Privacy Policy
Salon Booking (“the App”) is operated by HueycoLabs. This policy describes the personal information the App collects, why we collect it, and how it is handled.
If you have any questions, contact [email protected].
Information we collect
Account information
When you create an account we store:
- Your name
- Your email address
- Your phone number (optional)
- A bcrypt hash of your password (we never store the password in clear text)
- If you sign in with Google or Apple, the subject identifier returned by those providers, plus your email
Salon and booking data
- The salons you belong to and your role in each (owner, stylist, receptionist, or customer)
- Services your salon offers and any photos owners upload for service banners (stored as base64 data URIs inside our database; we do not upload these to third-party cloud storage)
- Appointments you create, including service, stylist, customer, date, and time
- Messages exchanged between users in the same salon
Device information
- An Expo / FCM push token so we can send appointment reminders and message notifications. Tokens are stored against your user account and removed when you sign out or uninstall the App.
- Anonymous crash diagnostics via Sentry. These reports do not include your messages, appointment details, or password.
What we do NOT collect
- Your location
- Your device contacts, microphone, or camera (the photo picker only reads images you explicitly choose)
- Browsing history outside the App
- Any data for advertising or marketing profiling
How we use the information
We use your data only to operate the App:
- To authenticate you and route you to the salons you belong to.
- To schedule, confirm, and remind you about appointments.
- To deliver messages between staff and customers within a salon.
- To diagnose crashes and improve reliability.
We do not sell or share your data with third parties for advertising.
Third-party services
The App relies on a small number of vendors to function:
| Vendor | Purpose | What they receive |
|---|---|---|
| Firebase Cloud Messaging (Google) | Delivering push notifications | Your push token, the notification body |
| Sentry | Crash and error reporting | Stack traces, app version, anonymous device info |
| Cloudflare | Tunnel, DNS, and DDoS protection for the backend | Request metadata only |
| Google Identity | Sign in with Google | Email and subject id during sign-in only |
| Apple Identity | Sign in with Apple | Email and subject id during sign-in only |
Each vendor processes data under their own privacy policy. We send the minimum information needed for each integration to work.
Where your data is stored
The App’s backend runs on infrastructure operated by HueycoLabs in the United States. Data is stored in a PostgreSQL database with encrypted backups. Network ingress is fronted by Cloudflare with TLS.
Data retention and deletion
You can delete your account from Settings → Advanced → Delete account inside the App. When you do this we permanently remove your profile, authentication credentials, push tokens, and personal messages within 30 days. Bookings tied to a salon you owned or worked at may be retained in anonymized form for the salon owner’s business records.
If you cannot access the App and need an account deleted, email [email protected] with the email address you registered with and we will process the request manually within 30 days.
Children
The App is not intended for children under 13. We do not knowingly collect personal information from children. If you believe a child has registered, contact us and we will delete the account.
Changes to this policy
We may update this policy from time to time. Material changes will be announced in the App and reflected in the “Last updated” date at the top of this page.