BOOKO — Privacy Policy
Last updated: March 2026
1. Introduction
BOOKO ("we", "our", "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share information when you use the BOOKO mobile application ("App").
2. Information We Collect
Account Information
- Phone number (required for authentication via SMS OTP)
- Name and profile information you choose to provide
- Role selection (Customer or Provider)
Provider Business Information
- Business name, address, and description
- Services offered, prices, and working hours
- Staff/worker names and phone numbers (added by the provider)
- Profile photos uploaded by the provider
Booking Information
- Booking details (date, time, services selected, notes)
- Booking status and history
- Reviews and ratings
Device and Technical Information
- Device model, operating system, and app version
- Push notification tokens (FCM)
- Approximate location (when you grant location permission, used to show nearby providers)
Usage Information
- Language preference
- Category interests selected during onboarding
- Session activity (for analytics and app improvement)
3. How We Use Your Information
We use your information to:
- Authenticate your identity via phone OTP
- Connect customers with nearby service providers
- Process and manage bookings
- Send push notifications (booking confirmations, reminders, status updates)
- Display personalized content based on your interests and location
- Provide subscription and payment services (via Apple App Store / Google Play)
- Improve the App and user experience
- Provide customer support
4. Data Storage and Security
- Your data is stored securely on Google Firebase (Firestore) servers.
- Authentication tokens are stored locally using encrypted secure storage.
- We use industry-standard security measures to protect your data.
- We do not store payment card information — all subscription payments are processed by Apple or Google.
5. Data Sharing
- We do NOT sell your personal data to third parties.
- We share limited information as necessary:
- Between customers and providers for booking purposes (name, booking details)
- With Firebase/Google for infrastructure and analytics
- With RevenueCat for subscription management
- With Apple/Google for payment processing
- If required by law or legal process
6. Your Rights
You have the right to:
- Access your personal data
- Correct inaccurate data
- Request deletion of your account and data
- Change your language and notification preferences
- Withdraw location permission at any time
To exercise these rights, use the Support section in your profile or contact us.
7. Data Retention
- We retain your data for as long as your account is active.
- Booking history is retained for operational and legal purposes.
- Upon account deletion request, we process removal within 30 days.
- Some data may be retained as required by applicable law.
8. Children's Privacy
The App is not intended for users under 18 years of age. We do not knowingly collect information from children under 18.
9. Push Notifications
We send push notifications for booking confirmations and reminders (6h, 3h, 1h before appointments), booking status changes, and subscription updates. You can manage notification permissions in your device settings.
10. Third-Party Services
The App uses the following third-party services:
- Firebase (Google) — authentication, database, cloud messaging, storage
- RevenueCat — subscription management
- Apple App Store / Google Play — payment processing
Each service has its own privacy policy that governs its use of your data.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes via in-app notification. Continued use of the App after changes constitutes acceptance.
12. Governing Law
This Privacy Policy is governed by the laws of the Republic of Albania.
13. Contact
For privacy-related questions or concerns, please use the Support section in your account profile to submit a ticket.