Privacy Policy for Appointments App

Last Updated: February 1, 2026

Overview

The Appointments app ("App") helps businesses manage customer appointment bookings and integrate with Google Calendar. This Privacy Policy explains how we collect, use, and protect data when you use our App.

Data We Collect

1. Customer Appointment Information

When customers book appointments through your store, we collect:

• Customer name and email address
• Appointment date, time, and duration
• Any notes or preferences provided during booking
• Shop domain information

2. Business Owner Information

When you set up and configure the App, we collect:

• Your Shopify shop domain
• Google Calendar credentials (OAuth tokens for secure calendar integration)
• Business information (company name, location, working hours)
• Timezone and appointment settings

3. Usage Data

• Appointment booking patterns and statistics
• App configuration and feature usage
• Error logs and technical data (to improve service reliability)

How We Use Your Data

Primary Uses:

1. Appointment Management: Store and display appointment availability and bookings
2. Calendar Integration: Sync appointment data with your Google Calendar
3. Customer Communication: Send confirmation emails and appointment reminders
4. Service Improvement: Analyze usage to enhance App features and performance
5. Technical Support: Troubleshoot issues and provide customer support

We Do NOT:

• Sell or rent your data to third parties
• Use your data for marketing without consent
• Share appointment data beyond what's necessary for operation
• Store payment information (handled by Shopify)

Data Security

• Google Calendar OAuth: We use secure OAuth 2.0 authentication. Your Google credentials are encrypted and never transmitted unencrypted.
• Database Encryption: All customer data is stored in encrypted databases
• Access Control: Only authorized personnel can access data for support purposes
• HTTPS: All communications are encrypted in transit

Third-Party Services

The App integrates with:

• Google Calendar: Appointment data is synced to your connected Google Calendar account
• Shopify: Customer shop data is managed through Shopify's infrastructure
• Email Service: Appointment confirmations and reminders are sent via email

Data Retention

• Appointment Records: Stored indefinitely unless you delete your app or request deletion
• Google Calendar Credentials: Deleted when you disconnect the calendar connection
• Logs: Technical logs retained for 90 days

Customer Data Rights

Customers have the right to:

• Request their appointment data be deleted
• Know what appointment information is stored
• Opt out of email reminders (if provided that option)
• Contact the store owner regarding their personal data

GDPR & Data Protection Compliance

If you operate in the EU or serve EU customers:

• We comply with GDPR requirements
• We have a Data Processing Agreement available upon request
• Customer consent is obtained for appointment bookings
• Data subjects can exercise their rights through you (the shop owner)

Your Responsibilities

As the App user, you must:

• Clearly communicate to customers how their data is used
• Maintain compliance with applicable privacy laws in your jurisdiction
• Display this privacy policy or your own privacy policy to customers
• Respond to customer data subject requests
• Not collect or use data for unlawful purposes

Changes to This Policy

We may update this Privacy Policy occasionally. Continued use of the App constitutes acceptance of changes.

Contact & Support

For privacy questions or concerns:

• Email: [Your Support Email]
• Website: [Your Support Website]

If you have concerns about data handling, please contact us first. For GDPR-related issues, you also have the right to file a complaint with your local data protection authority.