Privacy Policy

Last updated: January 18, 2026

1. Introduction

EasySched ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our booking platform service.

Our Core Privacy Principles:

  • We do not sell personal information for any reason
  • We collect information only to enhance your user experience
  • You maintain full control over your data
  • We are transparent about our data practices

2. Information We Collect

2.1 Personal Information

We collect personal information that you voluntarily provide to us when:

  • Creating an account
  • Setting up your business profile
  • Booking appointments
  • Contacting customer support

This may include:

  • Name and contact information (email, phone number, address)
  • Business information (business name, services offered, hours)
  • Appointment details and preferences
  • Communication preferences

2.2 Technical Information

We automatically collect certain technical information, including:

  • IP Addresses: Collected strictly for preventing abuse and maintaining platform security
  • Browser type and version
  • Device information
  • Usage data and analytics
  • Log files and error reports

2.3 Information We Do NOT Collect

  • Billing Information: All payment processing is handled directly by Stripe. We do not store credit card numbers, bank account details, or other sensitive financial information
  • Sensitive personal data unless specifically required for service functionality

3. How We Use Your Information

We use the information we collect strictly for enhancing your user experience:

3.1 Service Provision

  • Facilitating appointment bookings between customers and service providers
  • Enabling service providers to contact customers regarding appointments
  • Managing user accounts and business profiles
  • Providing customer support

3.2 Communication

  • Sending appointment confirmations and reminders via SMS and email
  • Providing important service updates and notifications
  • Responding to customer inquiries

SMS Consent: By providing your phone number, you expressly consent to receive SMS text messages from EasySched and service providers you book with. This consent is not required to purchase services.

Opt-Out Options: You can opt out of SMS and email notifications at any time by:

  • Replying "STOP" to any SMS message
  • Updating your preferences in your account settings
  • Following unsubscribe instructions in email communications
  • Contacting customer support

Standard message and data rates may apply depending on your mobile carrier plan.

3.3 Security and Abuse Prevention

  • Using IP addresses to detect and prevent fraudulent activity
  • Monitoring for security threats and platform abuse
  • Enforcing our Terms of Service

3.4 Service Improvement

  • Analyzing usage patterns to improve our platform
  • Developing new features and functionality
  • Conducting internal research and analytics

4. Information Sharing and Disclosure

4.1 What We Do NOT Do

  • We do not sell personal information for any reason
  • We do not rent or lease personal information to third parties
  • We do not share personal information for marketing purposes

4.2 When We May Share Information

We may share personal information only in the following limited circumstances:

  • Service Functionality: Sharing customer contact information with service providers for appointment-related communication
  • Service Providers: With trusted third parties who provide services on our behalf (e.g., Stripe for payment processing, email service providers)
  • Legal Requirements: When required by law, subpoena, or court order
  • Safety and Security: To protect the rights, property, or safety of EasySched, our users, or others
  • Business Transfers: In connection with a merger, acquisition, or sale of business assets

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication requirements
  • Secure data storage and backup procedures

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

5.1 Browser Storage and Cookies

We use browser-based storage technologies to enhance your experience and provide essential functionality:

Local Storage:

We use local storage (a technology that stores data in your web browser) to:

  • Store recently accessed data to improve loading speeds (e.g., your business information, recent appointments)
  • Save your user interface preferences (e.g., dashboard tab selection, notification settings)
  • Maintain your authentication state and essential app data to keep you logged in between sessions

Session Storage:

We use session storage (temporary storage that clears when you close your browser) to:

  • Temporarily store booking flow data while customers complete appointments
  • Temporarily store cart/order information during checkout processes

This data is stored locally on your device and is not transmitted to third parties. You can clear this data at any time through your browser settings, though this may log you out and reset your preferences.

Essential Cookies:

We use essential cookies and similar technologies required for authentication and basic service functionality. These are strictly necessary for the Service to operate and cannot be disabled.

We do not use: Tracking cookies, advertising cookies, or third-party analytics cookies.

