Legal · Updated 21 March 2026

Privacy Policy

About this policy

This privacy policy explains how pamprr (“we”, “us”, or “our”) collects, uses, and protects your personal information when you use our website and booking platform at pamprr.me.

We are committed to protecting your privacy and handling your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who we are

pamprr is the data controller for the personal information we collect about you. If you have any questions about how we handle your data, you can contact us at hello@pamprr.me.

Information we collect

Information you provide

  • Account information: your name, email address, and phone number when you create an account
  • Business information: business name, address, services offered, and pricing for business accounts
  • Booking information: service details, appointment times, and preferences
  • Payment information: we use Stripe to process payments securely. We store payment status but never store your card details
  • Communications: messages you send us through our contact form or support channels

Information collected automatically

  • Usage data: how you use our website, including pages visited and time spent
  • Device information: IP address, browser type, device type, and operating system
  • Cookies: please see our Cookie Policy for full details

How we use your information

For customers

  • Create and manage your account
  • Process and manage bookings you make
  • Send booking confirmations and reminders
  • Provide customer support
  • Improve our services
  • Send important account updates

For businesses

  • Provide booking and business management tools
  • Process subscription payments
  • Enable customer bookings and communications
  • Provide analytics and reporting
  • Offer customer support
  • Comply with legal and regulatory requirements

Legal basis for processing

We process your personal data based on the following grounds:

  • Contract: to provide our booking and business management services to you
  • Legitimate interest: to improve our services, prevent fraud, and provide support
  • Consent: for marketing communications and non-essential cookies
  • Legal obligation: to comply with tax, accounting, and other legal requirements

Sharing your information

We only share your information when necessary:

Between users

  • When you book an appointment, we share your contact details with the business you are booking with
  • Businesses can see booking and customer information for their own appointments

Service providers

  • Stripe: payment processing
  • Supabase: database and authentication services
  • Vercel: website hosting and delivery
  • Resend: email delivery services

Legal requirements

We may disclose information if required to do so by law, court order, or other governmental authority.

International transfers

Some of our service providers are located outside the UK and EEA. We ensure appropriate safeguards are in place for any international transfers of personal data, including Standard Contractual Clauses where applicable.

How long we keep your information

  • Account data: until you delete your account, then for 30 days
  • Booking data: 7 years for business records, 2 years for customer convenience
  • Payment data: 7 years for tax and accounting purposes
  • Marketing data: until you unsubscribe or withdraw consent

Your rights

Under UK GDPR, you have the right to:

  • Access: request a copy of the personal data we hold about you
  • Rectification: correct inaccurate or incomplete data
  • Erasure: request deletion of your data in certain circumstances
  • Restrict processing: limit how we use your data
  • Data portability: receive your data in a machine-readable format
  • Object: object to processing based on legitimate interests
  • Withdraw consent: where processing is based on your consent

To exercise any of these rights, please contact us at hello@pamprr.me or use your account settings.

Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encryption of data in transit and at rest, access controls, and regular security assessments.

Children

Our services are not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us immediately.

Changes to this policy

We may update this privacy policy from time to time. We will notify you of any material changes by email or through a notice on our website. Your continued use of our services following any changes indicates your acceptance of the updated policy.

Contact us

If you have questions about this privacy policy or how we handle your personal data:

  • Email: hello@pamprr.me

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not handled your personal data properly. You can contact the ICO at ico.org.uk.