DreamStay Logo
Safety

Your safety is our priority

DreamStay is built with security at every layer — from payment processing and data protection to booking verification and account safety. Here is everything you need to know.

Platform safety

How DreamStay protects you at every step of the booking process.

Payment Security

All payments are processed by Stripe — a PCI DSS Level 1 certified provider. DreamStay never sees or stores your full card details.

  • Stripe PCI DSS Level 1 compliance
  • 256-bit TLS encryption for all transactions
  • 3D Secure (3DS) authentication where supported
  • Real-time fraud detection by Stripe Radar
  • Instant payment failure notifications

Data Protection

Your personal data is protected under PIPEDA (Canada's federal privacy law). We collect only what is necessary and never sell your information.

  • PIPEDA compliant data handling
  • Passwords hashed with bcrypt — never stored in plain text
  • HTTPS encryption on all pages
  • Access controls limiting who can view your data
  • Right to access and delete your data on request

Account Security

Your DreamStay account is protected by industry-standard authentication. We will never ask for your password by email or phone.

  • Secure password hashing (bcrypt, 12 rounds)
  • Session tokens expire automatically
  • CSRF protection on all forms
  • Login activity visible in your account
  • We will never ask for your password outside the login page

Booking Safety

Every booking goes through a prebook verification step that confirms the rate and availability with the hotel supplier before your card is charged.

  • Prebook verification confirms availability before payment
  • Booking confirmation sent by email immediately
  • All bookings accessible in your account dashboard
  • Supplier-backed bookings via RateHawk ETG network
  • Full cancellation management in your dashboard

Fraud awareness

Protect yourself from scams and fraudulent activity targeting travellers.

Phishing emails

DreamStay will only send emails from @dreamstayhotels.com or @resend.dev. If you receive an email asking for your password or payment details from any other address, do not click any links and report it to support@dreamstayhotels.com.

Unsolicited phone calls

DreamStay does not currently offer phone support. If someone calls claiming to be DreamStay and asks for payment details or your account password, this is a scam. Hang up and contact us at support@dreamstayhotels.com.

Requests for wire transfers

DreamStay only accepts payment via credit and debit card through Stripe. We will never ask you to pay via wire transfer, cryptocurrency, gift cards, or direct bank transfer. Any such request is fraudulent.

Fake websites

Only book through dreamstayhotels.com. Check the URL carefully — fraudulent sites may use similar-looking domain names. Always look for the padlock icon and HTTPS in your browser's address bar.

Report suspicious activity

If you receive a suspicious message claiming to be from DreamStay, forward it to support@dreamstayhotels.com immediately. We take all fraud reports seriously and will investigate promptly.

Travel safety tips

Check your government's travel advisory for your destination before booking

Purchase comprehensive travel insurance, especially for non-refundable bookings

Save your booking confirmation and hotel contact details offline

Share your travel itinerary with a trusted contact at home

Keep your passport and travel documents in the hotel safe

Be aware of local laws, customs, and emergency numbers at your destination

Register with your country's embassy or consulate for longer trips

Keep a copy of your travel insurance documents and emergency contacts accessible

Official travel safety resources

Check official government advisories before you travel. DreamStay recommends consulting these resources for every international trip.

Government of Canada — Travel Advisories

Official Canadian travel advisories and safety information for all countries.

https://travel.gc.ca

U.S. Department of State — Travel

Travel advisories, passport information, and emergency contacts for Americans abroad.

https://travel.state.gov

UK Foreign, Commonwealth & Development Office

UK government travel advice by destination.

https://www.gov.uk/foreign-travel-advice

World Health Organization (WHO) — Travel

International health recommendations and vaccination requirements for travellers.

https://www.who.int/travel-advice

Found a security issue?

If you discover a security vulnerability on DreamStay or suspect your account has been compromised, please contact us immediately. We take all security reports seriously and will respond within 2 hours.

Report an issuesupport@dreamstayhotels.com