Privacy policy

Last updated: March 2026

Privacy Policy

Fandian ("we", "our", or "us") operates an AI-powered hotel concierge and staff communication platform. This Privacy Policy explains how we collect, use, and protect information when hotels and their guests use our services.

1. Information We Collect

We collect the following information in connection with providing our services:

  • Guest phone numbers — collected via inbound SMS messages sent to a hotel's designated number.

  • Message content — the text of inbound and outbound SMS messages between guests and the AI concierge or hotel staff.

  • Stay information — room number, check-in and check-out dates, provided by the hotel.

  • Staff account information — name, email address, and role for hotel staff users of the admin dashboard.

  • Hotel configuration data — hotel name, phone number, operating hours, and other information entered by hotel managers.

2. How We Use Information

  • To route and respond to guest messages via AI or hotel staff.

  • To create and manage service tasks on behalf of hotel staff.

  • To provide hotels with a dashboard to manage guest communications.

  • To improve the quality and accuracy of AI responses.

  • To comply with legal obligations including SMS compliance requirements.

3. Message Frequency and Opt-Out

Message frequency varies based on guest requests. Guests may opt out of receiving messages at any time by replying STOP to any message. Reply HELP for assistance. Standard message and data rates may apply.

4. Data Sharing

We do not sell guest data to third parties. We may share data with:

  • Hotels — who are the operators of the service and have access to their guests' message history and stay data.

  • Twilio — our SMS infrastructure provider, used to send and receive text messages.

  • OpenAI — our AI provider, which processes message content to generate responses.

  • Render — our cloud hosting provider, where data is stored and processed.

5. Data Retention

Message and stay data is retained for up to 12 months or as required by applicable law. Hotels may request deletion of their data by contacting us.

6. Security

We implement industry-standard security measures including encrypted connections (HTTPS), access controls, and secure credential storage. No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

7. International Data Transfers

Our servers are currently located in the United States. If you are located outside the United States, your data may be transferred to and processed in the United States. By using our services, you consent to this transfer.

8. Your Rights

Guests may request access to, correction of, or deletion of their personal data by contacting the hotel directly or by emailing us at the address below. Hotel staff may update their account information through the admin dashboard.

9. Children's Privacy

Our services are not directed to children under 13. We do not knowingly collect personal information from children.

10. Contact

For privacy-related questions or requests, contact us at: wcwang28@gmail.com