BookEaselyBack to home

Legal · Last updated May 1, 2026

Privacy Policy

This Privacy Policy explains how BookEasely ("we", "us") collects, uses and shares personal data when you use our website, mobile app and related services (the "Service"). It applies to Clients, Business Owners and Workers. By using the Service you agree to the practices described here.

1. What we collect

Information you give us

  • Account data: phone number, name, optional email, role (Client, Business Owner, Worker), profile picture.
  • Business data: business name, address, hours, services, prices, photos, worker details.
  • Booking data: the services you book, the businesses and workers involved, the date and time, the status, and any notes you add.
  • Reviews and content: ratings, written reviews, replies and any content you upload.
  • Notification preferences: the channels (in-app, SMS, push) and categories you want to receive.

Information collected automatically

  • Device and log data: IP address, device model, OS version, app version, language, timestamps and crash reports.
  • Push tokens: when you grant push permission on the mobile app, we store the Expo push token to deliver notifications.
  • Cookies and similar technologies: see our Cookie Policy.

2. How we use your data

  • To create and operate your account and authenticate you by phone OTP.
  • To list businesses and let Clients book appointments with them.
  • To send transactional messages (one-time passwords, booking confirmations, reminders, cancellations) by SMS, push and in-app.
  • To prevent fraud, abuse and double-bookings, and to enforce our Terms.
  • To improve the Service through aggregated, non-identifying analytics.
  • To comply with legal obligations and respond to lawful requests.

3. Legal bases (EEA / UK)

If you are in the EEA or the UK, we process your data on these bases:

  • Contract: to provide the Service you signed up for (account, bookings, notifications you opted into).
  • Legitimate interest: to keep the Service secure, prevent fraud and improve features.
  • Consent: for optional marketing messages and any processing for which we ask you explicitly. You may withdraw consent at any time.
  • Legal obligation: when we need to keep records or respond to authorities.

4. How we share data

We share personal data only as described below.

  • With businesses you book: when you book, we share your name, phone number and booking details with the Business Owner and the assigned Worker, so they can deliver the service and contact you.
  • With service providers: we use vendors that process data on our behalf, including:
    • Supabase (database, auth, storage, edge functions).
    • Twilio (SMS delivery, including OTP and booking SMS).
    • Expo Push (mobile push notifications via Apple and Google).
    • Hosting for the website (e.g. Vercel) and the mobile app stores (Apple App Store, Google Play).
    These vendors are bound by contract to use your data only to provide their service to us.
  • For legal reasons: if required by law, regulation or court order, or to protect our rights, users or the public.
  • In a corporate transaction: if BookEasely is acquired, merged or restructured, your data may transfer to the new entity, subject to this Policy.

We do not sell your personal data.

5. International transfers

Our vendors may process data in countries other than yours, including the United States. Where required, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses or equivalent mechanisms.

6. Retention

We keep account data while your account is active. We keep booking and review data for as long as needed to provide the Service, resolve disputes and comply with legal obligations (typically up to seven years for tax/audit purposes). When you delete your account we delete or anonymize your data, except where law requires us to retain it.

7. Your rights

Depending on where you live, you may have the right to access, correct, delete, restrict or object to processing of your data, to data portability, and to lodge a complaint with a supervisory authority. To exercise these rights, contact us at privacy@bookeasely.com. We will respond within the timelines required by applicable law.

California residents may request information about disclosures of personal information for direct-marketing purposes ("Shine the Light") and may exercise their CCPA/CPRA rights through the same email above.

8. Security

We use technical and organisational measures to protect your data, including encryption in transit, hashed credentials, role-based database access and audit logging. No system is perfectly secure, so we cannot guarantee absolute security; please use a strong, unique phone number account and notify us promptly if you suspect unauthorised access.

9. Children

The Service is not directed to children under 16 (or the equivalent minimum age in your country). We do not knowingly collect personal data from children. If you believe a child has provided us with data, contact us and we will delete it.

10. Changes

We may update this Privacy Policy as our Service evolves. When we make material changes we will notify you in the Service or by SMS, and we will update the "Last updated" date above.

11. Contact

BookEasely · privacy@bookeasely.com