Privacy Policy

Bookaboom LLC ("we," "our," or "us") is a scheduling platform for service-based businesses. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our website at bookaboom.app and our related services (collectively, the "Service"). Please read it carefully. If you disagree with its terms, please discontinue use of the Service.

We do not sell your personal information.

We use the information we collect to:

• Create and manage your account and provide the Service.
• Send booking confirmations, reminders (email and SMS), and cancellation notices to you and your clients.
• Process payments and manage subscriptions and add-ons.
• Respond to your support requests and communicate about your account.
• Improve, personalize, and expand the Service.
• Monitor usage for security, fraud prevention, and compliance purposes.
• Send product updates and promotional communications (you may opt out at any time).
• Comply with legal obligations.

We do not sell your personal information. We may share information in these limited circumstances:

• Service providers: we share data with trusted vendors who help operate the Service, including:
  • Supabase — database hosting and authentication
  • Resend — transactional email delivery
  • Stripe — payment processing and subscription billing
  • Twilio — SMS reminder and notification delivery (receives client phone numbers)
  • Zoom — video conference link generation (receives meeting metadata)
  These providers are contractually bound to protect your data and may not use it for their own purposes.
• Your clients: appointment details (time, service, location) are shared with the client who booked the appointment as necessary to provide the Service.
• Business transfers: if Bookaboom is acquired or merges with another company, your information may be transferred as part of that transaction. We will notify you via email before your data becomes subject to a different privacy policy.
• Legal requirements: we may disclose information if required by law, court order, or governmental authority, or to protect the rights, property, or safety of Bookaboom, our users, or others.

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data under the following legal bases:

We retain your account data for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete or anonymize your personal information within 30 days, except where retention is required by law or legitimate business interest (such as resolving disputes or preventing fraud). Transaction records may be retained for up to 7 years for financial and tax compliance purposes.

We use the following types of cookies:

• Essential cookies: required for authentication and core functionality. Cannot be disabled.

Most browsers allow you to control cookies through their settings. Disabling essential cookies will prevent you from signing in.

For website analytics, we use Vercel Analytics — a privacy-preserving analytics tool that does not use cookies, does not collect personally identifiable information, and does not track users across sites. It records only aggregate data such as page views, traffic sources, and device types. No cookie consent is required for this tool, and it is compliant with GDPR and CCPA by design.

We do not use Google Analytics or any other cookie-based analytics service.

We do not currently respond to browser Do Not Track (DNT) signals, as there is no accepted standard for how to respond to them.

When you choose to sign in using Google or Facebook, we receive limited profile information from those providers (name, email, and profile picture) under their respective OAuth consent screens. We do not receive your social media passwords, friend lists, posts, or other social data. Your use of those providers is also subject to their own privacy policies:

• Google Privacy Policy
• Meta Privacy Policy

We implement industry-standard security measures including encryption in transit (TLS), encrypted storage for sensitive data, and access controls. However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

In the event of a data breach that affects your personal information, we will notify you and applicable regulatory authorities as required by applicable law (including within 72 hours for GDPR-covered incidents where feasible).

The Service is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us and we will delete it promptly.

Depending on your location, you may have the right to:

• Access the personal data we hold about you.
• Correct inaccurate data.
• Request deletion of your data.
• Object to or restrict certain processing.
• Data portability (receive a copy of your data in a machine-readable format).
• Withdraw consent at any time where processing is based on consent (this does not affect the lawfulness of processing before withdrawal).

To exercise any of these rights, please email us at support@bookaboom.app. For data deletion instructions, see our Data Deletion page.

If you are located in the EU/EEA or UK, you also have the right to lodge a complaint with your local data protection supervisory authority. A list of EU supervisory authorities is available at edpb.europa.eu.

If you are a California resident, the California Consumer Privacy Act (CCPA) grants you specific rights regarding your personal information.

Categories of personal information we collect:

• Identifiers (name, email address, IP address)
• Commercial information (subscription plan, purchase history)
• Internet or other electronic network activity (aggregate page views and traffic sources via Vercel Analytics — no personal identifiers)
• Professional or employment-related information (business name, services offered)
• Geolocation data (IP-based approximate location only)

Your CCPA rights:

• Right to know: you may request disclosure of the categories and specific pieces of personal information we have collected about you.
• Right to delete: you may request deletion of your personal information, subject to certain exceptions.
• Right to opt-out of sale: we do not sell your personal information. No opt-out is required, but you may contact us to confirm.
• Right to non-discrimination: we will not discriminate against you for exercising any of your CCPA rights.

To submit a CCPA request, email us at support@bookaboom.app with the subject line "California Privacy Request." We will respond within 45 days.

Bookaboom LLC operates in the United States. If you access the Service from outside the US, your information may be transferred to and processed in the US, where data protection laws may differ from those in your country.

For transfers of personal data from the EEA, UK, or Switzerland to the US, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission and, where applicable, our sub-processors' participation in the EU-US Data Privacy Framework. You may request a copy of the applicable transfer mechanism by contacting us at support@bookaboom.app.

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page and, for material changes, notify you via email or a prominent notice in the Service.

If you have questions or concerns about this Privacy Policy, please contact us at: