Stem Hotel

Privacy Policy

Privacy Policy

Last Updated: August 17, 2025

1. Introduction

Stem Hotel (“we,” “our,” “us”) values your privacy and is committed to safeguarding your personal data. This Privacy Policy explains how we collect, use, and protect your information when you interact with our website (stemhotel.co.ke), book with us, or use our services.

We comply with the Kenya Data Protection Act, 2019 and relevant international standards (including GDPR for EU guests).

2. Information We Collect

A. Information You Provide

  • Bookings & Reservations: Name, email, phone, ID/passport details (as required by Kenyan law), check-in/check-out dates, room preferences.
  • Payments: Processed securely through third-party providers. We do not store full card or financial details.
  • Contact Forms & Feedback: Messages, inquiries, surveys, reviews.
  • Subscriptions: Email address for newsletters and promotions (optional).

B. Information Collected Automatically

  • Device type, browser, IP address.
  • Pages visited, time spent, and referral source.
  • Cookies and similar technologies (functional, analytics, advertising).

3. How We Use Your Information

We process your personal data to:

  • Confirm and manage reservations.
  • Provide customer support and respond to inquiries.
  • Improve our website and services through analytics.
  • Send promotional content (only if you have consented).
  • Comply with legal, security, and regulatory obligations.

4. Sharing Your Data

We may share your data with:

  • Trusted service providers (IT support, analytics, payment processors).
  • Regulators or law enforcement where required by law.
  • Marketing partners, but only if you have opted in.

We do not sell your personal information.

5. Cookies & Tracking

We use cookies and similar technologies to:

  • Ensure smooth site functionality.
  • Remember your preferences (e.g., booking selections).
  • Analyze visitor traffic and improve performance.
  • Deliver tailored advertisements.

You may accept, reject, or customize cookies via our cookie banner or through browser settings.

6. Data Retention

We keep your personal data only as long as necessary:

  • Booking & guest records: 7 years (to comply with tax and legal requirements).
  • Payment records: Up to 7 years as required by financial regulations.
  • Marketing subscriptions: Until you unsubscribe or withdraw consent.
  • Customer support inquiries: 2 years after resolution.

After these periods, data is securely deleted.

7. Data Security

We apply industry-standard safeguards including:

  • Encrypted website connections (SSL).
  • Secure servers with restricted staff access.
  • Confidentiality obligations for employees.

While no system is 100% secure, we regularly update our systems to minimize risks.

8. Your Rights

Under the Kenya Data Protection Act (2019), you have the right to:

  • Access your personal data.
  • Request correction of inaccurate data.
  • Request deletion where appropriate.
  • Withdraw consent (e.g., for marketing or cookies).
  • Object to processing in certain circumstances.

To exercise these rights, contact us at: info@stemhotel.co.ke.

9. Third-Party Links

Our website may contain links to external sites (e.g., payment gateways, social media). Please note that we are not responsible for their privacy practices.

10. Children’s Privacy

Our services are intended for individuals aged 18 years and above. We do not knowingly collect information from children.

11. Updates to This Policy

We may update this Privacy Policy to reflect changes in law or operations. Updates will be posted here with a new “Last Updated” date.

12. Contact Us

For privacy concerns or data requests, please contact:

📍 Stem Hotel, Nakuru–Nairobi Highway, Nakuru, Kenya

📧 info@stemhotel.co.ke

☎️ +254 722 750 475