跳至主要内容
简体中文

Buyer's Guide · 2026

How to Choose a Guest WiFi Platform

Eight evaluation criteria, a 24-point feature checklist, 16 questions to ask vendors, and the red flags that separate serious platforms from rebranded hotspot portals.

8 criteria24-point checklist16 vendor questionsRed flags listFAQ

Definition

What Is a Guest WiFi Platform?

A guest WiFi platform provides internet access to visitors at a physical venue — hotel guests, retail shoppers, stadium fans, hospital patients — through a branded login experience. But the category spans a wide range: from simple click-through portals with no data capture, to full-stack platforms that build first-party visitor profiles, run marketing automation, and feed data into CRM and CDP tools.

Understanding where you sit on that spectrum before you evaluate vendors will save significant time. This guide is written for operators and IT buyers who need to make a considered decision — not just pick the cheapest option or the vendor their integrator recommends.

The spectrum: portal to platform

Basic portal

  • Click-through or email-only login
  • Branded splash page
  • Limited or no analytics
  • No CRM integration

Mid-tier platform

  • Multi-field registration + consent
  • Visit analytics and dwell data
  • Basic email automation
  • One or two CRM connectors

Full-stack platform

  • Profile enrichment across visits
  • Zone-level presence analytics
  • Multi-channel automation
  • Staff + multi-tenant WiFi
  • ISO 27001, enterprise SLA

Evaluation framework

8 Criteria to Evaluate Every Vendor Against

01

Deployment model and hardware compatibility

Most platforms require your WiFi infrastructure to support RADIUS or captive portal redirection. Before you evaluate anything else, confirm the platform works with your existing access points — Cisco Meraki, Aruba, Ruckus, Juniper Mist, Ubiquiti, Cambium, Extreme. Replacing hardware to accommodate a software platform is a red flag; leading platforms are hardware-agnostic.

02

Guest WiFi scope: captive portal to data capture

A basic captive portal gives guests internet access through a branded login page. A full guest WiFi platform goes further: custom registration fields, consent capture, visitor profile building, and CRM sync. Define upfront whether you need a portal or a data asset — the pricing and product tiers differ significantly.

03

Staff and operational WiFi

Guest WiFi and staff WiFi are different security problems. Guest networks should be isolated from corporate systems; staff devices need authenticated access (802.1X, SAML/SSO). If your brief includes both — as it should for most venues — confirm the platform handles both with proper VLAN segmentation, not just a separate SSID on the same network.

04

Analytics and presence intelligence

Beyond registration counts, look for: dwell time by zone, visit frequency cohorts, multi-site comparison, peak occupancy, and footfall heatmaps. These are the analytics that inform staff scheduling, space allocation, and investment decisions. Basic platforms report registrations; good platforms report behaviour.

05

Marketing automation and CRM integration

If capturing visitor data is the goal, activating it should be built in — not a separate tool. Look for: WiFi-triggered email/SMS workflows, CRM connectors (Salesforce, HubSpot, Klaviyo, Mailchimp), audience export to paid channels (Meta, Google), and segmentation based on behavioural signals like recency and frequency.

06

GDPR and data compliance

Guest WiFi data collection requires explicit, informed consent under UK/EU GDPR. Evaluate: does the platform capture granular opt-ins (email / SMS / push separately)? Does it record consent with a timestamp and audit trail? Does it honour unsubscribes automatically across connected platforms? Can you run subject access requests from the admin console?

07

Security certifications

For enterprise, public sector, or regulated-industry buyers, certifications matter: ISO 27001, Cyber Essentials Plus, SOC 2 Type II. Ask vendors for their current certification scope and renewal dates — not just logos on a marketing page. For NHS, local government, or financial services deployments, confirm the platform has handled similar regulated environments.

08

Multi-site management and scalability

If you're evaluating for more than one venue, test the multi-site experience: can you manage policies, portals, and analytics centrally? Can you give site managers limited access without exposing group-level data? Can the platform handle 10x your current estate without an architectural change? Pilots are cheap; migrations are expensive.

Due diligence

10 Red Flags to Watch For

These signals appear in demos and proposals and are easy to miss until you're 18 months into a contract.

  • Requires hardware replacement rather than integrating with existing APs
  • No native CRM connectors — "use Zapier" for core integrations
  • Consent captured as a single checkbox for all marketing channels
  • No granular multi-site access controls (everyone sees everything or nothing)
  • Analytics limited to registration counts and session duration
  • No ISO 27001 or equivalent certification for enterprise/public sector
  • Pricing only available after a demo — no published tiers or calculator
  • No self-service portal — every config change requires a support ticket
  • Data stored outside your required residency region with no option to change
  • No documented unsubscribe propagation to connected email platforms

Vendor interrogation

16 Questions to Ask Every Vendor

Technical

  1. Which AP vendors do you natively support, and how is that tested?
  2. How do you handle VLAN segmentation between guest and staff networks?
  3. What is your uptime SLA and how is it enforced contractually?
  4. How do you handle firmware updates on our existing AP infrastructure?

Data & compliance

  1. How is consent captured and stored, and can we audit it per visitor?
  2. What is your data retention policy and can we configure it per region?
  3. How do you propagate unsubscribes to connected marketing platforms?
  4. Have you deployed in NHS, local government, or financial services?

Product & roadmap

  1. What is on your 12-month product roadmap, and how are customers involved?
  2. How do you handle breaking changes to integrations when third parties update their APIs?
  3. What does professional services cover, and what is typically billed separately?
  4. Can we see a reference customer in our vertical or of similar scale?

