top of page

Privacy Policy

A legal disclaimer

This Privacy Policy explains how The comfy stay apartment we collects, uses, stores, and protects personal data when you visit or make payments on thecomfystayapt.com, in accordance with the EU General Data Protection Regulation (GDPR) and applicable Maltese data protection laws.

Last Update 23/01/2026

Privacy Policy

1. Information We Collect & How We Collect It

a) Personal Information You Provide

We collect personal information that you voluntarily provide, including:
   •    Full name
   •    Email address
   •    Phone number
   •    Billing address
   •    Order or transaction details
   •    Information submitted through contact forms or checkout pages

b) Payment Information (Stripe)

Payments on this Website are processed securely by Stripe Payments Europe, Ltd.
   •    We do not store or process full credit or debit card details
   •    Payment data is transmitted directly to Stripe using encrypted connections
   •    Stripe processes payment information in accordance with PCI-DSS security standards

Stripe may collect:
   •    Card details
   •    Billing information
   •    Transaction metadata
   •    Fraud prevention data

Stripe acts as an independent data controller for payment processing.
You can review Stripe’s Privacy Policy on their website.

c) Automatically Collected Information

When you browse the Website, we may automatically collect:
   •    IP address
   •    Browser and device information
   •    Pages visited and time spent
   •    Referring URLs
   •    Cookies and similar technologies

d) Cookies

We use cookies to:
   •    Enable core website functionality
   •    Facilitate secure checkout and payments
   •    Analyze website traffic
   •    Improve user experience

You can manage or disable cookies through your browser settings.

2. Legal Basis for Processing (GDPR)

We process personal data based on the following legal grounds:
   •    Performance of a contract (processing payments and providing services)
   •    Legal obligation (tax, accounting, and regulatory requirements in Malta)
   •    Legitimate interests (fraud prevention, website security, service improvement)
   •    Consent (marketing communications, where applicable)

3. Why We Collect Your Information

We use personal data to:
   •    Process and manage payments via Stripe
   •    Provide products or services
   •    Communicate regarding transactions or inquiries
   •    Comply with legal and financial obligations
   •    Prevent fraud and unauthorized transactions
   •    Improve Website performance and user experience

4. Sharing Your Information

We may share personal data with:
   •    Stripe Payments Europe, Ltd.
   •    Hosting and IT service providers
   •    Analytics providers
   •    Accounting and legal advisors
   •    Authorities where legally required

We do not sell personal data to third parties.

All third parties are required to comply with GDPR and maintain appropriate security measures.

5. Data Retention

We retain personal data only for as long as necessary to:
   •    Fulfill contractual obligations
   •    Meet Maltese legal and tax requirements
   •    Resolve disputes and enforce agreements

Data is securely deleted or anonymized when no longer required.

6. Your Rights Under GDPR

You have the right to:
   •    Access your personal data
   •    Request correction of inaccurate data
   •    Request deletion of your data
   •    Restrict or object to processing
   •    Request data portability
   •    Withdraw consent at any time

You also have the right to lodge a complaint with the Office of the Information and Data Protection Commissioner (IDPC), Malta.

📩 To exercise your rights, contact:
thecomfystayapartment@gmail.com

7. Data Security

We implement appropriate technical and organizational safeguards, including:
   •    Secure servers
   •    Encrypted communications
   •    Restricted data access

However, no internet-based system is completely secure.

8. Minors’ Data

Our Website and services are not intended for individuals under 16 years of age.

We do not knowingly collect personal data from minors.
If such data is discovered, it will be deleted promptly.

9. International Data Transfers

Stripe and other service providers may process data outside the European Economic Area (EEA).

Where this occurs, appropriate safeguards are in place, such as:
   •    EU Standard Contractual Clauses
   •    Adequacy decisions by the European Commission

10. Third-Party Websites

Our Website may include links to third-party websites.
We are not responsible for their content or privacy practices.

11. Updates to This Privacy Policy

We may update this Privacy Policy periodically.
Changes will be posted on this page with an updated date.

Contact Details

Business Name: The Comfy Stay Apartment
Registered in: Malta
Email:thecomfystayapartment@gmail.com
Website: thecomfystayapt.com  

bottom of page