Privacy Policy

Guest Networks Inc. (“Guest Networks”, “we”, “us”, or “our”) operates a platform-agnostic data layer for physical spaces. Our API ingests events from WiFi access points, cameras, environmental sensors, HVAC systems, access control, point-of-sale terminals, and other physical infrastructure, then normalises that data for query by AI agents via the Model Context Protocol (MCP).

This Privacy Policy explains what information we collect, how we use it, and your rights with respect to that information. By accessing or using our services, you agree to the practices described here.

We collect the following categories of data:

Account information. When you register for a Guest Networks account we collect your name, email address, and (optionally) a connected GitHub OAuth identity.

Sensor data ingested by operators.Our platform is a data processor for operators (business customers). Operators configure connectors to push events — device presence, occupancy counts, environmental readings, etc. — to our ingest API. This data is tagged with the operator's venue identifiers and stored in our database. Guest Networks does not independently source this data.

Usage and log data. We collect server logs, API request metadata (endpoint, latency, HTTP status), and error traces to operate and improve the service.

Billing data. Payment card details are processed directly by Stripe and are never stored on Guest Networks servers. We retain Stripe customer IDs and subscription state.

Cookies and local storage. The portal uses session cookies (via Better Auth) to authenticate logged-in users. We do not use third-party advertising cookies. Analytics are privacy-first (Plausible — no personal data collected).

• Service operation — authenticating requests, routing events, serving API responses.
• Billing — managing subscriptions and invoices via Stripe.
• Security — detecting abuse, rate limiting, and preventing unauthorised access.
• Support — diagnosing errors reported by operators.
• Product improvement — aggregate, anonymised usage analysis to prioritise features.
• Communications — transactional emails (sign-up confirmation, billing receipts) via Resend; marketing emails via Loops (opt-out available at any time).

For users in the European Economic Area (EEA) and United Kingdom, our legal bases for processing personal data are:

• Contract performance — processing necessary to deliver the service you signed up for.
• Legitimate interests — security monitoring, fraud prevention, and product analytics.
• Legal obligation — retaining records as required by applicable law.
• Consent — marketing communications (you can withdraw at any time).

If you are located in the EEA or UK you have the following rights regarding your personal data:

• Right of access — request a copy of the personal data we hold about you.
• Right to rectification — ask us to correct inaccurate or incomplete data.
• Right to erasure — request deletion of your account and associated personal data.
• Right to data portability — receive your data in a machine-readable format.
• Right to restrict processing — ask us to pause processing under certain circumstances.
• Right to object — object to processing based on legitimate interests.

To exercise any of these rights, email privacy@guestnetworks.com. We will respond within 30 days.

If you are a California resident, the California Consumer Privacy Act (CCPA) grants you the right to:

• Know — what personal information we collect and how it is used or disclosed.
• Delete — request deletion of personal information we have collected.
• Opt out — we do not sell personal information. No action required.
• Non-discrimination — we will not discriminate against you for exercising CCPA rights.

Submit requests to privacy@guestnetworks.com.

We retain data for the following periods:

• Raw sensor events (gn_event_raw hypertable) — 90 days, then automatically dropped by TimescaleDB retention policy.
• Aggregate rollups (1-minute, 1-hour, 1-day buckets) — 1 year.
• Account and billing records — retained for the lifetime of the account plus 7 years for tax compliance.
• Server logs — 30 days.
• Session tokens — 30 days from last activity.

We engage the following third-party subprocessors to operate our service. Each is bound by a data processing agreement:

• Encryption at rest — connector credentials and sensitive config fields are encrypted with AES-256-GCM before storage.
• Encryption in transit — all traffic between clients and our servers uses TLS 1.2+.
• Authentication — operator API keys use HMAC-SHA256 verification; portal sessions use OAuth 2.0 (GitHub) and email OTP.
• Access control — all database queries are scoped to the authenticated operator_id. Cross-tenant access is architecturally impossible.
• Rate limiting — all API endpoints are rate-limited via Upstash Redis to prevent abuse.
• Soft deletes — data is never hard-deleted from production; records are flagged inactive to preserve audit trails.

Guest Networks is incorporated in Delaware, USA. If you are located outside the United States, your data may be transferred to and processed in the USA and other jurisdictions. We rely on Standard Contractual Clauses (SCCs) where required by GDPR for such transfers.

We may update this Privacy Policy from time to time. Material changes will be communicated by email or by a notice on the portal at least 14 days before they take effect. The “last updated” date at the top of this page reflects the most recent revision.

Questions about this Privacy Policy or requests to exercise your rights should be sent to: