Do you accept dogs and cats?

Yes, we accept both dogs and cats. We have separate, specialized areas for each species to ensure their peace of mind and safety.

What are your opening hours?

We are open Monday through Saturday from 9:00 AM to 6:00 PM. On Sundays and holidays we are closed (only open for current customers).

Do you have veterinary service?

Yes, we have 24-hour veterinary supervision to attend to any medical needs that may arise.

Should I bring their own food?

We recommend bringing their own food to avoid stomach issues due to sudden diet changes. If you prefer, we can provide premium food for an additional cost.

What are the requirements for entry?

Pets are not required to be vaccinated, however, vaccination is recommended to owners. It is essential for the pet to have up-to-date internal and external deworming.

Do you offer medication administration?

Yes, we offer professional medication administration for pets that require medical treatment during their stay. Our trained team administers oral, topical, and injectable medications under veterinary supervision.

How much does pet boarding cost?

Dog boarding starts from $286 MXN per night, cat boarding $286 MXN per night (any size), and daycare from $200 MXN per day. Prices include IVA and ISH taxes. We offer discounted packages for extended stays.

Do you offer pet transport?

Yes, we offer a safe and comfortable TaxiPet door-to-door pet transport service in Aguascalientes and surrounding areas. We also provide long-distance transport and airport service.

Privacy Policy

Version 3.0
Last Updated: January 13, 2026

This Privacy Policy explains how Mascotas Madagascar collects, uses, and protects your personal information in accordance with the Federal Law on Protection of Personal Data Held by Private Parties (LFPDPPP 2025). We are committed to transparency and lawful processing.

1. Data Controller

Madagascar Pet Hotel AGS, located at Teniente Juan de la Barrera 503, Colonia Héroes, Aguascalientes, Mexico, is the Data Controller responsible for processing your personal data in accordance with LFPDPPP.

Madagascar Pet Hotel AGS
Teniente Juan de la Barrera 503, Colonia Héroes, Aguascalientes, Ags., México
Email: team@madagascarhotelags.com
Phone: +52 449 448 5486

2. Legal Basis for Processing

We process your personal data based on your consent (provided when you make a booking), contractual necessity (to deliver the pet care services you request), legitimate interests (for security and fraud prevention), and legal obligations (for tax and regulatory compliance).

3. Data We Collect

We collect the following information when you use our services:

Information You Provide

Your name and contact details (email, phone, address)
Pet information including name, species, breed, age, and weight

Information Collected Automatically

Device and browser information for security and fraud prevention
Session data and usage patterns to improve our services (only with explicit consent)
Network and interaction data for diagnostic and security routing purposes

4. How We Use Your Data

We use the personal data you provide for the following purposes:

For Your Booking

Process and manage your pet's boarding reservation
Send booking confirmations and care updates
Process payments and issue invoices

For Security & Operations

Protect against unauthorized access and fraud
Maintain secure website sessions
Improve our services using usage data (with explicit consent)
Route traffic through managed proxies for performance and security delivery

For Legal Compliance

Meet tax reporting and regulatory requirements

By submitting your booking and accepting our Terms, you consent to these uses as described in this Privacy Notice.

5. Data Processors & Service Providers

We use the following third-party processors to provide our services. We have Data Processing Agreements (DPA) with each to ensure compliance:

Vercel Inc. (Hosting & Edge Functions) - USA/EU
Supabase Inc. (Encrypted Database) - EU (Frankfurt)
Brevo (Transactional Emails) - France
Google Workspace (Business Communication) - USA
Upstash Inc. (Redis Session Management) - USA
Application Analytics & Error Monitoring - US/EU (Sensitive data is scrubbed/masked before processing)
Managed Proxy & Edge Infrastructure - Global

Data is primarily processed in the US and EU, protected by standard contractual clauses and encryption.

By using this service, you acknowledge and consent that your data may be processed on secure servers located outside of Mexico (specifically US and EU) for the sole purpose of service delivery, protected by standard contractual clauses.

Domestic (Mexico)

Authorized Facility Staff (Care purposes only)
Veterinary Partners (Emergency only)
SAT / Fiscal Authorities (Invoicing)

6. Data Retention

We retain your data only as long as necessary:

Booking records: 5 years (Fiscal code / SAT)
Security logs: 6 months (Fraud prevention)
Consent Receipts: 3 years (Proof of consent)
ARCO records: 3 years (Legal compliance)

Expired data is securely deleted or effectively anonymized.