Commercial

  1. Is pricing per location, per AP, per registration, or per seat?
  2. What happens to our data if we cancel — how is it returned?
  3. What notice period is required and are there exit fees?
  4. Is there a free tier or pilot option before a full commercial commitment?

Feature checklist

24-Point Pre-Shortlist Checklist

Infrastructure

  • Hardware compatibility confirmed with current AP vendor
  • RADIUS or captive portal redirect supported
  • VLAN segmentation between guest and staff
  • Cloud-managed or on-premise deployment option confirmed

Data capture

  • Custom registration fields supported
  • Granular consent (email / SMS / push separately)
  • Consent audit trail with timestamp and IP
  • Subject access request tooling in admin console

Analytics

  • Zone-level dwell time reporting
  • Visit frequency and recency cohorts
  • Multi-site comparison dashboard
  • Footfall heatmaps or occupancy by area

Marketing

  • WiFi-triggered email automation
  • CRM native connector (Salesforce, HubSpot, or Klaviyo)
  • Audience export to Meta / Google
  • Unsubscribe propagation to connected platforms

Security

  • ISO 27001 or equivalent certification
  • Penetration testing completed (ask for date)
  • Data residency in required region
  • Role-based access controls for multi-site

Commercial

  • Published pricing or transparent calculator
  • SLA with credits defined in contract
  • Data portability and exit terms documented
  • Reference customer in same vertical provided

Platform comparisons

See How Purple Compares

Factual, non-disparaging side-by-sides against the platforms most commonly shortlisted alongside Purple.

Purple vs Stampede

UK hospitality and retail WiFi marketing

Read comparison →

Purple vs Aislelabs

WiFi analytics for retail and airports

Read comparison →

Purple vs Cloud4Wi

Enterprise captive portal and analytics

Read comparison →

Purple vs Spotipo

SMB WiFi marketing with prosumer router coverage

Read comparison →

Purple vs Cloudi-Fi

Cloud RADIUS and passwordless WiFi

Read comparison →

Purple vs IronWiFi

Cloud RADIUS and 802.1X authentication

Read comparison →

Guest WiFi Platform Buying Guide: FAQ

How much does a guest WiFi platform typically cost?

Pricing models vary: per-location/month (most common for SMB), per-AP/month, per-registration, or enterprise contract. Expect £50–£200/month for a single-site SMB deployment on a mid-tier platform; enterprise multi-site contracts are typically quoted based on AP count and feature scope. Purple publishes a pricing calculator at purple.ai/pricing — and offers a free tier (Purple Connect) for single-site basics.

Do I need to replace my existing access points to use a guest WiFi platform?

No — any reputable platform should be hardware-agnostic. Most work via RADIUS integration or a captive portal redirect, both of which are supported by Cisco Meraki, Aruba, Ruckus, Juniper Mist, Ubiquiti UniFi, Cambium, and other enterprise-grade APs. If a vendor requires you to buy their hardware, treat that as a significant lock-in risk.

What is the difference between a captive portal and a full guest WiFi platform?

A captive portal intercepts the WiFi connection and shows a branded page — it may collect an email address or just require a click-through. A full guest WiFi platform adds: persistent visitor profiles, behavioural analytics (dwell, frequency), marketing automation (triggered emails/SMS), CRM sync, and compliance tooling (GDPR audit trails, unsubscribe management). The portal is the front door; the platform is what happens with the data afterwards.

How long does implementation take?

For a standard single-site deployment on existing compatible APs: one to two weeks. Multi-site enterprise rollouts with custom portal design, CRM integration, and staff WiFi configuration typically take four to eight weeks. Ask vendors for a reference implementation timeline for a deployment of similar scale and complexity to yours.

Is collecting data via guest WiFi legal under GDPR?

Yes, provided consent is obtained correctly. UK GDPR requires that marketing consent is freely given, specific, informed, and unambiguous — a single pre-ticked checkbox doesn't qualify. A compliant WiFi registration flow presents separate opt-ins for email, SMS, and any other channel, records the consent with an audit trail, and provides an easy unsubscribe mechanism. Both the venue operator and the platform vendor have responsibilities here — confirm both are covered in your contract.

What security certifications should I look for?

For enterprise buyers: ISO 27001 (information security management system) is the gold standard. Cyber Essentials Plus is important for UK public sector. SOC 2 Type II is relevant for US or internationally-audited vendors. For NHS or government deployments, ask specifically about DSP Toolkit alignment and whether the vendor has prior NHS reference sites. Certifications should be current — ask for the scope document and renewal date, not just a logo.

Can I use guest WiFi data for paid advertising?

Yes. Most full-featured platforms allow you to export hashed email audiences to Meta Custom Audiences, Google Customer Match, and LinkedIn Matched Audiences. Because this is first-party, consented data rather than a third-party segment, match rates are typically 60–80% — significantly higher than purchased lists. Confirm the platform supports audience export in your contract and that your consent language covers use for paid channel targeting.

Should I buy a dedicated analytics platform or a combined guest WiFi and analytics platform?

This depends on whether your primary outcome is intelligence or activation. If you need deep footfall path analysis, predictive occupancy, and operational benchmarking (common for airports, shopping centres, and large retail chains), a dedicated analytics platform like Aislelabs may go deeper. If your priority is capturing an owned audience, driving marketing automation, and building a first-party data asset — alongside analytics — a combined platform like Purple delivers both without managing two vendor relationships.

Ready to Shortlist?

Purple covers every tier — free for single-site basics, through to enterprise deployments across hundreds of sites. See the platform before you commit.

Book a demo
Compare all platforms