Last updated: April 2, 2026
BookIT ("we", "us", or "our") operates the BookIT platform at bookitapp.io. This Privacy Policy explains how we collect, use, and protect information about you when you use our services.
When you create an account, we collect your name, email address, and phone number. Business accounts also provide a business name, description, and service details.
We collect details about appointments you book or receive, including dates, times, services selected, and any notes you provide.
Payment processing is handled entirely by Stripe. We do not store your credit card numbers or payment details on our servers. We receive confirmation of successful payments and your Stripe customer ID.
We may collect information about how you interact with our platform, including pages viewed, features used, and actions taken, to improve our services.
If you choose to upload profile photos or a business logo, these are stored securely using Supabase Storage.
We use your information to: provide and operate the BookIT platform; send booking confirmations and notifications via email and SMS; process payments through Stripe; allow businesses and clients to communicate; improve and develop our services; and comply with legal obligations.
By providing your phone number and checking the SMS opt-in checkbox during booking, you expressly consent to receive SMS/text messages from BookIT related to your appointments. These messages may include booking confirmations, appointment reminders, status updates, and cancellation notices.
Message frequency varies based on your booking activity. Typically you will receive 1-3 messages per booking (confirmation, reminder, and any status changes).
Message and data rates may apply depending on your mobile carrier and plan. BookIT does not charge for SMS messages, but your carrier may.
You can opt out of SMS messages at any time by replying STOP to any message you receive from BookIT. After opting out, you will receive one final confirmation message. You may also opt out by unchecking the SMS consent checkbox on future bookings or by contacting us at support@bookitapp.io.
For help with SMS messaging, reply HELP to any message or contact us at support@bookitapp.io.
We do not share your phone number or opt-in consent with any third parties for marketing purposes. Your phone number is only used by BookIT to send you appointment-related messages via our messaging provider (Twilio).
When you book an appointment, the business receives your name, email, phone number, and any notes you provide. This is necessary to fulfill the service.
If you are a business, clients who book your services will see your business name, description, and contact details as shown on your booking page.
We share data with trusted service providers who help us operate our platform: Supabase (database and authentication), Stripe (payment processing), Resend (email delivery), Twilio (SMS messaging), and Vercel (hosting). These providers are bound by their own privacy policies and data protection obligations.
We may disclose your information if required by law, court order, or to protect the rights, property, or safety of BookIT, our users, or others.
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
Your data is stored on secure servers provided by Supabase and Vercel, with industry-standard encryption in transit and at rest. While we take security seriously and implement appropriate technical measures, no method of transmission over the internet is 100% secure.
We retain your account information for as long as your account is active. If you delete your account, we will delete or anonymize your personal information within 30 days, except where retention is required by law or for legitimate business purposes such as resolving disputes.
You may request a copy of the personal information BookIT has collected about you, including the categories of data, the purposes for which it is used, and any third parties with whom it has been shared.
You may request that we correct inaccurate or incomplete personal information we hold about you. You can update most information directly in your account profile.
You may request deletion of your personal information. You can delete your account directly from your Profile or Settings page, or submit a request to privacy@bookitapp.io. Certain information may be retained as required by law or for legitimate business purposes.
You may request a machine-readable export of your personal data. Use the "Download My Data" button in your Profile or Settings, or contact privacy@bookitapp.io.
BookIT does not sell or share your personal information with third parties for their own marketing or advertising purposes. You may still submit an opt-out request at bookitapp.io/do-not-sell.
We will not discriminate against you for exercising any of your privacy rights. We will not deny services, charge different prices, or provide a different level of service based on your exercise of these rights.
Log in and go to Profile or Settings, or email privacy@bookitapp.io with the subject "Privacy Rights Request." We will respond to verified requests within 45 days. You may use an authorized agent to submit requests on your behalf.
If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) grants you additional rights. BookIT does not sell or share personal information as defined under CCPA/CPRA, and we do not use sensitive personal information for purposes beyond those necessary to provide our services.
In the past 12 months, BookIT has collected: Identifiers (name, email, phone number); Commercial information (booking history, service preferences); Internet or other electronic network activity (log data, usage data); and inferences drawn to understand user preferences for service personalization.
Personal information is collected to provide booking and scheduling services, process payments, send appointment reminders and notifications, improve the platform, and communicate with users about their accounts.
BookIT does not use or disclose sensitive personal information for any purpose other than providing the requested services. You do not need to exercise the right to limit such use.
California Civil Code Section 1798.83 also permits California residents to request information about personal information we have shared with third parties for their direct marketing purposes. BookIT does not share personal information for third-party direct marketing purposes.
We use essential cookies and similar technologies to keep you logged in and operate the platform. We do not use tracking or advertising cookies. A consent notice is shown on your first visit. Your browser settings can also be used to manage or delete cookies at any time.
We display an aggregate visitor count on our homepage. To prevent double-counting within a single browser session, we store a temporary flag in your browser's sessionStorage. This flag contains no personal information, expires automatically when your browser session ends, and is never sent to third parties. Only a running integer total is stored in our database — we do not record IP addresses, device identifiers, or any data that could identify an individual visitor.
BookIT is not directed at children under 13 years of age and does not knowingly collect personal information from children under 13. In compliance with the Children's Online Privacy Protection Act (COPPA), if we learn that we have collected personal information from a child under 13 without verifiable parental consent, we will delete that information promptly. If you believe we have collected information from a child under 13, please contact us immediately at privacy@bookitapp.io.
BookIT is intended for use by residents of the United States. If you access our services from the European Economic Area (EEA), United Kingdom, or Switzerland, please be aware that your personal information will be transferred to and processed in the United States, which may not provide the same level of data protection as your home country.
Where GDPR applies, we process your personal information on the following legal bases: performance of a contract (to provide booking services), legitimate interests (to improve our platform and prevent fraud), and consent (for SMS communications). You may withdraw consent at any time.
If GDPR applies to you, you have the rights described in Section 7 above, as well as the right to lodge a complaint with your local data protection authority. To exercise your rights, contact privacy@bookitapp.io.
We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by posting a prominent notice on our platform. The date at the top of this page reflects when the policy was last updated. Your continued use of BookIT after changes take effect constitutes acceptance of the updated policy.
For privacy questions, requests, or concerns, contact us at: privacy@bookitapp.io. For general support: support@bookitapp.io. Mailing address available upon request.