Privacy Policy
Last updated: 2026-05-10 · M3 placeholder. Final text drafted with counsel before public launch.
This policy explains what we collect, why, and what we do with it. We process two categories of data: (1) information about you, the practitioner, and (2) information about your clients, on your behalf.
1. What we collect about you
Account email, name, business profile, payment information (handled by Stripe — we never store full card numbers), usage logs, and device/browser metadata for security and analytics.
2. What we process on your behalf
Your clients' names, WhatsApp numbers, service history, notes, and any data you record in the CRM. We act as your data processor — you remain the data controller.
3. How we use it
To run the service: send booking confirmations and rebook nudges, prevent double bookings, charge subscription fees, and provide product support. We do not sell your data, and we never share client information with third parties for advertising.
4. Where it lives
On Supabase (Postgres) in the EU region. Backups are encrypted at rest. Access is limited to a small number of engineers under audit.
5. Your rights
Access, correct, export, or delete your data at any time from /settings/account, or by emailing privacy@valiame.com. We respond to requests within 30 days.