Privacy Policy
Last updated: June 3, 2026
1. Who we are
Baru Booking ("Baru", "we", "us") operates the Baru Booking marketplace at barubooking.com and the Baru mobile apps (collectively, the "Service").
2. Information we collect
- Account data: name, email, phone, optional avatar, language, location, and authentication identifiers (including Google OAuth identifiers if you sign in with Google).
- Provider data: business name, services, address, photos, verification documents, and business contact information.
- Bookings and messages: the content of bookings, requests, in-app messages, and reviews you submit.
- Payment data: processed by Stripe. We never store full card numbers.
- Device and usage data: approximate location (if you grant permission), device type, app version, and basic analytics needed to operate the Service.
3. How we use your information
- To create and maintain your account and verify your identity.
- To enable bookings, messaging, payments, and reviews between customers and providers.
- To send transactional emails (booking confirmations, password resets, security alerts).
- To detect, prevent, and respond to fraud, abuse, and safety issues.
- To improve and secure the Service.
4. Sharing
We share data only with processors that help us run the Service:
- Supabase — database, authentication, and storage hosting.
- Stripe — payment processing and subscriptions.
- Resend — transactional email delivery.
- Google — OAuth sign-in (only when you choose it).
We do not sell your personal information. We may disclose information when legally required or to protect the rights, property, or safety of Baru, our users, or the public.
5. Your rights
You may access, correct, export, or delete your personal information at any time:
- Edit your profile on the Profile page.
- Permanently delete your account on the Delete Account page.
- Email privacy@barubooking.com for any other request.
6. Retention
We retain account and booking data while your account is active. After account deletion we remove personal information and anonymize records we are legally or operationally required to keep (such as financial records, fraud-prevention logs, and audit trails).
7. Security
We use industry-standard safeguards including encryption in transit, hashed passwords, row-level access controls, and least-privilege server roles. No system is perfectly secure; please use a strong password and keep it private.
8. Children
The Service is not directed to children under 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect data from children.
9. International users
Your information may be processed in countries other than where you live. We rely on standard contractual safeguards where required.
10. Changes to this policy
We will post material changes here and update the "Last updated" date. Continued use of the Service after changes means you accept the updated policy.
11. Contact
Questions? Email privacy@barubooking.com.