Privacy Policy

Effective date: June 1, 2026.

ampliphi rms is a business-to-business software-as-a-service (SaaS) provider for hotels, resorts, inns, and hotel groups. We primarily handle business information from hotel operators, with limited personal information from the individual staff members who use our products and the prospects and customers who engage with our marketing site. This Policy explains what we collect, why, how we share it with our service providers, and the rights you have over your information.

1. Scope

This Privacy Policy applies to personal information we collect from or about:

• Visitors to getampliphi.com and any subdomains we operate
• Prospects who submit demo requests, ROI calculator inputs, contact forms, or other sales inquiries
• Authorized Users of the ampliphi rms platform (typically revenue managers, general managers, and other hotel staff)
• Recipients of our marketing emails, newsletters, and event invitations
• Customer Success and Support contacts who communicate with our team

This Policy does not cover information practices of third-party websites or services that may link to or integrate with our products. It also does not cover information our hotel customers collect from their own guests through their property management, booking, or marketing systems — those practices are governed by the hotel’s own privacy policies.

2. Information We Collect

2.1 Information You Provide to Us

We collect information you submit directly when you fill out a form, contact us, or use the ampliphi rms platform. This typically includes:

• Contact details — name, email address, phone number, job title, and the name of the hotel or company you represent
• Inquiry content — the message you send, the product you ask about, demo preferences, ROI calculator inputs (room count, ADR, occupancy, market)
• Account information — for ampliphi rms platform users, your username, hashed password, hotel/property assignment, role, and authentication tokens
• Configuration and preference data — the pricing rules, competitive set, market parameters, and integrations you configure within the platform
• Billing details — payment instrument metadata and billing contact (collected by our payment processor on our behalf; we do not store full payment card numbers)
• Communications — the content of emails, support tickets, and calls with our sales, success, and support teams

2.2 Information We Collect Automatically

When you visit our website or use our platform, we and our service providers collect:

• Device and connection data — IP address, browser type and version, operating system, device identifiers, language preference, and time-zone
• Usage data — pages viewed, referring URLs, search terms, buttons clicked, time spent on pages, scroll depth, session recordings (anonymized where supported), and feature usage within the platform
• Cookies and similar technologies — small files placed on your device that record preferences, authenticate sessions, and support analytics. See Section 4 (“Cookies and Similar Technologies”) for details
• Log files — server logs that record platform activity for security, abuse detection, troubleshooting, and audit purposes

2.3 Information We Receive From Third Parties

We may also receive information from:

• Hotel property management systems (PMS), channel managers, and booking engines that you connect to ampliphi rms — primarily rate, inventory, booking pace, and occupancy data (typically aggregate business data, not guest personal information)
• Rate-shopping and market intelligence providers that supply competitor rate and event data
• Marketing and advertising partners who provide enriched contact information about prospects (e.g., company size, industry, hotel chain affiliation)
• Publicly available sources such as hotel review sites, business directories, and corporate registries

3. How We Use Your Information

We use the information described above for the following purposes:

• Provide and operate the platform — deliver the ampliphi rms revenue management software, authenticate users, process pricing recommendations, sync with connected PMS systems, and generate reports
• Respond to inquiries — reply to demo requests, contact forms, and support tickets
• Customer success and account management — onboard new customers, train Authorized Users, monitor adoption and outcomes, and provide strategic recommendations
• Marketing — send newsletters, product updates, event invitations, and other promotional materials about ampliphi rms; tailor marketing content based on observed interest. You can opt out at any time (see Section 10)
• Improve our products — analyze usage patterns, run product experiments, and develop new features (in most cases using aggregated or de-identified data)
• Security and abuse prevention — detect, prevent, and respond to fraud, unauthorized access, service disruptions, and other harmful activity
• Billing and finance — invoice customers, process payments, and maintain financial records
• Legal and regulatory — comply with applicable laws, regulations, and lawful requests from public authorities

