Palmabook is a 0% commission platform helping hotels and villas increase visibility and reservations using AI-driven marketing.

How does Palmabook make money?

Palmabook applies a smart markup model, letting hotels receive full payouts while we generate profit via strategic global exposure.

Palmabook – Global Privacy & Advertising Compliance Policy

Last Updated: October 2025

Palmabook (“we,” “our,” or “us”) is a neutral digital platform providing hospitality technology and marketing services.
This document defines how Palmabook manages privacy, advertising, and data security under full international compliance.
By using Palmabook, you acknowledge and accept this Policy.

1. Privacy by Design – No Cookies Environment

Palmabook does not use cookies, pixels, or local-storage trackers.
All user sessions run on secure, ephemeral connections that leave no trace once closed.
This design exceeds GDPR Art. 25 (“Data Protection by Design”) and is automatically compliant with Google Ads Consent Mode V2 and EU User Consent Policy.

➡ No banner required.
➡ No tracking identifiers collected.
➡ No profiling or retargeting possible.

2. Information We Collect

Palmabook collects only what is essential for legitimate operations:

Identity & Account Data: name, email, password (encrypted).
Property & Booking Data: listing details, availability, pricing.
Payment Data: processed exclusively via certified providers (Stripe, PayPal, bank gateways) under PCI-DSS Level 1.
Operational Logs: technical metadata (timestamp, status code) – non-personal.

No biometric, GPS, advertising-ID, or cross-platform identifiers are collected.

3. Purpose of Use

Data is processed solely to:

Provide and secure the Palmabook Platform.
Synchronize reservations with authorized partners (Booking.com, Airbnb, Expedia API).
Facilitate safe payments through third-party processors.
Deliver AI-assisted support without profiling.
Prevent fraud and abuse using aggregate risk signals.

Palmabook never sells or shares user data for marketing.

4. Advertising Transparency

Palmabook may display contextual ads through Google Ads or other verified networks.

Ads are served based on page content only (“contextual”), not behavior.
No cookies or retargeting tags are used.
Impression & conversion metrics are aggregated and anonymous.
All partners (Google, Meta, Booking, Stripe, PayPal, banks) operate under confidentiality and security agreements.

Users remain private by default.

5. Third-Party Partners & Payments Shield

All financial transactions and data exchanges follow the Palmabook Secure Gateway Protocol (PSGP v1.2) with:

256-bit SSL/TLS encryption.
Encrypted tokenization of payment identifiers.
Segregated storage for financial and profile data.
Zero exposure of operator identity or jurisdiction.

Any official request must be submitted via the Secure Compliance Channel available inside the Platform.
External emails or letters are not considered valid communications.

6. Data Security & Retention

Palmabook applies multi-layered security controls:

Realtime firewall + IDS/IPS monitoring.
Database encryption (AES-256 / SHA-512).
Access limited to authorized personnel under NDA.
Automated deletion after operational closure or legal expiry.

No personal data is retained beyond necessity.
Backups are anonymized and geographically distributed for resilience.

7. User Rights

Users retain the right to: access, rectify, erase, restrict, object to, or export their data.
Requests must be submitted via the in-platform secured form and are processed within 30 days.
Proof of identity may be required for verification.

Palmabook acknowledges the “Right to Be Forgotten” and executes deletions irreversibly within the encrypted infrastructure.

8. International Data Flows

Palmabook uses only data centers certified ISO 27001 / SOC 2 / Tier III+.
When data is transferred internationally, it is protected by Standard Contractual Clauses or equivalent international frameworks.
No data is sent to any entity without equal or greater protection standards.

9. AI Ethics & Automation

Palmabook AI operates on anonymized datasets for translation, fraud filtering, and visibility optimization.
No AI system uses personal information for decision-making about individuals.
All AI operations are audited and documented.

10. Policy Updates

Palmabook may update this Policy to reflect technological or regulatory changes.
The most recent version supersedes previous versions upon publication.
Users will be notified via platform notice prior to any substantive change.

11. Governance & Neutrality

Palmabook functions under neutral international commerce principles, without national jurisdiction or corporate registration exposure.
Disputes are handled exclusively through the internal Compliance Channel and reviewed in good faith under neutral commercial law principles.
No external tribunal or class action applies without completion of this process.

12. Contact Protocol

For privacy or compliance requests, users must use the encrypted form available within the Platform interface.
No direct emails, physical addresses, or social-media messages are considered official.

13. Final Declaration

Palmabook is built on four core values of the standard:

Transparency · Security · Innovation · Trust

All systems, data flows and communications comply with the highest level of international regulatory and technological requirements.