Privacy Policy

By accessing or using the Service, the Client confirms that they have reviewed and accepted the terms set out in this Privacy Policy.

Automations Lab LLC – QuicklyBooked

Last updated: 10th December, 2025

Welcome to the Privacy Policy of Automations Lab LLC, operating under the brand QuicklyBooked (“QuicklyBooked”, “we”, “us”, “our”).

This Privacy Policy explains how we collect, use, disclose, and protect personal data when:

  • you visit or interact with our website and marketing pages (“Website”), and/or

  • you use the QuicklyBooked booking and scheduling platform (“Service” or “Platform”).

We believe in transparency and clear communication. Please read this Privacy Policy carefully.

If you do not agree with this Privacy Policy, you should not use the Website or the Service.

If you have questions, you can contact us at:

Automations Lab LLC

30 N Gould St Ste N

Sheridan, WY 82801, USA

Email: support@quicklybooked.app

Any capitalised term not defined in this Privacy Policy will have the meaning given to it in our Terms of Service.

1. Definitions

For the purposes of this Privacy Policy:

  • “Consent” means a freely given, specific, informed and unambiguous indication of the Data Subject’s wishes by which they agree to the processing of personal data.
  • “Cookies” are small text files placed on your device by a website, used to store information such as preferences, session identifiers, and analytics data.
  • “Controller” means the entity that determines the purposes and means of the processing of personal data.
  • “Data Subject” or “you” means any natural person whose personal data is processed.
  • “Client” means the business or individual who subscribes to and configures a QuicklyBooked account to manage bookings and services.
  • “Staff” or “Employee” means any individual (employee, contractor, consultant) added by a Client to the Service in order to deliver services to their customers.
  • “Customer” or “End Customer” means an individual booking or receiving services from a Client through the QuicklyBooked Platform.
  • “GDPR” refers to the General Data Protection Regulation (EU) 2016/679.
  • “Personal Data” or “Data” means any information relating to an identified or identifiable natural person. This may include names, contact details, identifiers, and information relating to professional activity. Anonymous information that cannot reasonably be linked to an individual is not considered personal data.
  • “Processing” means any operation performed on personal data, such as collection, storage, use, disclosure, alteration, or deletion.
  • “Processor” means an entity that processes personal data on behalf of a Controller.
  • “External Services” means third-party tools and platforms integrated with the Service (e.g. payment processors, calendar services, communication tools, analytics).

2. Data Controller and Data Processor

Depending on the context, Automations Lab LLC may act as:

  • a Data Controller, and/or
  • a Data Processor.

2.1 Automations Lab LLC as Data Controller

We act as a Data Controller when we:

  • collect and process data about Clients, visitors and prospects via our Website and Service;
  • manage Client accounts and subscriptions;
  • send product updates, support communications, and marketing communications (where permitted);
  • analyse usage of our Website and Platform for security, performance, and product improvement.

In these cases, we decide why and how personal data is processed and are responsible for safeguarding that data.

If you wish to exercise any Data Subject rights in relation to processing where we act as Controller, you may contact us at:

support@quicklybooked.app

2.2 Automations Lab LLC as Data Processor

We act as a Data Processor when Clients use QuicklyBooked to process personal data about their own Staff and Customers. In that context:

  • The Client is the Data Controller;
  • We process Customer and Staff data strictly on behalf of the Client and in accordance with their instructions, our Terms of Service, and any data processing agreement in place.

Examples include:

  • booking and managing appointments;
  • sending notifications and reminders;
  • syncing calendars;
  • recording services, history, and basic customer notes.

If you are an End Customer or Staff member and have questions about how your data is used within a particular business’ booking system, you should contact the relevant Client (your service provider or employer), who is the primary Data Controller for that data.

3. What Data We Process and When

We collect and receive personal data in several ways:

  • Data you provide directly (e.g. account setup, support requests);
  • Data provided by a Client about their Staff and Customers;
  • Data collected automatically via Cookies and similar technologies.

3.1 Data We Collect as Controller

3.1.1 Account and Profile Data (Clients)

When you create a Client account or trial, we may collect:

  • Business name and business URL;
  • Name and surname;
  • Business email address;
  • Login credentials (email + password – password stored in hashed form);
  • Profile photo (optional);
  • Company-related details (industry, location, size, etc., if provided).

Purpose:

To create, maintain, and secure your Client account and provide you with access to the Service.

Legal basis:

Performance of a contract (providing the Service) and our legitimate interest in operating a secure SaaS platform.

Retention:

For as long as the account is active and for a period required by law or necessary for record-keeping after closure.

