Home Problem Features How it works
Pricing Support
Legal

Privacy Policy

Last updated: February 2026

This Privacy Policy explains how Klioso (“App”, “Service”) collects, uses, shares, and protects personal data when you use our mobile app, PWA, websites, booking pages, and notification features.

1. Controller (Who we are)

Klioso — Operated by Individual Entrepreneur Hosporian Alina in Ukraine.

Location: Mykolaiv, Ukraine
Contact (privacy & support): support@klioso.app

This Privacy Policy is governed by the laws of Ukraine, with mandatory application of the GDPR for users located in the European Economic Area (EEA) and UK where applicable.

2. Scope

This Policy applies to:

  • Klioso iOS app
  • Klioso PWA / web app and websites (e.g., klioso.app)
  • booking pages accessible via shared links
  • optional notification features (e.g., Telegram reminders)
  • optional calendar features (e.g., add appointment to calendar via ICS)

This Policy does not cover third-party websites/services you may access via links; their privacy policies apply.

3. Roles / Types of users

We process data related to:

  • Professionals (account holders) using Klioso
  • Clients/visitors accessing booking pages via a professional’s link (may be anonymous)

4. Data you provide

Depending on use, you may provide:

  • Name (optional)
  • Email address
  • Phone number
  • Profile photo (optional)
  • Business name and service descriptions (optional)
  • Work address/location (optional)
  • Working hours/availability
  • Service prices
  • Client notes and service history
  • In-app messages/content

5. Data collected automatically

We may collect technical and usage data such as:

  • IP address
  • Device type and operating system version
  • Time zone and system language
  • App/site interaction events (analytics)
  • Crash logs and diagnostics

Identifiers: We may use Apple IDFV for app functionality/diagnostics. We do not use IDFA.

6. Booking pages

Professionals may share booking links. Clients/visitors may provide booking-related data (e.g., name, phone, email, appointment details) to schedule an appointment.

7. Authentication SMS (Firebase)

We may send SMS verification codes for registration/sign-in. These SMS messages are delivered using Google Firebase Authentication and its underlying SMS delivery partners. We process phone numbers and related verification metadata for this purpose. We use third-party providers for SMS delivery. By using verification features, you agree to the processing of phone numbers by these providers for delivery purposes.

8. Notifications and reminders (Telegram and others)

A) Telegram reminders (optional)

If a client starts our Telegram bot @klioso_notify_bot and opts in, the bot can send appointment reminders (for example, 24 hours and 2 hours before the appointment). For this feature we may process and store: Telegram user/chat identifier, appointment date/time and basic appointment context (to generate reminders), time zone (to schedule reminders accurately). Telegram messages are delivered via Telegram. Telegram processes message delivery under Telegram’s policies.

B) Other messaging reminders

Other reminder channels (e.g., WhatsApp) may be offered in the future. If enabled, we will share necessary data with the selected messaging provider (such as phone number, message template/content, and delivery metadata) solely to send reminders.

9. Calendar features (add to calendar via ICS)

If enabled, you can add an appointment to a calendar by downloading/opening a calendar event file or link (e.g., an ICS file). Once you add the event, your calendar app/provider processes it under its own policies. We do not access your calendar and do not synchronize events automatically.

10. Payments & subscriptions (Web/PWA vs iOS)

A) Web/PWA purchases (Merchant of Record)

Payments for subscriptions purchased on our website or Progressive Web App (PWA) are processed by Creem (Creem.io). Creem acts as our Merchant of Record (MoR), meaning they are the authorized reseller and the legal entity responsible for processing your payment, collecting applicable sales taxes (VAT/GST), and ensuring billing compliance. By making a purchase, you agree to Creem's Terms of Service and Privacy Policy.

B) iOS purchases (Apple In-App Purchase)

If you purchase a subscription through our iOS app, the payment is processed by Apple Inc. via In-App Purchase, and Apple’s Media Services Terms and Conditions apply. Subscriptions are managed directly through your Apple ID settings.

C) Payment Security & Data

Payment card data: We do not store or process full payment card details (Credit Card Number, CVV/CVC) on our servers. All sensitive financial data is handled exclusively by our secure payment partners (Creem or Apple). We receive only limited transaction identifiers to provide you with access to the service.

11. Storage & processing (Firebase)

We use Google Firebase (including Authentication and Firestore) to operate the Service. Data may be stored/processed on infrastructure located in the United States and/or Europe, depending on Firebase configuration and user location.

12. Data retention

  • We retain data while your account is active.
  • After you request account deletion, we delete personal data within 30 days, unless retention is required by law or for legitimate purposes (e.g., fraud prevention, accounting where applicable).
  • We may retain limited purchase/transaction references as required for legal or accounting reasons.

13. Sharing with service providers

We may share data with trusted providers strictly to operate the Service, including: Google (Firebase and Google Analytics), Microsoft (Clarity), Apple (for iOS subscriptions), secure payment processors, SMS delivery partners, Telegram (for Telegram reminders), Email/push providers, Messaging providers. We do not sell personal data. We use third-party providers for SMS delivery. By using verification features, you agree to the processing of phone numbers by these providers for delivery purposes.

14. Communications

We may send push notifications, transactional emails, marketing emails (optional), verification SMS, and Telegram bot messages (if you opt in). We may use your contact information to send you reminders regarding incomplete orders or abandoned shopping carts.

15. Cookies & web tracking

On websites/booking pages we use essential cookies, Google Analytics, and Microsoft Clarity to understand how visitors interact with our site through session replays and heatmaps. These tools may collect your IP address and use cookies to track activity. You can opt out by using browser extensions or adjusting your settings.

16. Your rights (GDPR)

Where applicable, you may have the right to access, correct, delete, export your data, object/restrict processing, and withdraw marketing consent. Contact support@klioso.app.

17. Children

Klioso is not intended for individuals under 18. We do not knowingly collect data from minors.

18. Security

We use industry-standard safeguards, including: SSL/TLS encryption in transit, encryption at rest, and access controls.

19. Changes

We may update this Policy. Material changes may be communicated via in-app notice or email.

20. Contact

support@klioso.app