Privacy policy.

Verdscore is a SaaS product that turns public restaurant and hotel reviews into actionable AI insights. We are the data controller for the personal data described here. For any privacy or data-protection question, send us a message. Transactional emails are sent from [email protected].

• Public venue data. Place details and reviews from Google + TripAdvisor for the venues you track. Already public on those sources; we layer sentiment, themes, and suggested replies on top.
• Account data. Name, email, hashed password (we never see the plaintext), the venues you claim, your plan, reply-tone preferences, team and manager assignments.
• Billing data. Stripe handles payment cards directly — we never see or store the card number. We do see the email, name, country, and subscription state Stripe sends back.
• Usage and security data. Log lines, IP, request IDs, login attempts, cookies. Used to keep the service secure, debug, and (only with consent) understand usage.

We process account and venue data to perform our contract with you (the service you signed up for). We process security and log data on the basis of our legitimate interest in keeping the service safe. Optional analytics load only with your consent. Public Google + TripAdvisor data is processed as part of delivering the product to the venue owner.

The third parties we send data to. Customer-facing vendors (Stripe, Cloudflare, Google Analytics) are named directly; our infrastructure-layer providers (specific LLM, email, hosting, and backup vendors) are listed by category — we'll name them on request for procurement reviews or DPAs. Ask us if you need the full list.

We do not sell your data and we don't share it with advertisers.

One strictly-necessary session cookie keeps you signed in. A consent-gated analytics cookie (Google Analytics 4 via Consent Mode v2) loads only after you accept the banner. No advertising or cross-site tracking cookies. Full detail in the cookie policy.

Account and venue data: as long as your account is active. When you delete your account, the account row + all venue claims tied to it go too. Backups roll off after 30 days. Security logs are kept only as long as we need them for the purpose above.

Passwords are stored as bcrypt hashes. Data is encrypted in transit (TLS) and backups are encrypted at rest (AES-256). We rate-limit login attempts, use Cloudflare Turnstile on every public form, and run an admin audit log on every privileged action.

The application + database are hosted in the EU (Hetzner Cloud, Nuremberg). Backups stay in the EU (AWS S3 Frankfurt). Some sub-processors above process data outside the EU — primarily LLM providers; we share only the data needed for that specific processing and rely on Standard Contractual Clauses where required.

You can ask us to access, correct, delete, export, or object to the processing of your personal data — including the right to lodge a complaint with your local data-protection authority. Send us a message and we'll respond within a reasonable time. You can also request removal of a venue from inside the product via the removal-requests flow.

Verdscore is a tool for business owners. It's not intended for anyone under 18 and we don't knowingly collect data from children.

When we make a meaningful change, we'll bump the date at the top and (where appropriate) notify signed-in users before it takes effect.