MUVA Chat (“MUVA”, “we”, “our”) operates a multi-tenant conversational platform for tourism businesses. This policy explains what we collect, how we use it, and your rights.

1. Data we collect

• Messages you send us (via web chat, WhatsApp, or other channels), including text, images, audio, and attachments.
• Contact identifiers: phone number, email, name — as shared by you or the business hosting your stay.
• Reservation and check-in data: dates, accommodation, identity documents when required by local law (e.g. SIRE / TRA in Colombia).
• Technical metadata: IP address, device type, timestamps, referring URLs.

2. How we use it

• Provide AI-powered answers about your stay, reservations, and the destination.
• Route requests to the right business (hotel or tourism agency) and to your assigned host.
• Comply with legal obligations (e.g. Colombian SIRE tourist registration, tax invoicing).
• Improve service quality and debug issues.

3. Third parties we share with

We share the minimum necessary data with:

• Anthropic (Claude API) — to generate AI responses. Messages are processed but not used to train models.
• Meta Platforms — when you message us via WhatsApp Business, WhatsApp handles message delivery.
• The hosting business (the hotel or agency you are a guest of) — your messages and reservation data are visible to their authorized staff.
• Government authorities — when required by law (SIRE, TRA, fiscal reporting).
• Infrastructure providers — hosting (VPS), database, file storage.

We do not sell personal data.

4. Retention

Chat conversations are retained for up to 24 months to provide continuity across stays. Identity documents required for SIRE/TRA are retained per local legal requirements. You can request earlier deletion (see §6).

5. Security

Data in transit uses TLS. Credentials (e.g. payment tokens, OAuth refresh tokens) are encrypted at rest with AES-256-GCM. Access to business data is restricted via tenant-level Row Level Security.

6. Your rights

You can:

• Request a copy of your data.
• Request correction or deletion.
• Object to specific uses (e.g. marketing messages).
• Withdraw consent for WhatsApp messaging at any time by replying “STOP”.

To exercise these rights, contact us at [email protected].

7. Children

MUVA Chat is not directed at children under 13 and we do not knowingly collect data from them. If a minor’s data appears as part of a family reservation, it is handled only as needed for the stay.

8. International transfers

Our infrastructure is hosted in Europe. Your data may be processed by third parties (e.g. Anthropic, Meta) in the United States under appropriate safeguards.

9. Changes

We may update this policy. Material changes will be announced on muva.chat and via WhatsApp if you have active conversations with us.

10. Contact

MUVA Chat · San Andrés, Colombia
Email: [email protected]

Política de Privacidad

Fecha efectiva: 19 de abril de 2026

MUVA Chat (“MUVA”, “nosotros”) opera una plataforma conversacional multi-tenant para negocios turísticos. Esta política describe qué datos recopilamos, cómo los usamos y cuáles son tus derechos.

1. Datos que recopilamos

• Mensajes que nos envías (vía chat web, WhatsApp u otros canales): texto, imágenes, audio, adjuntos.
• Identificadores de contacto: número de teléfono, correo, nombre.
• Datos de reserva y check-in: fechas, alojamiento, documentos de identidad cuando la ley local lo requiere (SIRE / TRA en Colombia).
• Metadatos técnicos: IP, tipo de dispositivo, marcas de tiempo.

2. Cómo usamos los datos

• Responder con IA sobre tu estadía, reservas y destino.
• Enrutar mensajes al negocio correcto (hotel o agencia turística).
• Cumplir obligaciones legales (SIRE, facturación fiscal).
• Mejorar el servicio y depurar errores.

3. Terceros con los que compartimos

• Anthropic (Claude API) — para generar respuestas IA. No usan los mensajes para entrenar modelos.
• Meta Platforms — cuando nos contactas por WhatsApp Business.
• El negocio anfitrión (hotel/agencia del que eres huésped) — tus mensajes y datos de reserva son visibles a su personal autorizado.
• Autoridades gubernamentales — cuando la ley lo exige.
• Proveedores de infraestructura — hosting, base de datos, almacenamiento.

No vendemos datos personales.

4. Retención

Las conversaciones se retienen hasta 24 meses para dar continuidad entre estadías. Los documentos de identidad requeridos por SIRE/TRA siguen los plazos legales.

5. Seguridad

Datos en tránsito con TLS. Credenciales (tokens de pago, refresh tokens OAuth) encriptadas en reposo con AES-256-GCM. Acceso segmentado por tenant mediante Row Level Security.

6. Tus derechos

Puedes solicitar copia, corrección o eliminación de tus datos; oponerte a usos específicos; retirar consentimiento para mensajes de WhatsApp respondiendo “STOP”.

Contacto: [email protected]

7. Cambios

Podemos actualizar esta política. Cambios sustanciales se anunciarán en muva.chat.

8. Contacto

MUVA Chat · San Andrés, Colombia
Email: [email protected]