Privacy Policy

Last updated: March 15, 2026

This Privacy Policy describes how Booknivo collects, uses, and protects personal information when you use our booking and appointment management application.

By using Booknivo, you accept the practices described in this policy.

1. Who operates the platform

Booknivo is operated by CarrasStudio. Contact: Email: contact@carrasstudio.com CarrasStudio is responsible for processing personal data used on the platform.

2. Data we collect

We may collect the following types of information: Account data • name • email • business or service name • time zone • availability settings Booking data • guest name • guest email • booking date and time • optional notes sent by the guest Technical data • IP address • browser • operating system • basic device information This data is collected only for service operation.

3. How we collect data

We collect data when you: • create an account • configure your availability • share your public booking page • receive a booking from a guest • use authorized external integrations

4. How we use data

Collected data is used to: • create and manage accounts • manage bookings • display public scheduling pages • send confirmations and reminders • prevent platform misuse • improve stability and performance • comply with legal obligations Booknivo does not sell personal information to third parties.

5. Legal bases for processing

Depending on jurisdiction, data processing may be based on: • performance of the requested service • legitimate interests related to security and operation • user consent • compliance with legal obligations

6. Guest data in bookings

When a guest schedules an appointment on a public booking page: • their information is used to record the booking • send confirmations or cancellations • allow the host to manage the appointment The host receives only the information needed to manage the booking.

7. Emails

We may send emails related to: • booking confirmations • appointment reminders • cancellations • service notifications If marketing communications are implemented in the future, users will be able to opt in or unsubscribe.

8. Cookies and similar technologies

We use essential cookies for: • authentication • session security • basic application functionality If analytics or marketing cookies are implemented, users will be informed according to applicable law.

9. Data retention

We retain personal data only for as long as necessary to: • operate the service • resolve disputes • comply with legal obligations After that, data may be deleted or anonymized.

10. Providers and third parties

To operate the platform, we may use technology providers, including: • hosting services • database services • transactional email providers • monitoring and security tools These providers may process data only to operate the service and under contractual confidentiality obligations.

11. Google Calendar integration

Booknivo allows users to connect their Google Calendar account to sync bookings with their calendar. When authorized, the app may request OAuth permissions to: • view available calendars • create booking events • update existing events • cancel events when a booking is removed Access tokens are stored securely and used only to maintain calendar synchronization. Users can revoke access at any time from their Google account.

12. Use of data from Google APIs

When a user connects a Google account, Booknivo may access limited Google Calendar information necessary to provide booking synchronization. Data from Google APIs is used only to: • create booking events • update existing events • cancel booking-related events • sync calendar availability Booknivo does not sell, rent, or share data obtained from Google APIs for advertising or marketing purposes.

13. Sharing and transfer of Google-derived data

Data obtained from Google APIs may be processed only by providers necessary to operate the service, such as: • hosting providers • database providers • transactional email services • security and monitoring tools These providers process data only to operate technical infrastructure. Booknivo does not share Google-derived data with third parties for advertising, profiling, or data sales. Booknivo’s use and transfer of information received from Google APIs complies with the Google API Services User Data Policy, including Limited Use requirements.

14. Information security

We apply reasonable technical and organizational measures to protect information against: • unauthorized access • alteration • disclosure • data loss However, no internet system can guarantee absolute security.

15. User rights

Depending on applicable law, users may request: • access to their data • correction of data • deletion of data • restriction of processing Requests can be sent to: contact@carrasstudio.com

16. Minors

Booknivo is not intended for users under 18 years of age. If we detect data collected from minors without legal authorization, that data will be deleted.

17. International transfers

Depending on the providers used, some data may be processed outside the user’s country. In those cases, reasonable security safeguards are applied.

18. Changes to this policy

We may update this policy when: • new features are added • legal requirements change • service operation is modified The current version will show the update date.