This document is a working draft and has not been reviewed by counsel. Do not rely on it as final legal terms.
Privacy Policy
Last updated: 6/18/2026
What we collect
Account information: your name, email address, password (hashed), and optional business information.
Practice data you enter: services, pricing, schedule, expenses, and other records you create.
Client records: client name, email, phone, intake responses, SOAP notes, and appointment history you store on behalf of your clients.
Usage data: pages visited, device type, and aggregate event counts used to improve the product. No sensitive content is collected.
How we use it
To deliver and maintain the scheduling, payments, and communications features you use.
To send transactional emails (booking confirmations, reminders, intake requests) on your behalf to your clients.
To send you operational emails about your account, billing, and product changes.
To detect abuse, secure the service, and meet legal obligations.
We do not sell your data or your clients' data. We do not use client records for advertising.
Where it is stored
Practice and client data is stored in a managed Postgres database operated by our cloud provider, with encryption at rest and TLS in transit. Backups are encrypted. Access is restricted to authorized personnel and audited.
Your rights
Access: you can request a copy of the data we hold about you.
Correction: you can update your account and practice data at any time from Settings.
Deletion: you can ask us to delete your account; we will remove your data within 30 days, subject to legal retention obligations.
Export: you can export your records as CSV from the Reports page.