We do not knowingly collect, use, or disclose personal information from children under 18 years of age.

Our Commitment to Child Protection

  • Age Verification: We require users to confirm they are at least 18 years old during registration
  • Proactive Monitoring: We actively monitor for potential underage users
  • Immediate Action: If we discover a user is under 18, we immediately deactivate their account
  • Data Deletion: We promptly delete any personal information collected from minors
  • Parental Notification: We notify parents/guardians if we become aware of underage data collection

Reporting Underage Users

If you become aware of any users under 18 on our platform, please contact us immediately at privacy@thebnbdepot.com. We take these reports seriously and will investigate promptly.

10. Your Privacy Rights and Choices

You have important rights regarding your personal information. The specific rights available to you may depend on your location and applicable privacy laws.

Right to Access

Request a copy of the personal information we hold about you, including details about how we collect, use, and share your data.

Right to Rectification

Correct any inaccurate or incomplete personal information we have about you through your account settings or by contacting us.

Right to Deletion

Request deletion of your personal information, subject to legal obligations and legitimate business needs.

Right to Restrict Processing

Limit how we process your personal information in certain circumstances, such as while disputing data accuracy.

Right to Data Portability

Receive your personal information in a structured, machine-readable format for transfer to another service.

Right to Object

Object to processing of your personal information for direct marketing, legitimate interests, or scientific research purposes.

Right to Withdraw Consent

Withdraw your consent for processing activities that rely on your consent, without affecting prior lawful processing.

Rights Regarding Automated Decisions

Request human review of decisions made solely by automated processing that significantly affect you.

How to Exercise Your Rights

Account Settings

Many rights can be exercised directly through your account dashboard, including updating information and managing preferences.

Email Request

Send a detailed request to privacy@thebnbdepot.com with your name, email, and specific request.

Online Form

Use our dedicated privacy request form at thebnbdepot.com/privacy-request for fastest processing.

Identity Verification

To protect your privacy, we may need to verify your identity before processing certain requests. This may involve:

  • Confirming account details and recent activity
  • Requesting government-issued identification
  • Verifying control of your registered email address
  • Additional security questions or two-factor authentication

Response Timeline

We will respond to valid requests within:

  • 30 days for most requests under GDPR and similar laws
  • 45 days for requests under US state privacy laws
  • Extended periods may apply for complex requests (with notification)

11. Do-Not-Track Features

Do-Not-Track (DNT) is a browser setting that signals your preference not to be tracked across websites. Here's our current approach:

Current Status

We do not currently respond to DNT browser signals because there is no universal standard for interpreting and implementing these requests across the industry.

Alternative Controls

Instead, we provide granular privacy controls through cookie preferences, account settings, and opt-out mechanisms for marketing and analytics.

Future Compliance

We monitor industry developments and will implement DNT compliance if and when universal standards are established and legally required.

California Residents

California law requires us to disclose our DNT practices. As stated above, we do not currently alter our data collection practices in response to DNT signals. However, you can control tracking through:

  • Browser cookie settings and privacy extensions
  • Our cookie preference center
  • Marketing opt-out tools and unsubscribe links
  • Account privacy settings and data controls

12. US State-Specific Privacy Rights

Residents of certain US states have additional privacy rights under state laws. Here's what applies to you:

California Residents (CCPA/CPRA)

Categories of Personal Information We Collect

Identifiers ✓ Collected Name, email, phone, address, IP address, account names
Personal Records ✓ Collected Contact info, education, employment, financial information
Protected Classifications ✗ Not Collected Age, race, gender, religion, sexual orientation
Commercial Information ✓ Collected Purchase history, payment information, transaction records
Internet Activity ✓ Collected Browsing history, search history, website interactions
Geolocation Data ✓ Collected General location based on IP address
Professional Information ✓ Collected Business contact details, job title, work history
Inferences ✓ Collected Investment preferences, behavior patterns, interests

Your California Privacy Rights

  • Right to Know: Request information about categories and specific pieces of personal information
  • Right to Delete: Request deletion of personal information we've collected
  • Right to Correct: Request correction of inaccurate personal information
  • Right to Opt-Out: Opt out of the sale or sharing of personal information
  • Right to Non-Discrimination: Receive equal service regardless of exercising privacy rights
  • Right to Limit Sensitive Data: Limit use of sensitive personal information

California "Shine The Light" Law

California residents can request information about personal information shared with third parties for direct marketing purposes. Since we don't share personal information for third-party marketing, this typically doesn't apply, but you can still make a request if desired.

