Privacy Policy for Timely Booking App

Last updated: February 26, 2026

Introduction

Welcome to Timely! This privacy policy describes how Timely ("we", "us", or "our") collects, uses, and discloses your personal information when you use our mobile booking application (the "App") and the services provided through the App.

We respect your privacy and are committed to protecting your personal data. This privacy policy will inform you about how we look after your personal data when you use our App and tell you about your privacy rights and how the law protects you.

1. Important Information and Who We Are

1.1 Purpose of This Privacy Policy

This privacy policy aims to give you information on how Timely collects and processes your personal data through your use of this App, including any data you may provide when you book services, register as a service provider, or contact us.

1.2 Data Controller

Timely is the data controller and responsible for your personal data. If you have any questions about this privacy policy, please contact us at:

Email: privacy@timelyapp.com
Address: Airport Roundabout, Kumasi Ghana

1.3 Key Definitions

• User: Any individual using the Timely app to book services
• Service Provider: Businesses or individuals offering services through the Timely platform
• Personal Data: Any information relating to an identified or identifiable natural person

2. The Data We Collect About You

We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:

2.1 Information Collected From All Users

Identity Data: Includes first name, last name, username or similar identifier.

Contact Data: Includes email address, telephone numbers, and billing addresses.

Technical Data: Includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, operating system and platform, and other technology on the devices you use to access this App.

Profile Data: Includes your username and password, bookings made by you, preferences, feedback, and survey responses.

Usage Data: Includes information about how you use our App, products and services.

Marketing and Communications Data: Includes your preferences in receiving marketing from us and our third parties and your communication preferences.

2.2 Location Data (Service Providers)

When you use the location features in our App as a service provider, we collect precise geolocation data (latitude and longitude coordinates) to:

• Set and save your shop location in our Firestore database
• Enable users to get directions to your location
• Provide location-based services

We collect this information only when you grant us permission to access your device's location. You can withdraw this permission at any time through your device settings.

2.3 Information Collected From Service Providers

If you register as a service provider, we collect additional information including:

• Business name and address
• Working days and hours
• Service offerings and pricing
• Business images/photos

2.4 Information Collected From Users (Customers)

When you book services through our App, we collect:

• Your name and contact information
• Booking dates and times
• Service preferences

2.5 Information Collected Automatically

We automatically collect certain technical data when you visit our App, including:

• Device information (hardware model, operating system version)
• Unique device identifiers
• Mobile network information
• App usage statistics
• IP address

2.6 Third-Party Data Collection

We use third-party services that may collect information about you:

• Google Maps API: For location services and directions
• Firebase/Firestore: For data storage and authentication
• Analytics services: To understand how users interact with our App

3. How We Collect Your Personal Data

3.1 Direct Interactions

You may give us your Identity, Contact, and Profile Data by filling in forms or by corresponding with us by phone, email, or otherwise. This includes personal data you provide when you:

• Create an account
• Book a service
• Register as a service provider
• Set your shop location
• Request marketing to be sent to you
• Give us feedback

3.2 Automated Technologies or Interactions

As you interact with our App, we automatically collect Technical Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies and other similar technologies.

3.3 Third Parties or Publicly Available Sources

We may receive personal data about you from various third parties including:

• Technical Data from analytics providers
• Contact and Transaction Data from payment processing providers
• Identity and Contact Data from social media platforms when you choose to connect your account

4. How We Use Your Personal Data

4.1 For All Users

• To register you as a new user
• To manage our relationship with you
• To enable you to use our booking services
• To administer and protect our business and this App
• To deliver relevant App content and measure effectiveness
• To use data analytics to improve our App, products, services, and user experience

4.2 Specifically for Service Providers

• To save and store your shop location coordinates in our database
• To display your location to users for directions
• To manage your service listings and availability

4.3 Specifically for Users

• To process your bookings and appointments
• To provide directions to service provider locations using Google Maps
• To send booking confirmations and reminders
• To handle cancellations and modifications

4.4 Legal Basis for Processing

Under data protection laws, we are required to have a valid legal basis to process your personal data. Our legal bases include:

• Performance of a contract: Where we need to perform the contract we are about to enter into or have entered into with you
• Consent: Where you have given us explicit consent (for example, to collect location data)
• Legitimate interests: Where it is necessary for our legitimate interests and your interests and fundamental rights do not override those interests
• Legal obligation: Where we need to comply with a legal obligation

5. Cookies and Tracking Technologies

Our App uses cookies and similar tracking technologies to track activity on our App and hold certain information. Cookies are files with small amount of data which may include an anonymous unique identifier.

