Privacy Policy

Last Updated: January 15, 2025

Jesers Platform ("we", "us", or "our") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, store, and protect your information when you use our platform.

1. Information We Collect

We collect the following types of information when you use our platform:

  • Email address (for authentication and communication)
  • First and last name (from your profile or OAuth provider)
  • Profile picture URL (when using OAuth authentication)
  • Password (encrypted, only if you choose password authentication)
  • Booking information (appointment details, service selections)

2. How We Use Your Information

We use your personal information for the following purposes:

  • User authentication and account management
  • Creating and maintaining your user profile
  • Managing your bookings and appointments
  • Sending booking confirmations and reminders
  • Improving our services and user experience

3. How We Store Your Data

We take data security seriously and implement industry-standard protection measures:

  • All data transmitted between your browser and our servers is encrypted using HTTPS/TLS
  • Your data is stored in a secure database with strict access controls and encryption at rest
  • Passwords are encrypted using BCrypt hashing (we never store plain text passwords)
  • OAuth tokens are encrypted using AES-256-GCM encryption

4. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you services. You may delete your account at any time, which will permanently remove your personal data from our systems within 30 days. Booking history may be retained for legal and accounting purposes as required by law.

5. Your Rights

You have the following rights regarding your personal data:

  • Access your personal data through your account settings
  • Modify your profile information at any time
  • Delete your account and all associated data
  • Request a copy of your data (data portability)
  • Unlink OAuth providers (Google, Facebook) from your account

6. Third-Party Sharing

We do not sell, trade, or rent your personal information to third parties. We do not share your data with third parties for marketing purposes.

When you use OAuth authentication (Google, Facebook), we only receive the information necessary for authentication (email, name, profile picture) as authorized by you. We do not have access to your OAuth provider password.

7. Contact Us

If you have questions or concerns about this privacy policy or how we handle your data, please contact us:

8. Cookies and Session Management

We use session cookies to maintain your login state and provide core functionality. These cookies are essential for the platform to work and are deleted when you log out or your session expires. We do not use tracking cookies or third-party advertising cookies.

9. Changes to This Privacy Policy

We may update this privacy policy from time to time. We will notify you of any significant changes by posting the new privacy policy on this page and updating the "Last Updated" date. Your continued use of the platform after changes indicates your acceptance of the updated policy.