Other US States

Residents of the following states have similar privacy rights under their respective state laws:

Colorado (CPA)
Connecticut (CTDPA)
Delaware (DPA)
Florida (FDBR)
Indiana (IDPA)
Iowa (IFA)
Kentucky (KCPA)
Maryland (MPPA)
Minnesota (MDPA)
Montana (MCDPA)
Nebraska (NPIA)
New Hampshire (NHPA)
New Jersey (NJDPA)
Oregon (OCPA)
Rhode Island (RICDPA)
Tennessee (TIPA)
Texas (TDPSA)
Utah (UCPA)
Virginia (VCDPA)

Common Rights Across States

  • Access and portability of personal information
  • Correction of inaccurate personal information
  • Deletion of personal information
  • Opt-out of targeted advertising and sales
  • Opt-out of profiling for significant decisions
  • Appeal adverse decisions on privacy requests

Making State Privacy Rights Requests

1

Submit Request

Use our privacy request form, email us, or call our privacy hotline

2

Identity Verification

We verify your identity to protect your privacy and prevent fraud

3

Processing

We review and process your request according to applicable law

4

Response

We provide our response within the required timeframe

Appeals Process

If we decline your privacy request, you have the right to appeal our decision. Contact us at privacy-appeals@thebnbdepot.com with your appeal within 30 days. If your appeal is denied, you may have the right to file a complaint with your state's attorney general.

13. International Data Transfers

Our services are primarily operated from the United States, and your personal information may be transferred to, stored, and processed in countries other than your country of residence.

Data Processing Locations

Your personal information may be processed in:

  • United States: Primary data processing and storage
  • Canada: Local customer support and service delivery
  • European Union: Service providers and cloud infrastructure
  • Other Countries: Third-party service providers with adequate protections

Transfer Safeguards

When we transfer personal information internationally, we ensure appropriate safeguards:

  • Adequacy Decisions: Transfers to countries with adequate data protection
  • Standard Contractual Clauses: EU-approved contractual protections
  • Binding Corporate Rules: Internal policies ensuring consistent protection
  • Certification Programs: Privacy Shield successors and industry certifications
  • Code of Conduct: Industry-approved privacy standards

Legal Basis for Transfers

International transfers are based on:

  • Explicit Consent: Your clear agreement to international processing
  • Contract Performance: Necessary for providing our services
  • Legitimate Interests: Balanced against your privacy rights
  • Legal Requirements: Compliance with applicable laws

EU/UK Residents

For residents of the European Union and United Kingdom, we ensure that international transfers comply with GDPR Article 44-49 and UK GDPR requirements. You have the right to obtain information about the safeguards we use for international transfers.

14. Privacy Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, services, legal requirements, or other factors.

How We Notify You

  • Email Notification: Direct email to your registered address for material changes
  • Website Notice: Prominent notice on our website and dashboard
  • In-App Notification: Pop-up or banner notification in your account
  • Updated Date: Revised "Last Updated" date at the top of this policy

Effective Date

  • Minor Changes: Effective immediately upon posting
  • Material Changes: 30-day notice period before taking effect
  • Legal Changes: May take effect immediately if required by law
  • User Impact: Additional notice for changes affecting your rights

Version History

  • Archive Access: Previous versions available upon request
  • Change Summary: Summary of material changes provided
  • Comparison Tool: Side-by-side comparison of key changes
  • Consultation: User feedback period for significant updates

Your Continued Use

By continuing to use our services after policy updates take effect, you acknowledge and agree to the revised Privacy Policy. If you disagree with changes, you may discontinue using our services and request deletion of your personal information.

