Trust & Security

Security built for hotel sales conversations

TAVA is designed to help hotels capture and route inbound sales inquiries while protecting customer information through documented security practices, limited access controls, trusted infrastructure, and clear data retention procedures.

Security Overview

Built around secure lead capture and routing.

TAVA is designed around secure handling of hotel sales inquiries, event leads, call summaries, recordings, and transcripts. Our practices emphasize limited collection, documented access, and clear handling procedures.

Simple data flow

01 · Prospect Call

A prospect calls the hotel with an event, group, or sales inquiry.

02 · AI Qualification

TAVA captures key requirements and conversation context.

03 · Sales Routing

The appropriate hotel sales contact receives the inquiry summary and next steps.

Data We Process

We may process

  • ✓ Guest or prospect name
  • ✓ Phone number
  • ✓ Email address
  • ✓ Event or meeting details
  • ✓ Call recordings and transcripts
  • ✓ Call routing and lead status metadata

We do not process

  • − Credit card information / PCI data
  • − Protected health information / PHI
  • − Payment transactions
  • − Sensitive guest account credentials

Access Controls

  • ✓ Access limited to authorized TAVA personnel
  • ✓ Role-based customer portal permissions
  • ✓ Unique user accounts
  • ✓ Multi-factor authentication where supported
  • ✓ User access changes handled upon customer request
  • ✓ Periodic access reviews

Data Retention

  • ✓ Call recordings and transcripts are retained for up to 90 days
  • ✓ Reporting metadata may be retained for up to 1 year
  • ✓ Customer offboarding procedures are documented
  • ✓ Data deletion and access removal processes are in place

Limited Internal Access

Only authorized TAVA personnel may access customer data for support, troubleshooting, implementation, and operational purposes. Access is limited to personnel with a business need and reviewed periodically.

Data Ownership

Customers retain ownership of their data. Upon termination, TAVA follows documented offboarding procedures to remove access, disable workflows, and handle retained data according to the applicable retention schedule.

Built on Trusted Infrastructure

Established providers support the TAVA service.

ProviderPurpose
Microsoft 365Email, collaboration, and internal documentation
TwilioTelephony and call routing
Retell AIVoice AI processing
OpenAIAI language processing
Make.comWorkflow automation
SoftrCustomer portal and operational data

TAVA uses established infrastructure providers that maintain their own security and compliance programs.

Incident Response

TAVA maintains internal procedures for identifying, investigating, containing, and communicating security incidents. Customer notification procedures are documented.

Business Continuity & Failover

TAVA monitors critical service providers and maintains procedures for handling service interruptions, including voice AI, telephony, workflow automation, and customer portal availability.

Security Documentation Available Upon Request

Supporting customer vendor reviews.

For customer vendor reviews, TAVA can provide additional security documentation upon request.

Request Security Documentation

Or email support@trytava.ai

  • ✓ Security Overview
  • ✓ Architecture Diagram
  • ✓ Subprocessor Inventory
  • ✓ Data Retention Policy
  • ✓ Access Control Policy
  • ✓ Incident Response Summary
  • ✓ Customer Offboarding Policy