Is ThinkReservations PCI Compliant?PCI Compliance and security is extremely important to us at ThinkReservations. ThinkReservations is PCI v3.2 compliant. We are fully compliant through an external audit. ThinkReservations is responsible for the security of cardholder data that we store, process, or transmit on behalf of the customer.
It's also important to note that any lodging business that handles credit cards also has to be PCI compliant. PCI compliance is something that typically your payment processor will help you with. Most partner with a PCI DSS compliance company to help the property. It is very technical and a lot of our smaller customers experience some concerns so it's important to work with your payment processor compliance company. They are educated on this topic and equipped to walk you through the process. It's important to go through the PCI compliance process to ensure your business is compliant. Even though you don't store credit card information in the system, you still take credit card numbers over the phone and type it into a computer --- so PCI compliance comes into play.
How Safe is my Data Online?ThinkReservations was built with redundancy in mind. Your data is stored on our database which has an up-to-the-moment back up copy that exists in a completely different data center. We have systems in place to automatically "failover" to the backup copy if the original database server has any issue. Every night, the entire data set (including your data!) is backed up and stored with 99.999999999% durability. Even the backups are stored across multiple data centers to make sure they are always available. Suffice to say, your data is very safe!
Is ThinkReservations ADA Compliant?Regarding ADA compliance, in the first half of this year, we have implemented various changes to the booking engine to achieve substantial conformance with accessibility guidelines. This includes ALT Tags for images and the ability to mark certain rooms as 'ADA accessible'. Does this mean that ThinkReservations is 100% compliant? Technically, it is impossible to be 100% compliant as some of the standards are still not defined and have proven in court to be interpreted differently. Instead, with these changes, we are achieving substantial conformance with the recommended guidelines. Continuing to improve and remain accessible is important to us. With that regard, we are working with a third-party assessor to perform manual reviews of the booking engine in order to continue staying up to date with the accessibility guidelines.
Is ThinkReservations GDPR Compliant?The General Data Protection Regulation (GDPR) is an EU law that will change how organizations deal with the personal data of EU citizens. It went into effect on May 25, 2018. While it was built for EU citizens, it can affect any organization that does business in the EU.
ThinkReservations has made the following changes to help ensure that we are in compliance with GDPR:
- The checkbox where guests agree to be sent marketing materials is now by default unchecked in the booking engine. Guests must now click to select the checkbox to agree to be marketed to.
- Reservations made through the OTAs will, by default, have the checkbox for agreeing to marketing emails be unchecked. You will have to confirm with these guests when they arrive at your property whether they would like to receive marketing or promotional materials.
Protecting the privacy of our customers and your guests is important to us. We are glad to make these changes to help ensure your business and our business stays in compliance.
If you have any questions, please reach out to support!