Guest Manager


Effective date: Apr 15, 2020

The data privacy regulatory landscape is undergoing a lot of change. You probably have heard about the EU General Data Protection Regulation (GDPR) that went into effect on May 25, 2018. There are also other regulations in the works around the world. We’ve written up this reference document to put information about our compliance with privacy regulations in one place.

Are Guest Manager products in compliance?

You can find our Privacy policy here.

  • We are in compliance with the GDPR.
  • We are in the process of ensuring compliance with the California Consumer Privacy Act (CCPA) and have expanded your rights in our privacy policy accordingly.
  • We are also watching and preparing for other legislation in the US and in other countries.

We will update this document as we ensure compliance with other regulations.

We are not HIPAA-compliant and currently do not have plans to become so.

Data Processing Addendum

Increasingly, privacy regulations require processing of personal data be governed by a data processing addendum (DPA) that is compliant with those regulations.

We provide a standard Data Processing Addendum (DPA) that is GDPR-compliant to extend GDPR privacy principles, rights, and obligations everywhere personal data is processed. If you use our products to process any EU personal data, you need to enter into GDPR-compliant data processing agreements with any online services and third party vendors you rely on, including Guest Manager.

✍️ Download the DPA here (PDF).

Data erasure request

Clients have the request to request erasure of their data. Please download, complete, email this form to


We use third party subprocessors, such as cloud computing providers and customer support software, to run Guest Manager (the service). We establish GDPR-compliant data processing agreements with each subprocessor, extending GDPR safeguards everywhere personal data is processed.

Below is a list of personal data subprocessors we use. These subprocessors are all located in the United States:

Name Description
Heroku Application and database hosting
Data Dog Logging, alerting, and performance monitoring
Google Analytics, Email, Cloud Documents
Bugsnag Error reporting and tracking
Intercom Customer support and marketing
SendGrid Transactional email delivery
Stripe Payment processing
MailChimp Email marketing
Trello Project management
Notion Project management
AWS Data storage
Xero Accounting and bookkeeping
RedisLabs Data storage
Adapted from the Basecamp open-source policies / CC BY 4.0
Questions or concerns about our policies? Don't hesitiate to get in touch.