15. Contact Information

We're committed to addressing your privacy concerns and questions. Here's how to reach us:

Privacy Officer

Email: privacy@thebnbdepot.com

Response Time: 48 hours for initial response

Best For: General privacy questions, policy clarifications

Privacy Hotline

Phone: 1-800-BNB-PRIVACY (1-800-262-7748)

Hours: Monday-Friday, 9 AM - 5 PM EST

Best For: Urgent privacy concerns, immediate assistance

Postal Mail

Address:
The BNB Depot LLC
Attn: Privacy Officer
123 Privacy Lane
Nutley, NJ 07110
United States

Best For: Formal privacy requests, legal notices

Data Protection Officer

Email: dpo@thebnbdepot.com

Jurisdiction: EU/UK privacy matters

Best For: GDPR-related questions, EU resident rights

Our Response Commitment

Timely Response

We acknowledge all privacy inquiries within 48 hours and provide substantive responses according to legal requirements.

Human Support

All privacy requests are reviewed by trained privacy professionals, not automated systems.

Language Support

We provide privacy support in English, Spanish, and French. Translation services available for other languages.

16. Making Data Subject Access Requests

You can exercise your privacy rights by submitting a data subject access request. Here's everything you need to know:

Types of Requests You Can Make

Access Request

Get a copy of your personal information and details about how we process it

Correction Request

Fix inaccurate or incomplete information in your account

Deletion Request

Remove your personal information from our systems

Portability Request

Get your data in a machine-readable format for transfer

Opt-Out Request

Stop the sale, sharing, or targeted advertising use of your data

Restriction Request

Limit how we process your personal information

Step-by-Step Request Process

1

Submit Your Request

Use our online form, email, or phone to submit your privacy request with specific details about what you're requesting.

Required Information:
  • Full name and email address
  • Type of request (access, deletion, etc.)
  • Specific data categories (if applicable)
  • Reason for request (for certain types)
2

Identity Verification

We verify your identity to protect your privacy and comply with security requirements.

Verification Methods:
  • Account credentials and recent activity
  • Email verification and security questions
  • Government-issued ID (for sensitive requests)
  • Two-factor authentication confirmation
3

Request Review

Our privacy team reviews your request for completeness, validity, and any legal restrictions.

Review Criteria:
  • Legal basis for processing
  • Potential impact on other individuals
  • Technical feasibility
  • Applicable exemptions or limitations
4

Request Fulfillment

We process your request and prepare the response, which may include data delivery or system updates.

Delivery Methods:
  • Secure email with encrypted attachments
  • Secure download portal with time-limited access
  • Account dashboard updates
  • Physical mail (for certain request types)
5

Response Delivery

We provide our response within the required timeframe and follow up to ensure your satisfaction.

Response Includes:
  • Confirmation of actions taken
  • Explanation of any limitations
  • Information about appeal rights
  • Contact information for follow-up questions

Request Limitations and Exceptions

While we honor most privacy requests, certain limitations may apply:

Legal Obligations

We may retain information required by law, such as tax records, audit trails, or regulatory compliance data.

Security Purposes

Information necessary for fraud prevention, security monitoring, or protecting against malicious activity.

Third-Party Rights

Data that contains information about other individuals or would violate third-party privacy rights.

Technical Constraints

Information that is technically infeasible to extract or would require disproportionate effort.

Authorized Agents

You can authorize someone to make privacy requests on your behalf. Authorized agents must provide:

  • Written Authorization: Signed document granting permission to act on your behalf
  • Identity Verification: Proof of the agent's identity and authority
  • Power of Attorney: Legal document for certain types of requests
  • Your Verification: We may still need to verify your identity directly

Quick Privacy Actions

Take control of your privacy with these common actions:

Privacy Settings

Manage your privacy preferences and data sharing options

Download Your Data

Get a copy of all personal information we have about you

Submit Privacy Request

Make formal requests for data access, deletion, or correction

Marketing Preferences

Control what communications you receive from us

Cookie Settings

Customize your cookie preferences and tracking settings

Ask Questions

Contact our privacy team with any questions or concerns

Your Privacy Matters

At The BNB Depot, we're committed to transparency, security, and giving you control over your personal information. This privacy policy is more than just a legal requirement—it's our promise to protect your privacy while delivering exceptional service.

99.9%
Uptime Security
24/7
Privacy Monitoring
100%
GDPR Compliant

Related Policies

Privacy Resources

Support

© 2025 The BNB Depot LLC. All rights reserved. | Last updated: June 11, 2025

SOC 2 Compliant GDPR Ready CCPA Compliant ISO 27001