Privacy Policy

Fieldbookly is operated by Dawn Labs Inc. ("we," "us," or "our"), a company registered in Canada. We are committed to protecting your privacy and handling your data with transparency and care. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our booking and business management platform.

This Privacy Policy describes how we handle personal information in connection with the Service. Depending on the context, we may process personal information to provide the Service, perform our contract with you, comply with legal obligations, protect the Service, pursue legitimate business interests, or with your consent where consent is required.

1. Information We Collect

1.1 Account Information

When you create an account with Fieldbookly, we collect:

• Personal Information: Full name, email address, phone number
• Business Information: Business name, address, industry type, service area
• Profile Information: Profile photo, business logo, bio
• Authentication Data: Password (encrypted), login history

1.2 Business and Booking Data

To provide our booking and management services, we store:

• Service Information: Services you offer, pricing, duration, descriptions
• Calendar Data: Availability schedules, appointments, blocked times
• Booking Records: Appointment details, customer interactions, job notes
• Financial Data: Invoices, quotes, payment records, revenue reports
• Team Data: Team member information, assignments, schedules

1.3 Customer Data (Your Customers)

When your customers book appointments through Fieldbookly, we collect on your behalf:

• Customer name and contact information
• Service address or location
• Booking preferences and notes
• Communication history (emails, SMS)
• Payment information (processed by Stripe)

Important: You are the data controller for your customers' data. We process this data on your behalf as a data processor. You are responsible for obtaining appropriate consent and complying with privacy laws.

1.4 Payment Information

Payment processing is handled securely by Stripe. We do not store complete credit card numbers on our servers. We receive and store:

• Last four digits of payment cards (for display purposes)
• Transaction IDs and payment status
• Billing addresses
• Payout history and bank account identifiers (masked)

1.5 Usage and Technical Data

We automatically collect certain information when you use Fieldbookly:

• Device Information: Device type, operating system, browser type
• Usage Data: Features used, pages visited, actions taken
• Log Data: IP address, access times, error logs
• Location Data: General location based on IP address

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 Providing and Operating the Service

• Creating and managing your account
• Processing bookings and managing your calendar
• Sending booking confirmations and reminders (SMS, email)
• Processing payments and generating invoices
• Syncing with third-party services (e.g., Google Calendar)

2.2 Communication

• Responding to your inquiries and support requests
• Sending important service updates and announcements
• Providing tips, tutorials, and product updates (with your consent)
• Notifying you of security issues affecting your account

2.3 Improvement and Analytics

• Analyzing usage patterns to improve our Service
• Developing new features and functionality
• Conducting research and generating aggregate statistics
• Troubleshooting technical issues

2.4 Security and Compliance

• Detecting and preventing fraud, abuse, and security threats
• Enforcing our Terms of Service
• Complying with legal obligations

2.5 Messaging, Reminders, and Customer Communications

• Sending transactional booking confirmations, reminders, service updates, invoices, quote notifications, and payment-related messages
• Processing opt-out requests and maintaining communication preference records
• Supporting communications that our business users configure or initiate for their customers

2.5.1 SMS/Text Messaging Program

Fieldbookly provides SMS messaging services to service businesses for transactional communications with their customers. This section describes our SMS program practices.

• Consent: End users (customers of businesses using Fieldbookly) opt in to receive SMS messages by providing their phone number and checking the SMS consent checkbox on the online booking page, or by providing verbal, written, or in-person consent directly to the service provider. Consent is recorded with a timestamp and method for compliance purposes.
• Types of Messages: SMS messages sent through Fieldbookly are strictly transactional: appointment confirmations, appointment reminders, service updates, invoice and payment notifications. No promotional or marketing content is sent via SMS.
• Message Frequency: End users will receive approximately 1-3 text messages per appointment booked. Message frequency varies based on the number of appointments scheduled.
• Message and Data Rates: Standard message and data rates may apply depending on your mobile carrier and plan.
• Opt-Out: End users can opt out of SMS messages at any time by replying STOP (or STOPALL, UNSUBSCRIBE, CANCEL, END, QUIT) to any message. Upon receiving an opt-out request, we immediately process the request, send a confirmation message, and block all future SMS messages to that number. The opt-out timestamp is recorded in our database.
• Help: End users can reply HELP to any message to receive help information, including contact details for the service provider.
• Non-Sharing of Mobile Numbers: We do not sell, rent, share, or trade mobile phone numbers or SMS consent information with third parties or affiliates for promotional or marketing purposes. Mobile numbers collected for SMS messaging are used solely for sending transactional messages as described above.
• Carriers: Carriers are not liable for delayed or undelivered messages.