3.1.2 Billing and Payment Data

If you subscribe to a paid plan, limited payment information may be processed via our payment processors (e.g. name, billing address, partial card details, transaction IDs). Full card data is handled by third-party payment processors, not stored by us.

Purpose:

To process payments, manage subscriptions, and comply with financial and tax obligations.

Legal basis:

Performance of a contract and compliance with legal obligations.

Retention:

For the duration of the contractual relationship and for a period required by accounting, tax, and financial regulations.

3.1.3 Communication and Support Data

When you contact us (e.g. via email, in-app support, or forms), we may collect:

  • Name;
  • Email address;
  • Content of your message;
  • Additional details you choose to share.

Purpose:

To respond to your inquiries, provide support, and improve our Service.

Legal basis:

Performance of a contract (where related to Service usage) and/or your consent or our legitimate interest in responding to enquiries.

Retention:

For as long as reasonably necessary to handle your request and maintain records, or until consent is withdrawn where applicable.

3.1.4 Marketing and Newsletter Data

If you opt-in to receive marketing communications or newsletters, we process:

  • Your email address;

  • Basic engagement metrics (e.g. opens, clicks).

Purpose:

To send product news, updates, promotions, and educational content.

Legal basis:

Your consent (where required by law) or our legitimate interest in promoting our services to existing customers.

You may unsubscribe at any time using the link in the email.

Retention:

Your consent (where required by law) or our legitimate interest in promoting our services to existing customers.

3.1.5 Automatically Collected Data (Cookies, Analytics, Usage Logs)

When you access the Website or Service, we may automatically collect:

  • IP address and approximate location;
  • Device and browser type;
  • Operating system;
  • Time zone;
  • Referring URLs;
  • Pages viewed, features used, and time spent;
  • Actions taken in the interface (e.g. navigation events, error logs).

We use Cookies and similar technologies for:

  • maintaining sessions and security;
  • remembering preferences;
  • analytics and product improvement;
  • optional marketing and remarketing (where lawful).

For more detail, see our Cookie Policy (if/when you publish one).

Purpose:

To operate, secure, and improve the Website and Service.

Legal basis:

Our legitimate interest in running and improving a secure SaaS product; consent where required for non-essential cookies.

Retention:

Cookies have varying lifespans; logs and analytics data are kept only as long as necessary for these purposes.

3.2 Data We Process as Processor (on behalf of Clients)

When a Client uses QuicklyBooked, we process personal data about their Staff and Customers on their behalf.

3.2.1 Staff Data (Employees/Contractors)

The Client may provide and manage:

  • Staff name and surname;
  • Email address;
  • Phone number;
  • Profile photo and description (optional);
  • Working hours, days off, special days
  • Assigned services and locations.

Staff may also create their own login and update their profile.

If integrated, Staff may connect external calendars (e.g. Google Calendar, Outlook, Apple Calendar) for syncing appointments. Our integration typically:

  • checks event time and free/busy status;
  • may access event titles for conflict detection;
  • does not require reading private event content beyond what is necessary for sync.

Staff may disconnect calendar integrations at any time.

We process this data to enable the Client to manage schedules, resources, and appointments.

3.2.2 Customer / End-Customer Data

To handle appointments, Clients may collect and store via QuicklyBooked:

  • First name and surname;
  • Email address;
  • Phone number;
  • Appointment history (number of appointments, last appointment, services used);
  • Preferred staff or services;
  • Notes or descriptions (where added by the Client);
  • Optional additional fields (e.g. gender, date of birth, if configured by Client).

Customers may book as a Guest or as a Registered Customer (creating a login).

Customers may also choose to add appointments to external calendars (Google/Outlook/Apple) through available integrations.

We process this data to:

  • create and manage bookings;
  • send confirmations and reminders;
  • allow Clients to manage and track their customer interactions.

Email communications such as reminders and follow-ups may be sent on behalf of the Client.

Unsubscribe options are provided where required.

3.2.3 Third-Party Integrations

QuicklyBooked may integrate with External Services such as:

  • communication tools (email/SMS/WhatsApp providers, Zoom);
  • payment gateways (e.g. Stripe, PayPal, others selected by Client);
  • calendar services (Google, Outlook, Apple);
  • automation tools (e.g. Zapier, etc.).

To use these integrations, the Client or user must typically maintain their own accounts with those third parties.

Processing of personal data via these External Services is governed by their respective privacy policies.

4. What We Do Not Do

Automations Lab LLC / QuicklyBooked will not:

  • sell personal data to third parties;
  • share personal data with unauthorised marketers;
  • process personal data in ways incompatible with this Privacy Policy or applicable law.

5. Personal Data Security

We implement administrative, technical, and organisational measures designed to protect personal data from unauthorised access, disclosure, alteration, or destruction.

These measures may include:

  • access controls and authentication;
  • encrypted transmission (TLS/HTTPS);
  • encryption of data at rest where appropriate;
  • firewalls and network security;
  • regular backups;
  • staff training and confidentiality controls;
  • vendor due diligence for third-party processors.

Access to personal data is limited to authorised personnel and service providers who require it to perform their tasks.

You are responsible for keeping your password secure and for any activity under your account. If you believe your credentials have been compromised, you must notify us immediately.

Please note: standard email communication is not fully secure. Do not send highly sensitive information to us via email.

6. Sharing of Your Personal Data

We may share personal data with:

  • Third-Party Processors that provide services on our behalf (e.g. hosting providers, email service providers, analytics tools, payment processors, communication platforms);
  • Professional advisers, such as accountants, auditors, or legal counsel;
  • Authorities or law enforcement, where required by law, subpoena, court order, or to prevent fraud or abuse;
  • Successors or acquirers, in connection with a merger, acquisition, financing, or sale of all or part of our business or assets.

We use due diligence and data protection clauses in our contracts with processors to ensure they provide appropriate safeguards and only process data according to our instructions.

If you require more specific information about categories of processors relevant to your account, you may contact us at support@quicklybooked.app

7. International Transfers

We may store and process personal data in the United States and other countries where we or our service providers operate.

Where data protection laws (such as the GDPR) require specific safeguards for transferring personal data outside the relevant jurisdiction, we will take appropriate measures, which may include:

  • transferring to countries recognised as providing an adequate level of protection;
  • using Standard Contractual Clauses or equivalent safeguards with our processors;
  • relying on other lawful transfer mechanisms where appropriate.

If you require further information on cross-border transfer safeguards, you may contact us.

8. Data Retention

We retain personal data for as long as necessary to:

  • provide the Service;
  • comply with legal, tax, and accounting obligations;
  • resolve disputes and enforce our agreements;
  • support legitimate business interests (security, fraud prevention, etc.).

Retention periods vary depending on the type of data and processing purpose.

When data is no longer required, we will delete or anonymise it, unless we are legally required or permitted to keep it longer (for example, for the establishment, exercise, or defence of legal claims).

Where we act as Processor, retention of Staff and Customer data is primarily determined by the Client (Controller). When a Client instructs us to delete certain data and such request is consistent with applicable law and our legal obligations, we will do so.

9. Your Rights

Where applicable law grants you rights in relation to your personal data (e.g. under GDPR or similar frameworks), those may include:

  • Right of Access – to request confirmation whether we process your personal data and obtain a copy.
  • Right to Rectification – to request correction of inaccurate or incomplete data.
  • Right to Erasure – to request deletion of your data in certain circumstances (e.g. where data is no longer necessary, consent is withdrawn, or processing is unlawful).
  • Right to Restriction of Processing – to request limitation of processing while a dispute or verification is ongoing.
  • Right to Data Portability – to receive data you provided to us in a structured, commonly used, machine-readable format, where processing is based on consent or contract and carried out by automated means.
  • Right to Object – to object to processing based on legitimate interests, including profiling, in which case we will cease processing unless we demonstrate compelling legitimate grounds.
  • Right to Withdraw Consent – where processing is based on consent, you may withdraw consent at any time, without affecting the lawfulness of processing prior to withdrawal.
  • Right to Lodge a Complaint – you may lodge a complaint with a relevant supervisory authority if you believe your rights have been violated.

9.1 Exercising Your Rights Where We Are Controller

If we act as Controller (for example, for Client account data, Website usage, or marketing data), you can exercise your rights by contacting:

support@quicklybooked.app

We may need to verify your identity before fulfilling your request. We aim to respond within the timeframes required by applicable law.

9.2 Exercising Rights Where We Are Processor

If your data is processed primarily on behalf of a Client (for example, as a Customer or Staff in the Client’s booking system), we act as Processor and the Client is responsible for handling your Data Subject rights.

In such cases, you should contact the relevant Client (your service provider or employer) directly. If you contact us directly, we may forward your request to the appropriate Client/Controller and follow their instructions, where permitted by law.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in:

  • our Service;
  • our data practices;
  • applicable laws and regulations.

Any changes will be posted on this page with an updated “Last updated” date.

Where required by law, we may also notify you by email or via the Service.

Continued use of the Website or Service after such changes constitutes your acceptance of the updated Privacy Policy.

11. Contact

If you have any questions, concerns, or requests relating to this Privacy Policy or our data processing practices, you can contact:

Automations Lab LLC

30 N Gould St Ste N

Sheridan, WY 82801

Email: support@quicklybooked.app