We collect the following personal and business data:

• Account Information: Name, email, professional details, and time zone.
• Workspace Data: Project information, service provider details, appointment records, and client details.
• Usage Data: Log data, analytics, and performance metrics.
• Payment Information: Payment details processed via third-party providers (Stripe).

We collect data to:

• Provide SaaS features (appointment booking, client management, etc.)
• Improve services through analytics and user feedback
• Ensure platform security and fraud prevention
• Process payments and subscriptions

• Data is encrypted at rest and in transit.
• Access is restricted to authorized personnel only.
• Regular security audits are performed.
• We follow data minimization principles.

We use trusted third-party services for:

• Cloud hosting (AWS, GCP)
• Payment processing (Stripe)
• Email delivery
• Analytics and monitoring

Under LGPD, GDPR, and CCPA, users have the right to:

• Access their data
• Correct inaccurate information
• Delete their data
• Opt-out of data processing (CCPA)
• Portability of data

Users may exercise these rights by contacting us at [contact email].

• User data is stored only as long as necessary for service provision.
• Accounts inactive for 2 years will be deleted.
• Payment records are retained per financial regulations.

Data may be transferred to servers outside Brazil, the USA, or Haiti. We ensure protection via:

• Standard Contractual Clauses (SCCs) (GDPR compliance)
• Data Protection Agreements with third-party vendors