Privacy Policy
This Privacy Policy explains how Augment AI Studio, LLC (doing business as “Boring Host”, “we”, “us”, “our”) collects, uses, shares, and protects information when you visit our website or use our products and services (collectively, the “Services”).
1. Who we are
Controller contact details
- Company: Augment AI Studio, LLC
- Address: 131 Continental Dr, Suite 305, Newark, DE 19713
- Email: kevin@boringhost.ai
2. Scope
This policy covers:
- Website visitors
- Customers and authorized users of the Services (property managers, hosts, staff)
- Guests and end users whose information is processed in the Services (for example, guest messages and reservation details), where applicable
3. Roles: Customer data vs guest data
Boring Host is built for short-term rental and vacation rental operations. In many cases:
- You (the customer) are the controller of guest personal data you import or connect (for example, reservation and guest contact data).
- We act as a processor/service provider for that guest data, processing it to provide the Services on your behalf.
Where we determine the purposes and means of processing (for example, our website analytics, billing, and account administration), we act as a controller.
4. Information we collect
A) Information you provide to us
- Account information: name, email, phone number, company name, role
- Billing information: billing contact details and payment method details (processed by payment processors)
- Support and communications: messages you send to support, recordings or transcripts if you contact us by phone (if enabled)
B) Information processed when you use the Services (“Customer Content”)
Depending on the features and integrations you enable, we may process:
- Property and listing data: property details, amenities, check-in/check-out instructions, house rules, guidebook content
- Reservation data: booking dates, guest count, reservation identifiers
- Guest communications: message content and metadata across channels you connect (OTA inboxes, email, WhatsApp, SMS)
- Operational data: tasks, notes, escalations, maintenance and cleaning-related updates (if you connect tools that provide them)
- Call data (if voice features are enabled): call recordings, transcripts, call summaries, and call metadata
C) Information we collect automatically
- Usage data: log data, feature usage, device and browser info, approximate location derived from IP, crash reports
- Cookies and similar technologies: to operate the site, understand usage, and improve performance (see Cookies section)
5. How we use information
We use information to:
- Provide, operate, and maintain the Services
- Connect and run integrations you enable (PMS, channels, payments, locks, ops tools)
- Generate AI outputs such as suggested replies, summaries, routing, and automations
- Secure the Services, prevent fraud/abuse, and troubleshoot issues
- Bill customers, manage subscriptions, and send service communications
- Improve and develop features, analytics, and performance
- Market the Services (where permitted), and measure campaign performance
6. Legal bases (EEA/UK)
7. How we share information
We may share information with:
- Service providers (processors): hosting, databases, analytics, customer support tools, communications providers, and payment processors
- Integration partners at your direction: when you connect a PMS, channel, or tool, data flows to and from that provider based on your settings
- Professional advisors: legal, accounting, auditors
- Legal and safety: to comply with law, enforce our terms, or protect rights, safety, and security
- Business transfers: if we’re involved in a merger, acquisition, financing, or sale of assets
We do not sell personal information in the traditional sense. If you operate in jurisdictions with “sale/share” definitions (for example, California), configure this section based on your actual advertising practices.
If GDPR/UK GDPR applies, we rely on one or more lawful bases, such as:
- Contract: to provide the Services you request
- Legitimate interests: to secure, improve, and operate our Services
- Consent: for certain cookies/marketing where required
- Legal obligation: to comply with applicable laws
8. International data transfers
If personal data is transferred internationally, we use appropriate safeguards (for example, Standard Contractual Clauses where applicable) and other lawful mechanisms.
9. Data retention
We retain personal data only as long as needed for the purposes described above, unless a longer retention period is required or permitted by law (for example, billing and audit records). Privacy notices commonly disclose retention periods or the criteria used to determine them.
10. Security
We use administrative, technical, and physical safeguards designed to protect personal data. No system is perfectly secure; you are responsible for keeping credentials secure and limiting access to authorized users.
11. Your rights and choices
A) EEA/UK rights
Depending on your location, you may have rights to access, correct, delete, restrict, object, or port your personal data, and to withdraw consent where processing is based on consent.
B) California (CCPA/CPRA) rights
C) Marketing choices
If applicable, California residents may have rights such as:
You can opt out of marketing emails via the unsubscribe link. Service and transactional messages are not marketing and may still be sent.
12. Cookies
We use cookies and similar technologies for:
- Essential site operation
- Performance and analytics
- Personalization
- Marketing (where enabled)
13. Children
The Services are not intended for children under 13 (or a higher age where required). We do not knowingly collect personal information from children.
14. Changes to this policy
We may update this Privacy Policy. If changes are material, we will provide notice through the Services or by other appropriate means.
15. Contact us
Email: kevin@boringhost.ai
Address: 131 Continental Dr, Suite 305, Newark, DE 19713