Privacy Policy

Account & Business Information

• Your name, email address, and phone number
• Your business name, address, category, and service details
• Login credentials (passwords are stored only as secure cryptographic hashes — we never see your plain-text password)
• Subscription plan, billing history, and payment references
• Business settings, operating hours, and branding assets you upload

Booking & Customer Information

• Customer names, phone numbers, and email addresses provided at the time of booking
• Appointment details — services selected, dates, times, prices, and assigned staff
• Addon selections, booking notes, and cancellation/reschedule history
• Staff records, roles, permissions, schedules, and clock-in/clock-out attendance logs

Usage & Device Information

• Pages visited, features used, and actions taken within the dashboard and booking pages
• Device type, browser, operating system, and IP address for security and analytics
• Approximate location derived from IP address (not precise GPS)
• Cookies and similar tracking technologies (see Cookies section below)
• Payment references from our payment processor — we never store full card numbers or mobile money credentials

Communications

• Messages you send to our support team
• Feedback, survey responses, or feature requests you submit

We use the information we collect to:

• Provide, operate, and improve the Yemame Reserve platform
• Send appointment confirmations, reminders, and notifications to you and your customers
• Process onboarding fees, subscription renewals, and SMS credit purchases
• Generate business reports, insights, and analytics for your account
• Detect and prevent fraud, abuse, and security incidents
• Verify your identity and comply with legal obligations
• Respond to support requests and communicate important account or service updates
• Enforce our Terms of Service

Legal Basis

We process your personal data on the basis of: (a) the performance of a contract — to deliver the Service you signed up for; (b) legitimate interests — to secure the platform, prevent abuse, and improve our product; and (c) your consent — where you have explicitly opted in (e.g. marketing communications).

We do not sell, rent, or trade your personal data. We share information only with the trusted service providers needed to operate the platform:

• Cloud infrastructure providers — for secure data hosting, storage, and authentication
• Payment processors — to handle onboarding fees, subscriptions, and credit purchases securely
• SMS delivery providers — to send appointment reminders and notifications on your behalf
• Push notification services — to deliver in-app and mobile alerts
• Analytics providers — aggregated, anonymised usage data only to help us improve the product

Other Disclosures

We may also disclose information: (a) where required by applicable law, court order, or regulatory authority; (b) to protect the rights, safety, or property of Yemame, our users, or the public; (c) in connection with a merger, acquisition, or sale of assets, in which case we will notify you before your data is transferred and becomes subject to a different privacy policy.

We protect your data with industry-standard security measures, including:

• TLS/HTTPS encryption for all data transmitted between your device and our servers
• Database-level access controls that enforce strict data isolation between accounts
• Secure credential hashing — plain-text passwords and PINs are never stored
• Token-based session management with short-lived access tokens
• Regular security reviews of our platform and third-party dependencies

While no system is completely immune to risk, we work continuously to keep your data safe. You are responsible for keeping your account password and staff PINs confidential and for notifying us immediately of any suspected unauthorized access.

We use cookies and similar technologies to keep you signed in, remember your preferences, and understand how the Service is used. Types of cookies we set:

• Strictly necessary cookies — required for authentication and core platform functionality; these cannot be disabled
• Analytics cookies — help us understand usage patterns so we can improve the product; data is aggregated and anonymised
• Preference cookies — remember your settings (e.g. active business selection)

You can control non-essential cookies through your browser settings. Note that disabling cookies may affect the functionality of certain parts of the platform.

We retain your data for as long as your account is active and as needed to provide the Service. Specific retention periods:

• Account and business data — kept for the lifetime of your account and up to 90 days after deletion
• Booking and customer records — retained for a minimum of 12 months to support business continuity, then deleted unless legally required to keep longer
• Payment records and invoices — retained for 7 years to comply with financial record-keeping obligations
• Usage logs and analytics — retained for up to 24 months in aggregated form

When you delete your account or request data deletion, we will remove or anonymise your personal data within 30 days, except where we are required by law to retain certain records.

Depending on your location, you may have the right to:

• Access — request a copy of the personal information we hold about you
• Rectification — request correction of inaccurate or incomplete data
• Erasure — request deletion of your account and associated personal data
• Portability — export your business and customer data in a machine-readable format
• Restriction — request that we limit how we process your data in certain circumstances
• Objection — object to processing based on legitimate interests
• Withdraw consent — where processing is based on your consent, you may withdraw it at any time without affecting prior processing

To exercise any of these rights, contact us via WhatsApp or email. We will respond within 30 days. We may need to verify your identity before processing the request.

When you use Yemame Reserve to send appointment reminders or notifications, messages are delivered to the phone numbers your customers provide at the time of booking. As the business owner, you are responsible for:

• Ensuring you have a lawful basis to contact your customers (e.g. their consent to receive booking-related SMS)
• Accurately representing your business, services, and pricing in messages
• Honouring opt-out requests — customers who reply STOP to an SMS must not receive further messages
• Complying with applicable telecommunications and anti-spam laws in your jurisdiction

Yemame acts as a processor for messaging on your behalf. You remain the data controller for your customers' contact information.

Yemame Reserve is intended for use by businesses and adults aged 18 and over. We do not knowingly collect personal information from anyone under 18. If you believe we have inadvertently collected data from a minor, please contact us immediately and we will delete it.

Yemame Reserve is operated from Ghana and uses cloud infrastructure that may store and process data in various regions globally. By using the Service, you acknowledge that your data may be transferred to and processed in countries outside your own. We take reasonable steps to ensure any such transfers are subject to appropriate safeguards.

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will notify you of material changes via the dashboard or by email at least 14 days before they take effect. Your continued use of the Service after the effective date constitutes acceptance of the updated policy. If you do not agree with the changes, you may delete your account before they take effect.