6. Your Rights and Choices

6.1 Account Access and Control

  • Access and update your personal information through your account dashboard
  • Export your data at any time through your account dashboard
  • Request deletion of your account and associated data by contacting support@easy-sched.com

6.2 Communication Preferences

  • Opt out of SMS notifications at any time
  • Unsubscribe from email communications
  • Customize notification settings in your account

6.3 Data Portability

You have the right to receive a copy of your personal information in a structured, machine-readable format and to request that we transfer this information to another service provider.

7. Data Retention

We retain personal information for specific periods based on the type of data and our business needs:

7.1 Retention Periods

  • Account Information: Retained while your account is active and for 90 days after account deletion (to allow for account recovery)
  • Appointment Records: Retained for 7 years after the appointment date (for tax and business record purposes)
  • Payment Transaction Records: Retained for 7 years (required for tax compliance and dispute resolution)
  • Communication Logs (SMS/Email): Retained for 2 years (for compliance with TCPA and customer support purposes)
  • Security Logs (IP addresses, access logs): Retained for 90 days (for fraud prevention and security investigations)
  • Marketing Communications: Retained until you opt out or delete your account

7.2 Account Deletion

When you request account deletion by contacting support@easy-sched.com:

  • You will have 30 days to export your data through your account dashboard before deletion begins
  • Personal information will be deleted or anonymized within 30 days of the deletion request
  • Appointment and transaction records will be retained as specified above for legal compliance, but personally identifiable information will be anonymized
  • Backups containing your data may persist for up to 90 days before being automatically purged

We may retain certain information when required by law, to resolve disputes, enforce agreements, or prevent fraud and abuse.

8. Third-Party Services

Our service integrates with third-party services to provide you with a seamless booking experience. We take your privacy seriously and only access the minimum data necessary to provide our services.

8.1 Payment Processing

  • Stripe: All payment processing is handled directly by Stripe. We do not store credit card numbers, bank account details, or other sensitive financial information. Stripe's use of your payment information is governed by their Privacy Policy.

8.2 Calendar Integration

EasySched integrates with Google Calendar and Microsoft Outlook Calendar to help you manage appointments and avoid scheduling conflicts. This integration is entirely optional and requires your explicit consent.

Google Calendar Integration:

When you choose to connect your Google Calendar, EasySched requests permission to access the following:

  • View your calendar events: To check your availability and prevent double-booking
  • Create calendar events: To automatically add confirmed appointments to your calendar
  • Update calendar events: To modify appointment details when bookings are rescheduled or updated

How We Use Your Calendar Data:

  • Read your calendar to determine your availability for new bookings
  • Create new calendar events when appointments are booked through EasySched
  • Update existing events when appointments are modified or rescheduled
  • Delete calendar events when appointments are cancelled
  • Sync appointment information between EasySched and your calendar in real-time

Calendar Data We Access:

  • We read your calendar events (including those not created by EasySched) to check your availability and identify time slots that are already booked
  • When checking availability, we only need to know when you're busy or free - we access the date/time information of existing events to prevent scheduling conflicts
  • We do not store detailed information (titles, descriptions, attendees, locations) from calendar events that were not created by EasySched
  • We only store complete event details for appointments that were booked through EasySched

What We Do NOT Do With Your Calendar Data:

  • We do not share your calendar data with any third parties for marketing or advertising purposes
  • We do not sell your calendar information
  • We do not use your calendar data for purposes unrelated to appointment scheduling and availability checking
  • We do not access calendars you have not explicitly connected to EasySched
  • We do not read or store the detailed content (event titles, descriptions, participant information) of personal calendar events not created by EasySched

Data Storage and Security:

  • We temporarily access your calendar availability in real-time to check for conflicts when displaying available time slots
  • We store only the minimum necessary data: event IDs and appointment details for EasySched-created events, and time slot availability information
  • Calendar access tokens are encrypted and stored securely in our database
  • You can revoke EasySched's access to your calendar at any time through your Google Account settings or through your EasySched dashboard
  • When you disconnect your calendar or delete your account, we immediately stop accessing your calendar and delete stored calendar-related data

Microsoft Outlook Calendar:

Similar data access and usage practices apply to Microsoft Outlook Calendar integration. We only access calendar information necessary for appointment scheduling and synchronization.

