Localty connects travelers with local communities. This policy explains what personal data we collect, why we collect it, and the rights you have under the EU General Data Protection Regulation (GDPR) and equivalent laws.
Last updated: 26 June 2026
Localty (“Localty”, “we”, “us”, or “our”) operates the Localty platform, websites, and related services (the “Platform”). For the purposes of the GDPR, the data controller is [Company Legal Name], registered at [Registered Address], company number [Company Registration Number].
For any privacy-related question you can reach our Data Protection contact at [privacy@localty.example].
We collect the following categories of personal data:
We rely on the following legal bases under Article 6 GDPR:
Localty uses a proprietary Multi-Level Verification System (MLVS) to build trust between travelers and local partners. It relies on several layers, each of which may process personal or business data:
Verification results are displayed publicly through the Experience Profile and the Localty Focus Badge, while underlying documents and personal contact details are kept confidential and accessed only by authorised personnel.
When you participate in the rewards program we process the points you earn and redeem, your tier status, and related transaction history. This data is used solely to operate the program and is retained for as long as your account is active or as required to resolve disputes. Full program rules are set out in our Terms & Conditions.
Because Localty operates across borders, your data may be transferred outside your country or the European Economic Area. Where this happens, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses or an adequacy decision.
We keep personal data only for as long as necessary for the purposes described above, then delete or anonymize it. Account data is retained while your account is active; certain records (e.g. transactions) may be retained longer to meet legal obligations.
Subject to applicable law, you have the right to:
To exercise any of these rights, contact us at [privacy@localty.example]. We respond within the timeframes required by law.
We use technical and organizational measures — including encryption in transit, access controls, and role-based permissions — to protect your data. No system is perfectly secure, but we work continuously to safeguard your information.
The Platform is not directed at children under 16. We do not knowingly collect data from children. If you believe a child has provided us data, contact us and we will delete it.
We may update this policy from time to time. Material changes will be communicated through the Platform or by email. The “Last updated” date reflects the latest version.
Data Controller: [Company Legal Name]
Address: [Registered Address]
Privacy contact: [privacy@localty.example]
General contact: [hello@localty.example]