Security Policy

Effective Date: 01.01.2026

1. Scope and Purpose

This Security Policy governs the protection of information and systems operated by mystays.asia (“the Platform”). It sets forth the security measures, responsibilities, and procedures for preventing unauthorized access, disclosure, alteration, or destruction of data.

2. Security Controls

The Platform employs appropriate technical and organizational measures, including but not limited to:

• Encryption of data in transit using industry-standard protocols (e.g., TLS/SSL).

• Secure storage of data using encrypted databases and access controls.

• Network security controls, including firewalls and intrusion detection systems.

• Regular security assessments, vulnerability scans, and penetration testing.

• Access control based on least-privilege principles.

• Incident detection and response mechanisms.

3. User Obligations

Users are required to:

• Maintain the confidentiality of account credentials.

• Use strong, unique passwords and enable any available security features.

• Immediately notify the Platform of any suspected unauthorized access.

• Refrain from sharing account credentials or allowing unauthorized access.

Failure to comply may result in account suspension or termination.

4. Incident Response

Upon detection of a security incident, the Platform will:

• Immediately contain and mitigate the incident.

• Conduct an investigation to determine scope and impact.

• Notify affected parties in accordance with applicable laws and regulations.

• Implement corrective actions to prevent recurrence.

5. Limitation of Liability

The Platform will use commercially reasonable efforts to secure data; however, it does not warrant that the Platform is immune to security breaches. The Platform shall not be liable for losses arising from unauthorized access due to user negligence.

6. Contact

Security-related inquiries should be directed to:

admin@mystays.asia