Privacy
CrownBooked collects the data needed to run bookings, providers, and payment support.
This policy explains the current product data map for customers and providers. It is an operational policy draft and should be reviewed by counsel before broad public rollout.
Account data
CrownBooked may store account identifiers, names, email addresses, phone numbers, profile details, roles, preferences, and authentication metadata needed to run customer and provider accounts.
Booking data
The platform may store appointment requests, confirmed bookings, service selections, prices, timestamps, cancellation history, no-show records, customer notes, and provider notes needed to support the booking workflow.
Provider applications
Provider onboarding may include business names, service menus, locations, specialties, profile photos, social links, application answers, approval status, and future verification materials.
Payments
Stripe or another payment processor may process card details, billing information, receipts, fraud checks, disputes, refunds, and payout records. CrownBooked should not store full card numbers.
Messages and support
Support requests, dispute evidence, customer/provider communications, moderation notes, and operational email records may be stored to resolve booking issues and protect the platform.
Security and analytics
CrownBooked may process logs, device/browser metadata, IP-derived signals, abuse-prevention signals, audit logs, and aggregate analytics to secure and improve the service.
Sponsors and affiliates
CrownBooked may use clearly labeled sponsored placements or affiliate links. Display ads should stay feature-flagged and should not interrupt the search, profile, booking, or provider onboarding flow.
Vendors and subprocessors
| Clerk | Authentication and account management |
|---|---|
| Stripe | Payments, refunds, disputes, receipts, and payouts |
| Resend | Transactional email and operational notices |
| Render or hosting provider | Application hosting, logs, and infrastructure |
| Database provider | Application records, booking data, and provider data |
Retention and choices
CrownBooked should retain customer, provider, booking, payment, and support records only as long as needed for operations, accounting, fraud prevention, dispute resolution, legal compliance, and platform safety.
Customers and providers should be able to request account access, correction, or deletion through support, subject to records that must be retained for payment, tax, dispute, fraud-prevention, or legal reasons.
CrownBooked should not sell personal data. If advertising, remarketing, or additional analytics tools are added later, this policy should be updated before those tools are enabled.