boqo
Log inRegister

Legal

Privacy policy

This Privacy Policy explains how boqo processes personal data when users create accounts, manage profiles, request bookings, communicate, and use provider tools.

Controller and contact

The data controller is represented by the boqo placeholder until final company details are published. Privacy requests can be sent to [email protected].

Data collected

We may process account data, profile data, phone and email verification data, provider profile content, employee data, addresses, services, schedules, bookings, reviews, messages, notifications, support requests, device data, log data, cookies, localStorage data, and session tokens.

Purpose of processing

Data is used to create accounts, authenticate users, operate public provider pages, process booking requests, manage provider tools, support employee workflows, send operational notifications, provide support, protect platform security, prevent abuse, and improve reliability.

Integrations and processors

We may share necessary data with infrastructure, hosting, email, SMS, Telegram, analytics, security, and support providers. If a user connects Google Calendar, boqo stores encrypted Google connection tokens and creates a separate calendar named "Boqo". boqo uses that calendar only to create, update, and delete booking-related events. boqo does not read, modify, or delete existing Google calendars or events outside the calendar created by boqo. Google Calendar data is not used for advertising, profiling, or sold to third parties.

Sharing between users

Booking-related information may be visible to the client, provider, and assigned employee involved in the appointment. Public provider content, reviews, gallery items, and news may be visible to visitors according to platform functionality.

Cookies and local storage

boqo may use cookies, localStorage, and similar browser storage for authentication, language preferences, interface state, security, and basic product operation.

Retention and security

We keep data for as long as needed to provide the service, maintain records, handle disputes, secure the platform, comply with legal obligations, or protect legitimate interests. We use reasonable technical and organizational safeguards, but no system can be guaranteed completely secure.

Requests

Depending on applicable law, users may request access, correction, deletion, restriction, portability, or objection to processing. Requests should be sent to [email protected] and may require identity verification.