Privacy Policy

At Bookliya, we are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

By using our reservation application, you agree to the collection and use of information in accordance with this policy.

The data controller responsible for your personal data is:

Name: [XXXX]

Address: [XXXX]

Contact Email: [XXXX]

Contact Phone: [XXXX]

What Data We Collect

We collect and process the following personal data for the sole purpose of managing your bookings and reservations:

• Name: To identify you and personalize your reservation
• Phone Number: To contact you regarding your reservation and send confirmations
• Email Address: To send booking confirmations and important updates about your reservation

Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contractual Necessity: Processing is necessary to fulfill our reservation services
• Legitimate Interest: To manage and improve our booking system
• Consent: Where you have given explicit consent for specific processing activities

How We Use Your Data

Your personal data is used exclusively for:

• Creating and managing your reservations
• Sending booking confirmations and reminders
• Communicating important updates about your reservation
• Providing customer support
• Improving our services based on aggregated, anonymized data

To provide our services effectively, we work with carefully selected third-party service providers who process your data on our behalf:

Resend (Email Service Provider)

We use Resend as our technical provider to send reservation confirmation emails and other transactional communications. Resend processes your email address and name solely for the purpose of delivering these messages.

Resend is committed to data protection and complies with applicable privacy regulations. Your data is transmitted securely and is not used by Resend for any purpose other than sending emails on our behalf.

Data Processing Agreements

We have established data processing agreements with all third-party providers to ensure they handle your data in compliance with GDPR and maintain appropriate security measures.

Important: We do not sell, rent, or share your personal data with third parties for marketing purposes.

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations.

Retention Periods

• Active Reservations: Data is kept for the duration of your reservation and for a reasonable period afterward to handle any follow-up inquiries or issues
• Completed Reservations: Data may be retained for up to [XXXX months/years] after the reservation date for customer service, accounting, and legal compliance purposes
• Cancelled Reservations: Data is deleted within [XXXX days] after cancellation, unless retention is required for legitimate business or legal reasons

After the retention period expires, your personal data will be securely deleted or anonymized so that it can no longer be associated with you.

Under the General Data Protection Regulation (GDPR), you have the following rights regarding your personal data:

• Right of Access: You have the right to request a copy of the personal data we hold about you
• Right to Rectification: You can request that we correct any inaccurate or incomplete personal data
• Right to Erasure ("Right to be Forgotten"): You can request that we delete your personal data, subject to certain legal exceptions
• Right to Restriction of Processing: You can request that we limit how we use your personal data in certain circumstances
• Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format
• Right to Object: You can object to the processing of your personal data in certain situations
• Right to Withdraw Consent: Where processing is based on consent, you can withdraw your consent at any time

How to Exercise Your Rights

To exercise any of these rights, please contact us at:

We will respond to your request within 30 days of receipt. If we need additional time, we will inform you of the reason for the delay.

Right to Lodge a Complaint

If you believe that your data protection rights have been violated, you have the right to lodge a complaint with your local data protection authority.

Our application uses cookies and similar tracking technologies to ensure proper functionality and enhance your user experience.

Essential Cookies

We use essential cookies that are strictly necessary for the application to function properly. These cookies enable core functionality such as:

• Session management and authentication
• Security features and fraud prevention
• Remembering your preferences during your session
• Enabling reservation functionality

These essential cookies do not require your consent as they are necessary for the application to work. Without these cookies, certain features of our service cannot be provided.

Cookie Duration

Most essential cookies are session cookies that are deleted when you close your browser. Some cookies may persist for a limited time to maintain your preferences across sessions.

Managing Cookies

You can configure your browser to refuse cookies or to alert you when cookies are being sent. However, please note that disabling essential cookies may prevent you from using certain features of our application.

We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect it against unauthorized access, alteration, disclosure, or destruction.

Security Measures Include:

• Encryption of data in transit and at rest
• Secure authentication and access controls
• Regular security assessments and updates
• Limited access to personal data on a need-to-know basis
• Employee training on data protection and security

While we strive to protect your personal data, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to using industry-standard practices to safeguard your information.

Your personal data may be transferred to and processed in countries outside of your country of residence, including countries that may not have the same level of data protection as your jurisdiction.

When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions recognizing equivalent data protection standards
• Other legally recognized transfer mechanisms

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately so we can delete such information.

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. We will notify you of any material changes by:

• Posting the updated policy on this page
• Updating the "Last Updated" date below
• Sending you an email notification (for significant changes)

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We are committed to resolving any privacy concerns you may have and will respond to your inquiry as promptly as possible.