4. Cookies and Similar Technologies

We use cookies, web beacons, pixels, session-replay scripts, and similar technologies on our marketing site and platform. These technologies serve four broad purposes:

• Strictly necessary — needed to operate the site or platform (e.g., authentication tokens, load balancing, security)
• Preferences — remember choices like language or which content you have already seen
• Analytics — measure traffic, identify popular content, and understand how visitors interact with our pages so we can improve them
• Marketing — deliver and measure advertising, attribute conversions, and identify return visitors to our marketing campaigns

You can control cookies through your browser settings (most browsers let you block or delete cookies). Blocking strictly necessary cookies may prevent parts of the site or platform from working. Browser-level “Do Not Track” signals and Global Privacy Control (GPC) signals are honored where required by applicable law.

5. How We Share Your Information

We do not sell personal information. We share information only as described in this Section.

5.1 Service Providers

We share information with third-party vendors that provide services on our behalf, including hosting, analytics, CRM, email delivery, payment processing, customer support tooling, and product instrumentation. These providers are contractually limited to using information only to deliver the services we engage them for. A non-exhaustive list of current categories is in Section 6.

5.2 Affiliates and Parent Company

ampliphi rms is operated by Aspire USA LLC, a Delaware limited liability company, whose parent is Valsoft Corporation Inc., a Quebec corporation. We may share information with our parent and affiliated entities for the purposes described in this Policy — including consolidated security, legal, finance, and administrative functions — subject to confidentiality and data-protection commitments equivalent to those in this Policy.

5.3 Hotel Customers and Authorized Users

When you use the platform as an Authorized User of a hotel customer, your activity is visible to that customer (your employer) and other Authorized Users designated by that customer to administer the account. Pricing decisions, overrides, and configuration changes you make are recorded and accessible to your hotel’s administrators.

5.4 Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of company assets, personal information may be transferred as part of that transaction, subject to commercially reasonable confidentiality protections and (where required) notice to affected individuals.

5.5 Legal Compliance and Protection

We may disclose information when we believe in good faith that disclosure is necessary to (i) comply with applicable laws, regulations, legal process, or governmental requests; (ii) enforce our agreements, including the Master Services Agreement and acceptable-use policies; (iii) protect the rights, property, or safety of ampliphi rms, our customers, our users, or others; or (iv) investigate, prevent, or address suspected fraud, security, or technical issues.

6. Third-Party Services and Subprocessors

We rely on a small set of well-known service providers. The categories below describe the role each provider plays. The specific provider names and locations may change over time; current details are available on request from info@getampliphi.com.

7. Data Retention

We retain personal information for as long as necessary for the purposes outlined in this Policy:

• Customer account data is retained for the duration of the customer relationship plus a reasonable period afterward to allow account recovery, dispute resolution, and audit
• Marketing lead data is retained while the prospect remains engaged and for a reasonable follow-up window thereafter; if you unsubscribe, we retain a minimum record to honor your opt-out request
• Billing and financial records are retained as required by tax, accounting, and corporate-records laws
• Security logs and audit trails are retained for the period necessary to detect and respond to incidents and to comply with legal obligations
• Aggregated or de-identified data may be retained indefinitely for analytics and product improvement

Upon account closure or a valid deletion request, we delete or de-identify personal information no longer needed for these purposes, except where retention is required by law.

8. Data Security

ampliphi rms maintains an information security program with administrative, technical, and physical safeguards designed to protect personal information against accidental or unlawful loss, alteration, disclosure, or access. Safeguards include access controls, encryption in transit, encryption at rest for sensitive datastores, environment isolation, code review, vulnerability management, vendor due diligence, and security-incident response procedures.

Our information security program is aligned, where applicable to the services we provide, with PCI DSS standards, card-network rules and regulations, and Financial Services Industry best practices. A copy of the InnQuest Attestation of Compliance (AOC) is available on request.

