Bookablee

Privacy Policy

Last updated: February 21, 2026

Bookablee ("we," "us," or "our") operates the scheduling platform at bookablee.com. This Privacy Policy explains how we collect, use, and protect your information when you use our Service.

This policy applies to account holders who create booking pages ("Users") and visitors who schedule appointments ("Invitees").

1. Information We Collect

Information You Provide

Account holders (Users):

  • Name, email address, and password when you create an account.
  • Profile information such as username, display name, bio, and avatar.
  • Availability preferences, event type configurations, and scheduling settings.
  • Payment information (processed by Stripe — we do not store your full card details).

Visitors who book appointments (Invitees):

  • Name and email address provided when scheduling an appointment.
  • Any additional information collected through custom booking form fields configured by the User.

Information Collected Automatically

  • Log data: IP address, browser type, operating system, referring URLs, pages visited, and timestamps.
  • Device information: Device type, screen resolution, and language preferences.
  • Cookies: We use essential cookies to maintain your session and preferences. See Section 6 for more details.

Information from Third Parties

  • Google Calendar: If you connect your Google Calendar, we access your calendar events to check for scheduling conflicts and create new events for bookings. We only read event times and availability — we do not access event details beyond what is necessary for conflict detection.
  • Google Authentication: If you sign in with Google, we receive your name, email address, and profile picture from Google.
  • Stripe: We receive confirmation of payment status and subscription details from Stripe. We do not receive or store your full payment card information.

2. Google API Services Usage

Bookablee's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

In addition to the other disclosures in this Privacy Policy, we commit to the following with respect to Google user data:

  • We only use Google user data to provide and improve user-facing features of the Service, specifically calendar availability checking and booking event creation.
  • We do not transfer Google user data to third parties except as necessary to provide the Service, with your explicit consent, or as required for security or legal compliance.
  • We do not use Google user data for serving advertisements, including retargeting, personalized, or interest-based advertising.
  • We do not allow humans to read Google user data unless you have given affirmative consent for specific data, it is necessary for security purposes (such as investigating abuse), it is required to comply with applicable law, or the data is aggregated and anonymized for internal operations.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service.
  • Create and manage your account.
  • Process bookings and send appointment confirmation and reminder emails to both Users and Invitees.
  • Sync with your calendar to check availability and create events.
  • Process payments and manage subscriptions.
  • Send service-related communications (account updates, security alerts, billing notices).
  • Detect and prevent fraud, abuse, and security incidents.
  • Comply with legal obligations.

We do not sell your personal information. We do not use your information for advertising purposes.

4. How We Share Your Information

We share your information only in the following circumstances:

  • Between Users and Invitees: When an Invitee books an appointment, their name and email are shared with the User. The User's name and booking page information are visible to Invitees.
  • Service providers: We use third-party services to operate the platform:
    • Supabase — database and authentication
    • Vercel — hosting and deployment
    • Stripe — payment processing
    • Google — calendar integration and authentication
    • Resend — transactional email delivery
    These providers only access your data as needed to perform their services and are bound by their own privacy policies.
  • Legal requirements: We may disclose your information if required by law, legal process, or government request.
  • Business transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

5. Data Retention

  • Account data: We retain your account information for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or legitimate business purposes.
  • Booking data: Booking records are retained for as long as the User's account is active. Invitees may request deletion of their data by contacting us.
  • Log data: Server logs are retained for up to 90 days for security and debugging purposes.

6. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption of data in transit (HTTPS/TLS).
  • Secure authentication and session management.
  • Access controls limiting who can access personal data.
  • Regular security reviews of our infrastructure.

No method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Cookies

We use the following types of cookies:

  • Essential cookies: Required for the Service to function (authentication, session management, security). These cannot be disabled.
  • Preference cookies: Remember your settings such as timezone and display preferences.

We do not use third-party advertising or tracking cookies. You can manage cookies through your browser settings, but disabling essential cookies may prevent the Service from functioning properly.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data. For Users, you can delete your account in your settings. For Invitees, contact us to request deletion.
  • Data portability: Request a copy of your data in a portable format.
  • Objection: Object to certain processing of your data.

To exercise any of these rights, contact us at support@bookablee.com. We will respond within 30 days.

9. International Data Transfers

Our Service is hosted in the United States. If you access the Service from outside the United States, your information may be transferred to and processed in the United States or other countries where our service providers operate. By using the Service, you consent to this transfer.

10. Children's Privacy

The Service is not directed to children under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 16, we will take steps to delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by updating the "Last updated" date at the top of this page. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or how we handle your data, please contact us at support@bookablee.com.