8.3 Communication Services

  • Telnyx: For sending SMS appointment reminders and notifications
  • Email Service Providers: For sending appointment confirmations, reminders, and platform communications

8.4 Third-Party Privacy Policies

These third-party services have their own privacy policies and terms of service:

  • Google's Privacy Policy governs their use of your Google Calendar data
  • Microsoft's Privacy Statement governs their use of your Outlook Calendar data
  • Stripe's Privacy Policy governs payment processing

We encourage you to review their policies when using these integrations. EasySched's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

9. California Privacy Rights

9.1 CCPA Rights for California Residents

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information:

Your Rights:

  • Right to Know: You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you, the categories of sources, our business purposes for collecting it, and the categories of third parties with whom we share it.
  • Right to Delete: You have the right to request deletion of your personal information, subject to certain exceptions.
  • Right to Opt-Out: You have the right to opt out of the "sale" of your personal information. EasySched does not sell personal information and has not sold personal information in the preceding 12 months.
  • Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your CCPA rights.

Information We Collect (CCPA Categories):

  • Identifiers: Name, email address, phone number, IP address, account username
  • Commercial Information: Appointment history, booking records, service preferences
  • Internet Activity: Usage data, log files, device information
  • Professional Information: Business name, services offered (for service providers only)

Business Purposes for Collection:

  • Providing and improving our booking platform services
  • Processing appointments and facilitating communication between customers and service providers
  • Sending appointment confirmations and reminders
  • Preventing fraud and maintaining security
  • Complying with legal obligations

Third-Party Sharing:

We share personal information with the following categories of third parties:

  • Service Providers: Stripe (payment processing), Telnyx (SMS), email service providers, cloud hosting providers
  • Other Users: Customer contact information is shared with service providers you book appointments with
  • Calendar Services: Google Calendar and Microsoft Outlook (only if you choose to connect your calendar)

We do not sell personal information. We have not sold personal information in the preceding 12 months and do not have actual knowledge of selling personal information of minors under 16 years of age.

9.2 California "Shine the Light" Rights

California Civil Code Section 1798.83 permits California residents to request information about disclosure of personal information to third parties for their direct marketing purposes.

EasySched does not disclose personal information to third parties for their direct marketing purposes. Therefore, no disclosures are made under this law.

9.3 Exercising Your California Rights

To exercise your CCPA rights, please contact us:

  • Email: support@easy-sched.com (Subject: "California Privacy Request")
  • Mail: EasySched, LLC, 5900 Balcones Drive STE 100, Austin, TX 78731

We will verify your identity before processing your request and respond within 45 days. You may designate an authorized agent to make requests on your behalf by providing written authorization.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure that such transfers comply with applicable data protection laws and implement appropriate safeguards to protect your information.

11. Children's Privacy

Our service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last updated" date
  • Sending you an email notification for significant changes

Your continued use of our service after any changes indicates your acceptance of the updated Privacy Policy.

13. Mobile App Privacy

Our mobile application for iOS and Android collects and processes additional information beyond our web platform to provide mobile-specific features and functionality.

13.1 Mobile-Specific Permissions

The EasySched mobile app may request the following permissions from your device:

Camera and Photo Library:

  • Purpose: To allow you to capture and upload product images for your business catalog
  • What we collect: Images you choose to upload (up to 5MB per image)
  • Privacy protection: Image metadata (EXIF data) is automatically stripped before upload
  • Control: You can revoke camera and photo library access in your device Settings at any time

File System Access:

  • Purpose: To import customer data from CSV or Excel files
  • What we collect: Customer contact information from files you choose to import
  • How it works: Files are temporarily copied to app cache, processed, and then removed
  • Control: File access occurs only when you initiate an import

Bluetooth:

  • Purpose: To connect to Stripe card readers and payment terminals for in-person payments
  • What we collect: Device connection information for paired card readers
  • When requested: Only when you use payment terminal features
  • Control: You can disable Bluetooth in your device Settings

Location:

  • Purpose: Required by iOS for Tap to Pay functionality and payment terminal connection
  • Important: While location permission is requested, we do not collect, track, or store your location data
  • When requested: Only when using payment acceptance features
  • Control: You can disable location access in your device Settings