No method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we take reasonable steps to protect your information and notify you and relevant authorities of material security incidents as required by applicable law.

9. International Data Transfers

ampliphi rms is headquartered in the United States (Clearwater, Florida) with corporate parent operations in Canada (Montreal, Quebec). Personal information we collect may be processed, stored, and accessed in the United States, Canada, and other countries where our service providers operate. These countries may have data protection laws that differ from those in your country of residence.

Where required by applicable law (including for transfers from the European Economic Area, the United Kingdom, or Switzerland), we rely on lawful transfer mechanisms such as the European Commission’s Standard Contractual Clauses, the UK International Data Transfer Addendum, or other recognized safeguards to protect personal information when it leaves your home jurisdiction.

10. Your Rights and Choices

10.1 Marketing Opt-Out

You can opt out of marketing emails at any time by clicking the “unsubscribe” link in any marketing email or by contacting info@getampliphi.com. You may still receive non-marketing communications such as security alerts, support replies, and account/billing notices.

10.2 Access, Correction, Deletion, Portability

Subject to verification and applicable law, you may request that we:

• Confirm whether we process personal information about you
• Provide a copy of the personal information we hold about you
• Correct inaccurate or incomplete information
• Delete personal information that is no longer necessary for the purposes collected
• Receive a portable, machine-readable copy of information you have provided to us, where required by law
• Restrict or object to certain processing, where required by law

To exercise these rights, contact info@getampliphi.com. We may need to verify your identity before fulfilling a request. We will respond within the timeframe required by applicable law.

If you are an Authorized User of a hotel customer’s ampliphi rms account, please direct your request to your hotel administrator first; we will assist the hotel in responding where appropriate.

10.3 Region-Specific Rights

European Economic Area, United Kingdom, Switzerland. If you are located in one of these regions, you have the rights described above under the GDPR or UK GDPR, plus the right to lodge a complaint with your local data protection authority. The lawful bases on which we process personal information include performance of a contract, legitimate interests (e.g., securing our services, marketing our products to business contacts), compliance with legal obligations, and consent where required.

California. California residents have the right to know what categories of personal information we collect, the sources and purposes of collection, the categories of third parties with whom we share it, and the right to request access, deletion, correction, and to opt out of any “sale” or “sharing” of personal information as defined under the California Consumer Privacy Act (CCPA), as amended. We do not sell personal information for money. We do not knowingly process the personal information of children under 16. You may also designate an authorized agent to submit requests on your behalf.

Other U.S. states. Where state laws (such as those of Colorado, Connecticut, Virginia, Utah, and others) provide similar rights, we honor them on comparable terms.

Canada. If you are located in Canada, you may access and correct your personal information and withdraw consent (subject to legal and contractual limitations) by contacting us at the address above.

11. Children’s Privacy

The ampliphi rms website and platform are intended for business users and are not directed to children. We do not knowingly collect personal information from anyone under the age of 16. If you believe we have collected personal information from a child, please contact info@getampliphi.com and we will take appropriate steps to delete it.

12. Third-Party Links and Integrations

Our marketing site and platform may contain links to, or integrations with, third-party websites and services (for example, PMS partners, channel managers, social-media platforms, and external blog or news sources). We do not control and are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before sharing personal information with them.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, our products, or applicable law. When we make material changes, we will update the “Effective date” above and, where required by law, notify you by email or through the platform. We encourage you to review this Policy periodically.

14. Contact Us

For questions, requests, or complaints about this Policy or our privacy practices, please contact:

ampliphi rms (Aspire USA LLC)
19321 US Hwy 19 N, Suite 607
Clearwater, FL 33764, USA
Email: info@getampliphi.com

Valsoft Corporation Inc. (parent company)
7405 TransCanada Highway, Suite 100
H4T 1Z2 Montreal, Quebec, Canada

For platform contractual terms, see the Master Services Agreement.