Privacy Policy

1. Introduction

Welcome to Book by SMS, operated by Cyberdeck LLC ("we," "us," or "our"). Book by SMS is a service that enables hair stylists, beauty professionals, and other service providers to manage appointment bookings via SMS text messaging. This Privacy Policy describes how we collect, use, store, and protect your personal information when you use our service at bookbysms.com.

2. Information We Collect

2.1 SMS and Messaging Data

When you use our SMS booking service, we collect:

• Phone Numbers: Your mobile phone number when you text our service or when service providers register their business phone numbers
• Message Content: The content of SMS messages you send and receive through our platform for appointment booking and related communications
• Conversation History: Records of your text message conversations with service providers for appointment scheduling purposes
• Metadata: Message timestamps, delivery status, and other technical information related to SMS communications

2.2 Account Information (Service Providers)

When service providers create an account, we collect:

• Email Address: For account creation and authentication
• Google Account Information: When you sign in with Google OAuth, we receive your name, email address, and profile information
• Business Information: Service details, business hours, and other information you provide to configure your booking system

2.3 Calendar Integration Data

When service providers connect their Google Calendar:

• Calendar Events: Access to read and create calendar events for appointment scheduling
• Availability Information: Your calendar availability to prevent double-booking
• OAuth Tokens: Secure tokens to maintain your Google Calendar connection

2.4 Technical Information

We automatically collect certain technical information:

• IP addresses and device identifiers
• Browser type and version
• Operating system information
• Usage data and analytics

3. How We Use Your Information

We use the information we collect solely to provide and improve our appointment booking service:

• Appointment Scheduling: To facilitate SMS-based appointment booking between customers and service providers
• Service Delivery: To send appointment confirmations, reminders, and updates via SMS
• Calendar Management: To sync appointments with service providers' Google Calendars and prevent scheduling conflicts
• Account Management: To create, maintain, and secure service provider accounts
• Customer Support: To respond to inquiries and provide technical assistance
• Service Improvement: To analyze usage patterns and improve our platform's functionality
• Security: To detect, prevent, and address fraud, abuse, or security issues

4. Important Commitment: No Third-Party Sharing or Marketing

5. When We Share Information

We only share your information in the following limited circumstances:

• Between You and Service Providers: SMS messages and appointment details are shared between customers and their chosen service providers to facilitate booking
• Service Providers: We use trusted third-party service providers who help us operate our platform:
  • Twilio (SMS messaging infrastructure)
  • Google (Calendar integration and authentication)
  • Fly.io (Cloud hosting infrastructure)
  These providers are contractually obligated to protect your data and use it only to provide services to us.
• Legal Requirements: We may disclose information if required by law, legal process, or government request
• Safety and Rights Protection: To protect the rights, property, or safety of Cyberdeck LLC, our users, or the public

6. SMS Messaging and Twilio

Our SMS functionality is provided through Twilio. When you send or receive text messages:

• Messages are transmitted through Twilio's secure infrastructure
• Message content is stored in our database to maintain conversation history and provide service
• Standard SMS rates from your mobile carrier may apply
• You can opt out of SMS communications at any time by texting "STOP" or by contacting the service provider directly

7. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

• Active Accounts: Information is retained while your account is active
• SMS Messages: Conversation history is retained to provide service continuity
• After Account Deletion: We may retain certain information for legitimate business purposes or as required by law

8. Data Security

We implement industry-standard security measures to protect your information:

• Encryption of data in transit using HTTPS/TLS
• Secure storage of data in encrypted databases
• OAuth 2.0 for secure authentication
• Webhook signature verification for SMS communications
• Regular security updates and monitoring

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

9. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal retention requirements)
• Opt-Out: Stop receiving SMS messages by texting "STOP" or contacting us
• Data Portability: Request a copy of your data in a portable format

To exercise these rights, please contact us using the information in the "Contact Us" section below.

10. Children's Privacy

Book by SMS is not intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using our service, you consent to the transfer of your information to the United States and other countries where we operate.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the updated policy on this page
• Updating the "Last Updated" date at the top of this policy
• Sending an email notification to registered service providers (for significant changes)

Your continued use of our service after changes are posted constitutes acceptance of the updated Privacy Policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: