1. Who we are
FlexiBooking is a product operated by FlexiBooking S.r.l. (the "Company"), with registered office in Italy. References to "we", "us" or "our" mean the Company.
2. Data we collect
Account data (name, email, company), usage data (pages visited, features used), and any data you submit through forms (demo requests, contact messages). When you embed FlexiBooking in your WordPress site, we process the booking data your end-customers provide on your behalf, as a data processor.
3. Why we process it
To provide and improve the service, to answer your questions, to comply with legal obligations, and — only with your consent — to send marketing communications. We never sell your data.
4. Legal bases (GDPR)
Contractual necessity (to deliver the service), legitimate interest (to keep the service safe and improve it), legal obligation (tax, accounting), and consent (for marketing and non-essential cookies).
5. Sharing with sub-processors
We use a limited set of audited sub-processors for hosting, email, analytics and payments. The current list is available on request and updated in our DPA.
6. Retention
We keep account data for the duration of the contract, plus a limited retention period required for tax and legal compliance. Inactive marketing leads are deleted after 24 months.
7. Your rights
Access, rectification, deletion, restriction, portability and objection. To exercise any of them, write to privacy@flexibooking.com. You also have the right to lodge a complaint with your local data protection authority.
8. International transfers
When data is transferred outside the EEA, we rely on Standard Contractual Clauses (SCCs) and equivalent safeguards.
9. Contact
Questions about this policy? Email privacy@flexibooking.com.