Security & Data Protection

All data is stored in the EU on Cloudflare's network. D1 databases are encrypted at rest. All communication uses TLS 1.3.

Email/password with optional TOTP two-factor authentication. Sessions expire after 30 minutes of inactivity. Secure cookies with __Secure- prefix.

Role-based access control (RBAC) with three roles: chain admin, property manager, and property staff. Full tenant isolation between hotels.

Complete GDPR support with data export and deletion for guests. Data Processing Agreement (DPA) available for download.

HSTS, Content Security Policy, X-Frame-Options DENY, Referrer-Policy, Permissions-Policy. Rate limiting on authentication endpoints.

All webhook notifications are signed with HMAC-SHA256. SSRF prevention validates webhook URLs against private IP ranges.

Found a security vulnerability? Contact us at security@gaestro.io. We respond within 48 hours.