Privacy Policy

This policy explains how the skedoli app processes personal data when you browse the site, create an account, sign in, make bookings or use platform features.

For LGPD and, where applicable, GDPR purposes, the service operator behind skedoli acts as the party responsible for the processing described here. If you need to exercise privacy rights, please use the official support channels made available on the website or within the app.

We may collect account and identification data such as name, email address, phone number, language, profile information and any other information you submit while registering or using the service.

We also process authentication and session data, including login identifiers, tokens, session cookies, technical logs, approximate IP information, browser type, device information, operating system and events required for security and app functionality.

When you use the service to book or manage appointments, we may process booking-related data such as selected service, professional, establishment, date, time, notes, booking status and related history.

We process personal data to create and manage accounts, authenticate users, enable bookings, maintain service history, display relevant account information and deliver the services requested by users.

Data may also be used for support, customer requests, fraud prevention, account security, troubleshooting, maintenance, product improvement and compliance with legal, regulatory and judicial obligations.

Where LGPD or GDPR applies, processing may rely on performance of a contract or pre-contractual measures, compliance with legal obligations, exercise of rights in legal proceedings and legitimate interests related to security, abuse prevention and product improvement.

If a specific activity requires consent, consent may be requested separately. Where consent is the legal basis, it may be withdrawn subject to legal limits and the impact on features that depend on that processing.

We use third-party providers that are necessary to operate the service. This includes Supabase, which is used for authentication, storage and database operations related to users, profiles, sessions and bookings.

We also use Vercel for hosting, app delivery and technical log processing associated with platform operation. These providers act as processors or sub-processors and only process data as technically necessary for the service.

We may also disclose data where necessary to comply with law, court orders or regulatory requests, to exercise legal rights or to protect platform security, integrity and fraud prevention efforts.

The app uses cookies, local storage and similar technologies to keep users signed in, remember preferences such as language and ensure the technical operation of pages and authentication flows.

At this time, third-party analytics tools are not described as a core production component of the published platform. If measurement, analytics or advertising technologies are introduced later, this policy will be updated accordingly.

You can manage cookies through your browser settings, but disabling essential cookies may affect sign-in, session persistence and other basic service features.

We keep personal data only for as long as necessary to fulfill the purposes described in this policy, provide the service, resolve disputes, maintain security and comply with legal, tax, regulatory and audit obligations.

When an account is closed or a valid deletion request is received, data may be deleted, anonymized or retained for the period required by law or justified by legitimate security, fraud prevention or legal defense needs.

Under LGPD and, where applicable, GDPR, you may request confirmation of processing, access to data, correction of inaccurate or outdated information, anonymization, blocking, deletion, portability and information about sharing practices.

Where processing is based on consent, you may also request withdrawal of consent. Users located in the European Economic Area may also, where applicable, object to processing and lodge a complaint with the competent supervisory authority.

Because we rely on infrastructure and processing providers that may operate in multiple countries, personal data may be stored or processed outside the user's country, including environments associated with Supabase and Vercel.

When international transfers occur, we seek to adopt reasonable contractual, technical and organizational safeguards intended to provide an adequate level of protection under applicable law.

We adopt reasonable technical and organizational measures to protect personal data against unauthorized access, loss, destruction, alteration or improper disclosure, including HTTPS, authentication controls and restricted access practices.

No internet-connected environment is entirely risk-free, so users should also keep their credentials confidential and access the platform through secure means.

This policy may be updated to reflect legal, regulatory, technical or operational changes. The current version will remain available on this page together with the date of the latest update.

For questions about this policy, privacy-related requests or the exercise of data subject rights, please use the official support channels presented on the website or in the app.

Before using this page as the final Google Play privacy policy URL, the team should confirm which permanent privacy contact channel will be publicly maintained.