Privacy Policy

Klicky.ai ("we," "us," or "our") operates the Klicky.ai platform, an appointment booking and WhatsApp notification service for local service businesses. This Privacy Policy explains how we collect, use, store, and protect personal data when you use our website, booking pages, dashboard, and related services.

This policy applies to all users of our platform, including business owners who create accounts and their customers who book appointments through Klicky-powered booking pages.

Business Account Data

When you sign up and use Klicky.ai as a business, we collect:

• Name, email address, and sign-in credentials (for example Google sign-in or email/password)
• Business information: name, type, address, phone number, hours of operation
• Service details: names, durations, and prices
• Business logo and gallery images (stored with our media hosting providers)
• Notification message templates and preferences
• Billing and subscription data (processed by our payment processor as merchant of record)

Customer Booking Data

When a customer books an appointment through a Klicky booking page, we collect:

• Customer name and phone number (WhatsApp number)
• Appointment details: service selected, date, time
• Booking history and status (confirmed, cancelled, rescheduled)

Automatically Collected Data

• Device and browser information
• IP address and general location
• Usage data (pages visited, features used, timestamps)

We use the data we collect to:

• Provide the Klicky.ai platform and its core features (booking pages, appointment management, notifications)
• Send transactional WhatsApp messages: booking confirmations, appointment reminders, and post-appointment follow-ups
• Send transactional emails related to your account
• Generate AI-powered notification message templates during onboarding
• Process subscription payments
• Monitor and improve service quality, including AI-generated content
• Log errors and technical issues to diagnose problems and improve application reliability
• Detect and prevent fraud, abuse, and security incidents
• Comply with legal obligations

We do not sell your personal data to third parties. We do not use customer phone numbers for marketing purposes. All WhatsApp messages sent through Klicky are transactional (appointment-related) in nature.

Under the UK GDPR and EU GDPR, we process personal data on the following legal bases:

• Contract performance: Processing necessary to provide our services (appointment booking, notifications, account management)
• Legitimate interest: Transactional WhatsApp reminders to reduce no-shows, platform security, and service improvement
• Consent: Where required, such as for optional marketing communications or cookies
• Legal obligation: Compliance with applicable laws, tax requirements, and regulatory requests

We work with trusted third-party service providers who process data only as needed to run Klicky.ai. These include providers for:

• Sign-in and account security — authentication and protecting your account
• WhatsApp messaging (Meta) — delivery of appointment-related WhatsApp notifications
• Email delivery — transactional emails about your account
• Media hosting — storage and delivery of business logos and gallery images
• Payments — subscription billing and payment processing (including tax/VAT where applicable)
• AI features— onboarding template suggestions (we send business type and tone preferences only, not your customers' personal data)
• Diagnostics — error and performance logging to improve reliability, stability, and fix issues

These providers maintain their own privacy practices. We may update which providers we use without listing every vendor on this page.

Klicky.ai serves businesses globally, with a focus on regions where WhatsApp is the primary business communication channel (UK, Europe, Middle East, Latin America, Southeast Asia, Africa).

Some of our service providers may process data outside of your country of residence. Where data is transferred internationally, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions where applicable
• Contractual obligations with our service providers

We retain personal data only as long as necessary:

• Account data: Retained for the duration of your active account, plus 30 days after deletion to allow recovery
• Appointment data: Retained for up to 24 months after the appointment date for business reporting purposes
• WhatsApp notification logs: Retained for 12 months for delivery tracking and troubleshooting
• Payment records: Retained as required by applicable tax and financial regulations (typically 7 years)

When data is no longer needed, it is securely deleted or anonymized.

Depending on your location, you have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Rectification: Request correction of inaccurate or incomplete data
• Erasure:Request deletion of your personal data ("right to be forgotten")
• Portability: Request your data in a structured, machine-readable format
• Objection: Object to processing based on legitimate interest
• Restriction: Request that we limit processing of your data
• Withdraw consent: Where processing is based on consent, you may withdraw it at any time

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

We implement appropriate technical and organizational measures to protect personal data, including:

• Encryption of data in transit (TLS/HTTPS) and at rest
• Access controls and role-based permissions
• Error and diagnostic logging to detect issues and improve application reliability
• Industry-standard secure sign-in and session protection
• Environment isolation (separate databases for development, staging, and production)

No system is 100% secure. If we become aware of a data breach that poses a risk to your rights, we will notify you and relevant authorities as required by law.

We use essential cookies required for authentication and platform functionality. We do not use advertising or tracking cookies.

Third-party sign-in or essential service providers may set their own cookies. You can manage cookie preferences through your browser settings.

Klicky.ai is a business-to-business platform and is not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. When we make material changes, we will notify you via email or an in-app notice and update the "Last updated" date at the top of this page. Continued use of the platform after changes constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at:

• Email: [email protected]
• Website: klicky.ai