Privacy Policy
Last updated: January 1, 1970
BusinessBuddy ("we", "us", "our") provides software that helps local businesses manage customers, appointments, automated messaging, and review requests. This Privacy Policy explains how we collect, use, store, and disclose information when you use our service.
1. Information we collect
- Account information: name, email, business details you provide on sign-up or onboarding.
- Customer data you upload: the names, phone numbers, emails, birthdays, appointment history, and notes you add about your own customers.
- Appointment data: services, times, employee assignments, and statuses you create inside the platform.
- Usage data: pages viewed, features used, device and browser information.
- Billing data: handled by our payment processor Stripe (see "Payments" below).
2. How we handle customer and appointment information
Customer and appointment data you upload is yours. We process it on your behalf solely to provide the BusinessBuddy service to you — for example, to send the SMS messages you configure, schedule appointments, or display your customer list inside your account. We do not sell customer data and we do not share it with advertisers.
3. SMS communications & Twilio disclosure
BusinessBuddy sends SMS messages to your customers on your behalf using Twilio as our messaging provider. Phone numbers and message contents you submit are transmitted to Twilio for delivery in accordance with Twilio's Privacy Policy.
SMS program disclosure: Customers may receive appointment reminders, appointment updates, customer service messages, and review requests. Message frequency varies. Message and data rates may apply. Reply STOP to opt out or HELP for assistance.
Business responsibility for consent: You are responsible for obtaining prior express written consent from each customer before any SMS is sent to them, and for complying with applicable laws (including TCPA in the United States, CTIA guidelines, and equivalent local laws). BusinessBuddy honors STOP/UNSUBSCRIBE requests automatically and provides per-customer opt-out controls inside the platform. See our SMS Compliance page for details.
4. Payments & Stripe disclosure
Subscription billing is handled by Stripe. When you subscribe, your payment details are submitted directly to Stripe and processed under Stripe's Privacy Policy. We do not store full card numbers, CVCs, or bank details on our servers — we only retain a Stripe customer reference and the subscription status needed to operate your account.
5. Data storage and security
Your data is stored on secure cloud infrastructure with row-level security policies that restrict access to your account. We use industry-standard encryption in transit (HTTPS/TLS) and at rest, restrict employee access on a need-to-know basis, and review access logs regularly. No system is perfectly secure, and you remain responsible for keeping your account credentials safe.
6. Analytics and cookies
We use first-party cookies and basic analytics to understand how the product is used, improve performance, and keep you signed in. We do not use third-party advertising trackers. You can disable cookies in your browser, though parts of the product may stop working.
7. Sharing
We share data only with infrastructure providers strictly necessary to run the service (Stripe for payments, our database/hosting provider, and Twilio for SMS delivery), or when required by law. SMS opt-out and consent records are retained for compliance purposes.
8. Your rights
You can access, export, or delete your data at any time from inside your account or by emailing us. Deleting your account deletes the customer records you stored with us, subject to limited retention required for legal, billing, or compliance reasons.
9. Contact
Questions about this policy or your data? Email support@businessbuddyautomation.com or use our contact form.