Privacy Policy

Last updated: 25 May 2026

This policy explains what personal data OceanHome collects from visitors and customers, why we collect it, how we use and protect it, and what choices and rights you have. It applies to everyone who uses our website, books a property, signs up for an account, or otherwise interacts with us online.

We comply with the EU General Data Protection Regulation (GDPR) and applicable Spanish data-protection law (LOPDGDD).

1. Who we are

OceanHome is a property-rental agency based in Torrevieja, Spain. When this policy refers to “we”, “us”, or “our”, it means OceanHome acting as the data controller for the personal data described below.

You can reach us at info@oceanhome.es for any privacy-related question or request.

2. Data we collect

We collect personal data in the following situations:

  • When you make a booking: full name, email address, phone number, nationality, billing address, dates of stay, number of guests, and the property booked. For long-term stays we may also request identification details to comply with rental-licence requirements.
  • When you create an account: name, email, phone, nationality, password (stored only as a one-way hash), and optionally your billing address.
  • When you contact us: the contents of your message and the contact channel used (email, phone, contact form, WhatsApp).
  • When you pay: payment is processed by Stripe; we receive a transaction reference and the last four digits of the card, but we do not store full card numbers on our servers.
  • Automatically when you browse: standard technical data such as IP address, browser type, device, referring page, and pages viewed, gathered through server logs and analytics cookies.

3. How we use your data

  • To process and manage your booking and stay.
  • To take payment and issue receipts or invoices.
  • To send booking confirmations, reminders for upcoming payments (e.g. balance due, monthly long-term rent), and customer-service messages relating to your stay.
  • To respond to enquiries and provide customer support.
  • To meet legal obligations (e.g. tax records, guest registration where required).
  • To improve the website and our services through aggregated analytics.

We do not sell your personal data, and we do not use it for unrelated marketing without your consent.

5. Sharing with third parties

We share personal data only with parties that need it to provide our service, under written agreements that require them to protect your data:

  • Property owners and on-the-ground partners — to coordinate check-in, cleaning, maintenance, and any incident during your stay.
  • Stripe— to process card payments. Stripe acts as an independent data controller for payment data; see Stripe’s own privacy policy.
  • Email and hosting providers — to send transactional emails and host our website and booking system.
  • Authorities — when required by law (e.g. tax inspections, police registration of guests in line with Spanish regulation).

6. Payments

All card payments are processed by Stripe over an encrypted connection. We do not store full card numbers, CVV codes, or expiry dates. We retain a payment reference, the amount, the payment method type, and the last four digits of the card so we can reconcile bookings, issue refunds, and respond to chargebacks.

7. Cookies and analytics

We use a small number of cookies and similar technologies. Strictly-necessary cookies (for example, to keep you signed in or to remember your booking-flow state) do not require consent. Analytics cookies that help us understand which pages perform well are loaded only with your consent.

You can withdraw or change your cookie preferences at any time through your browser settings.

8. Data retention

  • Booking records: kept for the duration required by Spanish tax and accounting law (typically 6 years from the end of the relevant financial year).
  • Account data: kept while your account is active and for up to 24 months after your last booking, unless you ask us to delete it sooner.
  • Customer-service correspondence: kept for up to 24 months unless tied to a longer-retention obligation (e.g. a dispute or refund claim).
  • Server logs and analytics: kept for a short, rolling window (typically up to 12 months) for security and performance monitoring.

9. Your rights

Under GDPR you have the right to:

  • Access the personal data we hold about you.
  • Have inaccurate or incomplete data corrected.
  • Request deletion of your data, where there is no overriding legal reason to keep it.
  • Restrict or object to certain types of processing.
  • Receive a copy of your data in a portable, machine-readable format.
  • Withdraw any consent you previously gave, without affecting prior processing.
  • Lodge a complaint with the Spanish Data Protection Agency (Agencia Española de Protección de Datos, aepd.es) if you believe we have not handled your data properly.

To exercise any of these rights, write to info@oceanhome.es. We may need to verify your identity before acting on a request, and we will respond within the timeframes required by law.

10. Security

We use technical and organisational measures appropriate to the risk, including HTTPS, hashed passwords, restricted access to booking systems, and reputable hosting and payment providers. No system is perfectly secure; please notify us immediately at info@oceanhome.es if you suspect any unauthorised use of your account.

11. Children

Our services are intended for adults aged 18 and over. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can remove it.

12. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our services, technology, or the law. The “Last updated” date at the top of this page shows when it was last revised. Material changes will be highlighted on the website.

13. Contact us

Questions, complaints, or data-protection requests should be sent to info@oceanhome.es. We aim to respond within a reasonable time and always within the deadlines set by law.

HomeSearchEnquireCall