Privacy Policy
Version: 2026-02-27
1. Data We Process
We process account information (name, email, login activity), clinic configuration data, and operational booking data required to provide Appointa services.
2. Purpose and Legal Basis
We process data to provide contracted services, secure accounts, meet legal obligations, and improve product reliability. Where required, we rely on consent and legitimate interests as legal bases.
3. GDPR Roles
Clinics using Appointa are typically data controllers for patient/client data. Appointa acts as data processor and processes data only on documented instructions from the clinic, except where law requires otherwise.
4. Data Retention
We retain personal data only as long as necessary for service delivery, legal obligations, dispute resolution, and security auditing.
5. Data Subject Rights
Subject to applicable law, you may request access, correction, deletion, portability, restriction, or objection to processing. You may also lodge a complaint with your data protection authority.
6. Cross-border Transfers
Where data is transferred internationally, we apply appropriate safeguards, such as contractual protections and security controls.
7. Contact and Requests
To submit privacy requests, contact privacy@easyappointa.com.