- DATA WE COLLECT
- COOKIES AND SIMILAR TECHNOLOGIES
- HOW WE USE YOUR DATA
- DATA SECURITY
- DISCLOSURE OF DATA
- LOCATION OF PERSONAL DATA
- RETENTION OF PERSONAL DATA
- YOUR CHOICES
- YOUR EU PRIVACY RIGHTS
DATA WE COLLECT
The personal data we collect depends on how you interact with us, the services you use, and the choices you make. It also depends on whether you are a “Customer” contracting directly with us, or a “Client” booking an appointment with a Customer. We collect and process personal data about you with your consent and/or as necessary to provide the services you use, operate our business, meet our contractual and legal obligations, protect the security of our systems and our customers, or fulfil other legitimate interests.
We collect data about you in various ways when you use our products, including data you provide directly, data collected automatically, and third-party data sources.
Data you provide directly. We collect personal data you provide to us. For example, when you schedule an appointment, sign up for and use our services, consult with our customer service team, send us an email, integrate the services as a Customer with another website or service (for example, when you embed the scheduler on a website you own), or communicate with us in any way, you are voluntarily giving us data that we collect. That information may include either your name, physical address, email address, IP address, phone number, credit card information, as well as other details that might be provided about the applicable appointment.
Data collected automatically. As further described in the Cookies and Similar Technologies section below, when you use our services, some data is collected automatically. For example, when you visit our websites, our web servers automatically log your computer's operating system, Internet Protocol (IP) address, access times, browser type and language, the website you visited before our site, and your activity on our websites.
- If you are a Client, the applicable Customer you are booking with may provide us with your profile and/or appointment information; and
- Applications and services, such as social networks, that make users’ information available to others.
When you are asked to provide personal data, you may decline. But if you choose not to provide data that is necessary for certain services or features, those services or features may not be available or function correctly.
COOKIES AND SIMILAR TECHNOLOGIES
Our websites may include web beacons and cookies from third-party service providers. In some cases, that is because we have hired the third party to provide services on our behalf, such as site analytics or retargeting. These third parties may collect data about your online activities across websites or online services.
The third-party analytics providers we use include: Google Analytics and New Relic. Many third-party analytics providers allow you to opt-out from their collection or use. For more data, click on the links above.
HOW WE USE YOUR DATA
- provide and deliver our services, including securing, troubleshooting, improving, and personalizing those services;
- operate our business, such as improving our internal operations, securing our systems, and detecting fraudulent or illegal activity;
- understand you and your preferences to enhance your experience and enjoyment using our services;
- provide customer support and respond to your questions;
- send you information, including confirmations, invoices, technical notices, updates, security alerts, and support and administrative messages; and
- schedule appointments, manage appointments, and send out appointment notifications and alerts.
In carrying out these purposes, we combine data we collect from different sources to give you a more seamless, consistent, and personalized experience.
The security of your personal data is important to us. We take reasonable and appropriate steps to help protect personal data from unauthorized access, use, disclosure, alteration, and destruction. Where appropriate, your personal data is encrypted in transit using secure socket layer technology (SSL). No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. Therefore, while we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.
DISCLOSURE OF DATA
In addition, we may disclose personal data:
- To comply with applicable law or respond to valid legal process;
- To protect our Customers or Clients, or to help prevent the loss of life or serious injury of anyone; or
LOCATION OF PERSONAL DATA
We transfer personal data from the European Economic Area and Switzerland to other countries, some of which have not been determined by the European Commission to have an adequate level of data protection. When we do so, we use a variety of legal mechanisms, including contracts where appropriate, to help ensure your rights and protections. To learn more about the European Commission’s decisions on the adequacy of personal data protections, please visit: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/adequacy-protection-personal-data-non-eu-countries_en . We also comply with the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks with respect to the collection, use, and retention of personal data transferred from the European Union and Switzerland to the United States. We have certified to the U.S. Department of Commerce that we adhere to the Privacy Shield Principles, and we are subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission. If third-party agents process personal data on our behalf in a manner inconsistent with the principles of either Privacy Shield Framework, we remain liable unless we prove we are not responsible for the event giving rise to the damage. Our controlled U.S. subsidiaries, as identified in our self-certification submission, also adhere to the Privacy Shield Principles.
RETENTION OF PERSONAL DATA
We retain personal data for as long as necessary to provide the services and fulfill the transactions and services our Clients and Customers have requested, or for other essential purposes such as complying with legal obligations, resolving disputes, and enforcing our agreements. Because these needs can vary for different data types in the context of different services, actual retention periods can vary significantly based on criteria such as user expectations or consent, the sensitivity of the data, the availability of automated controls that enable users to delete data, and our legal or contractual obligations. If you are a Client booking with a Customer, you may direct questions about the Customer’s retention of your personal data to them directly.
Access, correction, and deletion. If you wish to request access to, or correction or deletion of, your data, please contact us at email@example.com. However, to the extent permitted by applicable law, we reserve the right to decline requests that are unreasonable, excessive, or prohibited by law, could adversely affect the privacy or other rights of another person, or where we are unable to authenticate you as the person to whom the data relates.
Communications preferences. You can choose whether you wish to receive promotional communications from us by email and SMS. If you receive promotional email or SMS messages from us and would like to stop, you can do so by following the directions in that message. These choices do not apply to mandatory service communications that are part of certain of our services, or to surveys or other communications that may have their own unsubscribe method.
Advertising and analytics. Our third-party analytics and advertising partners typically provide options to opt-out of certain data collection or use. See the Cookies and Other Technologies section of for more details.
Do Not Track. Some browsers have incorporated "Do Not Track" (DNT) features that can send a signal to the websites you visit indicating you do not wish to be tracked. Because there is not a common understanding of how to interpret the DNT signal, our websites do not currently respond to browser DNT signals. Instead, you can use the range of other tools to control data collection and use, including the cookie controls and advertising controls described above.
YOUR EU PRIVACY RIGHTS
If the processing of personal data about you is subject to European Union data protection law, you have certain rights with respect to that data:
- You can request access to, and rectification or erasure of, personal data;
- If any automated processing of personal data is based on your consent or a contract with you, you have a right to transfer or receive a copy of your personal data in a usable and portable format;
- If the processing of personal data is based on your consent, you can withdraw consent at any time for future processing;
- You can to object to, or obtain a restriction of, the processing of personal data under certain circumstances; and
- For residents of France, you can send us specific instructions regarding the use of your data after your death.
To make such requests, contact us at firstname.lastname@example.org. When we are processing data on behalf of a Customer as a data processor, for example, when processing data about your scheduled appointments, you should direct your request to the Customer. You also have the right to lodge a complaint with a supervisory authority, but we encourage you to first contact us with any questions or concerns.
This policy was last modified on November 19, 2018.