Notifications:

  • Purpose: To send you real-time alerts for new orders, bookings, reviews, and business updates
  • What we collect: Your device push notification token
  • Control: You can disable notifications in your device Settings at any time

13.2 Device Information Collection

Our mobile app collects the following device information:

  • Device identifiers: Device type (phone/tablet), device name, operating system (iOS/Android)
  • App information: App version, installation ID
  • Push tokens: Device push notification tokens (automatically removed when you disable notifications or logout)
  • Session data: Login timestamp, last activity time

This information is used solely for providing service functionality, managing push notifications, and troubleshooting technical issues. We do not use advertising identifiers (IDFA) or track you across other apps.

13.3 Local Storage on Your Device

To provide offline access and faster performance, our mobile app stores data locally on your device using AsyncStorage:

What's Stored Locally:

  • Authentication tokens: Access and refresh tokens to keep you logged in
  • Business data: Your services, products, and business settings
  • Cached content: Recent orders, bookings, customers, and financial data for offline access
  • User preferences: App settings and UI preferences

Cache Management:

  • Automatic expiration: In-memory query cache expires after 30 minutes of inactivity. Persisted cache data is retained for up to 24 hours before being purged
  • Logout clearing: When you logout, all cached business data, authentication tokens, and query cache are cleared from your device
  • Manual clearing: You can clear cached data by logging out
  • Privacy: Data is stored only on your device and not shared with third parties

13.4 Mobile Third-Party Services

Our mobile app integrates with the following third-party services that are not used in our web platform:

Expo Platform:

  • Purpose: Powers push notifications, over-the-air updates, and core mobile functionality
  • Data shared: Device push tokens, app version, project identifiers
  • Privacy policy: https://expo.dev/privacy

Stripe Terminal SDK:

  • Purpose: Enables Tap to Pay on iPhone and card reader connectivity
  • Data shared: Device information, merchant identifier, connection tokens for payment terminal authentication
  • Privacy policy: https://stripe.com/privacy

WebSocket Services:

  • Purpose: Maintains real-time connections for instant notifications and live updates
  • Data transmitted: Business ID, booking updates, order notifications, real-time analytics
  • Background activity: WebSocket connections may remain active in background to deliver timely notifications

13.5 Mobile Data Deletion

When you logout from the mobile app:

  • All cached business data, orders, bookings, and customer information are cleared from your device
  • Authentication tokens are removed from local storage
  • Your push notification token is automatically unregistered from our servers
  • Query cache (recent API responses) is purged

When you request account deletion (via support@easy-sched.com):

  • All data associated with your account is deleted from our servers within 30 days
  • Device information and push tokens are removed from our records
  • You should logout and uninstall the mobile app to completely remove all local data from your device

13.6 Children's Privacy (Mobile)

Our mobile app is not intended for use by children under 13. We do not knowingly collect personal information from children through our mobile app. If we discover that a child under 13 has provided us with personal information through the mobile app, we will delete such information immediately.

13.7 Mobile-Specific User Controls

You maintain control over mobile app permissions:

  • iOS Users: Go to Settings → EasySched to manage permissions
  • Android Users: Go to Settings → Apps → EasySched → Permissions
  • Automatic cleanup: When you revoke notification permissions, your push token is automatically removed from our servers
  • Logout: Logging out clears all authentication tokens and cached data from your device

14. Do Not Track Signals

We do not track users across websites or mobile apps for advertising purposes. Our Service does not respond to Do Not Track (DNT) browser signals because we do not engage in the tracking activities that DNT is designed to prevent. We do not use advertising identifiers or participate in cross-site tracking.

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

EasySched, LLC
5900 Balcones Drive STE 100
Austin, TX 78731
Email: support@easy-sched.com

For California-specific privacy requests, please use the contact information above and specify "California Privacy Request" in your subject line.

We are committed to resolving any privacy concerns you may have and will respond to your inquiries within 45 days as required by applicable law.

This Privacy Policy governs your use of EasySched and forms part of our Terms of Service.