2.6 Marketing and Product Communications

• Sending newsletters, product updates, educational materials, and promotional content where permitted by law
• Measuring campaign performance, site usage, and conversion activity

3. Information Sharing and Disclosure

We do not sell your personal information. We only share your information in the following circumstances:

3.1 Service Providers

We share data with trusted third-party service providers who help us operate Fieldbookly:

• Stripe: Payment processing
• Twilio: SMS notifications and reminders
• SendGrid: Email delivery
• Google Cloud: Cloud hosting and infrastructure
• Google Analytics, Google Tag Manager, and similar analytics or advertising tools: Usage analytics, conversion measurement, and marketing attribution

These providers are contractually obligated to protect your data and use it only for the services they provide to us.

3.2 Google Calendar Integration

If you connect your Google Calendar, we access calendar data to sync appointments between Fieldbookly and your calendar. We use Google user data only to provide calendar-related features that you request, such as creating, updating, displaying, or removing synced calendar events. We do not use Google Calendar data for advertising, do not sell Google user data, and do not access unrelated Google services through this integration. If we materially change how Google user data is accessed, used, stored, or shared, we will update our disclosures as required.

3.3 Legal Requirements

We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

3.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change and your choices regarding your data.

4. Data Security

We implement administrative, technical, and organizational safeguards designed to protect personal information:

• Encryption in transit: We use HTTPS/TLS for data transmitted to and from the Service
• Access controls: We limit access to personal information based on role and business need
• Password security: Passwords are stored using one-way hashing
• Vendor and infrastructure controls: We rely in part on security features provided by our cloud and service providers
• Monitoring and review: We monitor the Service and review incidents, vulnerabilities, and operational risks on an ongoing basis

No system is completely secure, and we cannot guarantee absolute security. We will respond to security incidents in accordance with applicable law and our internal procedures.

5. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Essential Cookies: Keep you logged in and remember your preferences
• Analytics Cookies: Understand how users interact with our Service, including through Google Analytics or similar tools
• Advertising and Attribution Technologies: Measure ad performance, conversion activity, and campaign attribution where enabled
• Performance Cookies: Monitor and improve site performance

You can control cookies through your browser settings and, where available, consent controls we provide. Disabling essential cookies may affect your ability to use certain features.

6. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your personal data
• Portability: Export your data in a machine-readable format
• Restriction: Limit how we process your data
• Objection: Object to certain processing activities
• Withdraw Consent: Withdraw consent for marketing communications

To exercise these rights, contact us at privacy@fieldbookly.com. We will respond within 30 days.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide you services. Specifically:

• Account Data: Retained while your account is active
• Booking Records: Retained for 7 years for legal and tax purposes
• Payment Records: Retained for 7 years per financial regulations
• Usage Logs: Retained for 90 days

When you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required for legal, accounting, or security purposes.

8. International Data Transfers

Fieldbookly is based in Canada. Your data is primarily stored and processed in Canada. If you are located outside Canada, your data may be transferred to and processed in Canada or other jurisdictions where our service providers operate. We use Standard Contractual Clauses and other safeguards to ensure adequate protection for international transfers in compliance with PIPEDA and applicable privacy laws.

9. Children's Privacy

Fieldbookly is not intended for children under 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will delete it promptly.

10. Canadian Privacy Rights (PIPEDA)

As a Canadian company, we comply with the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy legislation. Under Canadian privacy law, you have the right to:

• Access your personal information held by us
• Request correction of inaccurate personal information
• Withdraw consent for certain uses of your information
• File a complaint with the Office of the Privacy Commissioner of Canada

11. California Privacy Rights (CCPA)

If you are a California resident, you may have additional rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act:

• Right to know what personal information we collect and how it's used
• Right to know the categories of sources from which personal information is collected and the categories of third parties to whom it is disclosed
• Right to delete your personal information
• Right to correct inaccurate personal information
• Right to opt-out of the sale of personal information (we do not sell data)
• Right to limit certain uses of sensitive personal information where applicable
• Right to non-discrimination for exercising your privacy rights

At or before the point of collection, we may provide additional notices describing the categories of personal information collected, the purposes for which that information is used, whether it is disclosed to service providers or contractors, and our retention practices.

12. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), UK, or Switzerland, you have rights under the General Data Protection Regulation (GDPR):

• Legal bases for processing may include consent, contract performance, legitimate interests, and compliance with legal obligations, depending on the context
• Right to lodge a complaint with your local data protection authority
• Right to data portability
• Right to restrict or object to processing

When we process customer data on behalf of our business users, those business users are generally the controllers of that data and Fieldbookly generally acts as their processor or service provider. Data subjects may need to direct certain requests to the relevant business user.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through an in-app notification at least 30 days before the changes take effect. The "Last updated" date at the top indicates when this policy was last revised.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Privacy Inquiries: privacy@fieldbookly.com
• General Support: support@fieldbookly.com
• Data Protection Officer: dpo@fieldbookly.com

We aim to respond to all inquiries within 30 days.