Privacy Policy

• Identity and Contact Information: Full legal name, business name, trade license number(s), business address, phone number, and email address.
• Payment and Banking Information: Bank account or payout destination details collected and transmitted directly to Stripe, Inc. We do not store full bank account numbers on our servers.
• Business Profile Information: Trade category, service area, scheduling preferences, deposit or trip-charge amounts, business logo, and other public-facing profile information.
• Calendar and Scheduling Data: When a Contractor connects Google Calendar or Microsoft Outlook/Exchange, we access calendar event data solely for availability synchronization and appointment management.
• Government-Issued Identification: Collected through Stripe's identity verification services to satisfy KYC and AML obligations. Processed and stored by Stripe.
• Communications: Messages, support tickets, and other communications you send to us.

• Identity and Contact Information: Full name, email address, and phone number provided at the time of booking.
• Payment Card Information: Collected directly by Stripe through a secure, PCI-DSS-compliant embedded form. We do not receive or store raw card data — only a Stripe payment token and the last four digits.
• Appointment Details: Service address, requested service type, preferred appointment date and time, and any notes provided to the Contractor.
• Communications: Messages and other communications you send to us or that we transmit on your behalf.

• Log Data: IP address, browser type and version, operating system, referring URL, pages visited, time and date of access, and duration of session.
• Device Information: Device type, device identifier, mobile network information, and device location (with your permission).
• Cookies and Similar Technologies: Used to authenticate sessions, remember preferences, analyze usage patterns, and support advertising where applicable.
• Usage Data: Feature interactions, button clicks, form completion rates, and similar behavioral data used to improve the Platform.

• Stripe, Inc.: Transaction status, payment confirmation, refund status, dispute notifications, and for Contractors, identity verification results and payouts eligibility.
• Google and Microsoft: Calendar availability data when a Contractor enables calendar integration.
• Identity Verification Providers: Verification status returned after document review.
• Analytics Providers: Aggregated usage metrics.

• Create, authenticate, and manage User accounts.
• Process deposit and trip-charge payments between Customers and Contractors through Stripe.
• Issue booking confirmations, receipts, and appointment reminders via email or SMS.
• Synchronize appointments with connected calendar services.
• Facilitate Customer cancellations, refund requests, and dispute resolution.
• Enable Contractors to manage their profiles, availability, and pricing.

• Verify Contractor identities and satisfy KYC/AML requirements.
• Maintain transaction records required by tax, accounting, and financial recordkeeping laws.
• Respond to lawful legal process, court orders, subpoenas, or government inquiries.
• Investigate and prevent fraudulent transactions, identity theft, and other illegal activity.

• Analyze aggregated usage patterns to improve user experience, fix bugs, and develop new features.
• Conduct A/B testing and user research (in anonymized or aggregated form where possible).
• Provide Contractors with dashboard analytics about their bookings and revenue.

• Send transactional communications (booking confirmations, payment receipts, appointment reminders, policy updates).
• Respond to customer service inquiries and support requests.
• With your consent, send promotional communications about new features, offers, or services. You may opt out at any time.

• Payment Processing: Stripe, Inc. processes all payment card transactions and Contractor payouts. Stripe's use of personal information is governed by the Stripe Privacy Policy (stripe.com/privacy).
• Calendar Integration: Google LLC and Microsoft Corporation process calendar data when a Contractor enables integration. Governed by their respective privacy policies.
• SMS Communications: Twilio, Inc. transmits appointment reminders and notifications on our behalf.
• Cloud Infrastructure: Vercel Inc. and Supabase host Platform data within the United States.
• Analytics: We may engage analytics providers to help us understand Platform usage in aggregated form.

If we are involved in a merger, acquisition, asset sale, or bankruptcy proceeding, personal information may be transferred as a business asset. We will notify affected Users via email or a prominent notice on the Platform before personal information becomes subject to a materially different privacy policy.

We may disclose personal information if required to do so by law or in the good-faith belief that such disclosure is reasonably necessary to comply with legal process, protect our rights, prevent fraud, or protect the safety of any person.

You may access and update most of your personal information directly through your account settings. To request a copy of your personal information in a portable format, please contact us at privacy@grabmyslot.com.

You may request deletion of your personal information by contacting us at privacy@grabmyslot.com. We will honor deletion requests subject to our legal obligations to retain certain records, our legitimate interests in preventing fraud, and technical limitations of our systems.

You may opt out of marketing communications at any time by clicking "unsubscribe" in any marketing email or by contacting us at privacy@grabmyslot.com. Opting out of marketing communications does not affect our ability to send transactional communications.

Our Platform does not respond to browser "Do Not Track" signals at this time. We will update this Policy if our practices change.