7. Your Rights (ARCO) & Revocation

Under LFPDPPP, you have rights to Access, Rectify, Cancel, and Oppose processing, plus the Right to Revoke consent at any time.

Access (Acceso): Request a copy of your personal data.
Rectification (Rectificación): Correct inaccurate or incomplete data.
Cancellation (Cancelación): Request deletion (blocked period applies before final erasure).
Opposition (Oposición): Object to processing for specific purposes (e.g., analytics).

Procedure

Submit request via our automated ARCO Portal or email team@madagascarhotelags.com
For Revocation: You may click 'Unsubscribe' in emails or use the 'Revoke Consent' option.
We acknowledge within 5 days and resolve within 20 days.

Submit ARCO Request

We maintain an immutable ledger of all consent and revocation events.

8. Cookies & Telemetry

We adhere to a 'Privacy First' architecture:

Strictly Essential: Session & Security cookies (No consent required).
Analytics/Telemetry: DISABLED by default. Enabled only after your explicit consent via our Banner.

You can withdraw analytics consent at any time by clearing your browser cookies.

9. Security Measures

We employ a Defense-in-Depth strategy including:

Encryption: TLS 1.3 for data in transit and AES-256 for database storage (managed by Supabase).
Access Control: Strict Row-Level Security (RLS) and bcrypt hashing for credentials.
Active Defense: Automated honeypots and rate-limiting (Upstash Redis) to block brute-force attacks.

As we utilize secure third-party cloud infrastructure (Vercel, Supabase), physical server security is managed by these providers under their respective SOC2 compliance certifications.

All staff with data access are bound by confidentiality obligations. Admin panel access is logged and monitored for security purposes.

No system is 100% secure. We continuously improve our security posture.

10. Breach Notification

In compliance with the LFPDPPP, in the event of a confirmed security breach that significantly compromises your personal or financial rights, we will:

Notify You: Via email within 72 hours of confirmation.
Report: To the relevant authorities (INAI) if legally required.
Remediate: Immediately revoke compromised credentials and patch vulnerabilities.

Automated security blocks (e.g., failed login attempts) are considered successful defenses, not breaches, and will not trigger user notifications.

14. Security & Consent Verification

To ensure the integrity of consent and protect against fraud, we collect the following technical data when you interact with our consent mechanisms:

IP address and network provider (ISP) for geographic verification
Device characteristics (screen resolution, hardware specifications, timezone)
Interaction metrics (time spent on page, click coordinates) to verify human action
A persistent consent token stored in your browser to link your consent to future interactions

This data is collected for the sole purpose of:

Verifying the authenticity of your consent declaration
Defending against fraudulent claims of non-consent
Maintaining secure audit trails as required by LFPDPPP Art. 7-9

15. Critical Administrative Auditing

To ensure platform integrity and prevent unauthorized access, we employ strict auditing of all critical system interventions:

High-Fidelity Logging: Executive administrative actions trigger an immediate, immutable audit log capturing IP address, Geolocation, Device Fingerprint, and exact execution timestamp.
Authorized Monitoring: By utilizing administrative accounts, users explicitly consent to this forensic monitoring. This data serves as a definitive legal audit trail to determine accountability in the event of system misuse.
Access Control: These records are strictly confined to the Audit Logs and are accessible only to the Data Controller for security auditing and forensic reconstruction.

11. Privacy Office & Contact

Privacy Office:

ARCO Requests (Formal)
team@madagascarhotelags.com
Response: Max 20 days

Urgent Security Issues
+52 1 449 448 5486

📍 Dog Hotel: Teniente Juan de la Barrera 503, Colonia Héroes 20190, Aguascalientes, México 📍 Cat Hotel: Aurora Boreal 508, Jardines del Sol 202070, Aguascalientes, México

12. Aguascalientes State Note

This policy applies to private data processing by Mascotas Madagascar under Federal Law (LFPDPPP). While we are located in Aguascalientes, we process data as a private entity. If we ever process data on behalf of public state bodies (e.g., government contracts), specific state transparency rules will be communicated separately.

13. Changes to This Policy

We reserve the right to update this policy. The current version is 4.0 (Effective: January 2026).

Minor Changes: Will be posted here with a new date.
Material Changes: Will be notified via email to active users prior to taking effect.

Continued use of the service after an update constitutes acceptance.