Privacy Policy

Effective Date: February 25, 2026

1. Introduction

OllaZen operates a booking platform connecting customers with beauty and wellness service providers. This Privacy Policy explains how we collect, use, disclose, and safeguard your information.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, phone number, password
  • Profile Information: Profile photo, preferences, saved addresses
  • Booking Information: Service selections, appointment dates and times, special requests
  • Payment Information: Credit card details, billing address (processed through secure third-party payment processors)
  • Communications: Messages, customer support inquiries, reviews and ratings

2.2 Information Collected Automatically

  • Device Information: IP address, browser type, operating system
  • Usage Data: Pages viewed, features used, search queries, booking history
  • Location Data: Approximate location based on IP address
  • Cookies: We use cookies and similar technologies to track activity

3. How We Use Your Information

  • Process and manage bookings
  • Facilitate communication between customers and providers
  • Send booking confirmations, reminders, and updates
  • Process payments and prevent fraud
  • Provide customer support
  • Personalize your experience and recommend services
  • Analyze usage and improve our platform
  • Send marketing communications (with consent)
  • Comply with legal obligations

4. How We Share Your Information

4.1 With Service Providers

When you book an appointment, we share necessary information with the service provider to fulfill your booking.

4.2 With Service Partners

  • Payment processors (Stripe, PayPal)
  • Email service providers (SendGrid)
  • Analytics providers
  • Cloud hosting services

4.3 For Legal Reasons

We may disclose information if required by law or to protect our rights and safety.

5. Email Communications

5.1 Transactional Emails

We send essential transactional emails that cannot be disabled:

  • Booking confirmations and receipts
  • Appointment reminders
  • Cancellation notifications
  • Password reset and security alerts

5.2 Marketing Emails

You can opt out of marketing emails at any time via the unsubscribe link or your account settings.

6. Data Security

We implement security measures including:

  • Encryption of data in transit and at rest
  • Secure authentication and password hashing
  • Regular security audits
  • Access controls and employee training
  • PCI-DSS compliant payment processing

7. Data Retention

  • Account information: Until deletion, plus 90 days
  • Booking history: 7 years for legal compliance
  • Marketing data: Until you unsubscribe

8. Your Rights

  • Access: View and update your information in account settings
  • Deletion: Request deletion of your account and data
  • Portability: Request a copy of your data
  • Opt-Out: Unsubscribe from marketing emails
  • Cookies: Manage preferences through browser settings

9. Children's Privacy

Our services are not intended for individuals under 18. We do not knowingly collect information from children.

10. International Transfers

Your information may be transferred to and processed in other countries with appropriate safeguards in place.

11. Changes to This Policy

We may update this policy and will notify you of material changes by email or platform notice.

12. Regional Rights

California Residents (CCPA)

  • Right to know what information is collected
  • Right to deletion
  • Right to opt-out of sale (we do not sell data)
  • Right to non-discrimination

European Residents (GDPR)

  • Right of access and rectification
  • Right to erasure
  • Right to data portability
  • Right to object to processing
  • Right to lodge a complaint

13. Contact Us

Email: privacy@ollazen.com