We use the following types of cookies:

• Essential cookies: Required for the App to function properly
• Preference cookies: Enable the App to remember information that changes the way the App behaves
• Analytics cookies: Help us understand how users interact with the App

You can instruct your device to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our App.

6. How We Share Your Personal Data

6.1 Service Providers

We engage third-party service providers to facilitate our App, provide services on our behalf, or assist us in analyzing how our App is used. These third parties include:

• Cloud service providers (Firebase/Google Cloud Platform) to store your data
• Analytics providers to help us improve our App
• Map service providers (Google Maps) to provide location and direction services

6.2 Between Users and Service Providers

When you make a booking through our App, we share relevant booking information (name, contact details, booking time) with the service provider to facilitate the appointment.

6.3 Legal Requirements

We may disclose your personal data if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

6.4 Business Transfers

If we are involved in a merger, acquisition, or asset sale, your personal data may be transferred. We will provide notice before your personal data is transferred and becomes subject to a different privacy policy.

6.5 With Your Consent

We may disclose your personal information for any other purpose with your explicit consent.

7. International Data Transfers

Your information, including personal data, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.

If you are located outside Ghana and choose to provide information to us, please note that we transfer the data to USA and process it there.

Your consent to this privacy policy followed by your submission of such information represents your agreement to that transfer.

8. Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments
• Access controls and authentication procedures
• Secure data storage through Firebase/Firestore

We follow industry-standard practices to protect your personal information. However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

9. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

9.1 Retention Periods

• Account information: Retained for as long as you have an active account with us
• Booking records: Retained for [X years] to maintain booking history and for legal purposes
• Location data: Retained as part of service provider profiles until you request deletion
• Usage data: Retained for shorter periods, except when used to strengthen security or improve functionality

To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process your data, and applicable legal requirements.

10. Your Legal Rights

10.1 Right to Access

You have the right to request access to your personal data (commonly known as a "data subject access request"). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.

10.2 Right to Correction

You have the right to request correction of the personal data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected.

10.3 Right to Erasure (Right to be Forgotten)

You have the right to request erasure of your personal data where there is no good reason for us continuing to process it. This includes the right to ask us to delete or remove your personal data where you have exercised your right to object to processing.

10.4 Right to Restrict Processing

You have the right to request restriction of processing of your personal data in certain circumstances.

10.5 Right to Data Portability

You have the right to request that we transfer your personal data to you or to a third party in a structured, commonly used, machine-readable format.

10.6 Right to Object

You have the right to object to processing of your personal data where we are relying on a legitimate interest and there is something about your particular situation which makes you want to object to processing on this ground.

10.7 Right to Withdraw Consent

You have the right to withdraw your consent at any time where we are relying on consent to process your personal data. This includes withdrawing consent for location data collection.

10.8 Account Deletion

You have the right to request deletion of your account at any time. You can do this by:

• Accessing your account settings within the App
• Contacting us directly at privacy@timelyapp.com

Upon account deletion, we will delete or anonymize your personal data, unless we need to retain certain information for legitimate business purposes or legal obligations.

11. Children's Privacy

Our App is not intended for children under the age of 13 (or 16 in certain jurisdictions). We do not knowingly collect personally identifiable information from children under 13. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us. If we become aware that we have collected personal data from a child without verification of parental consent, we take steps to remove that information from our servers.

12. Third-Party Links and Services

Our App may contain links to other websites or services that are not operated by us. This privacy policy does not cover how those third parties process your information. We strongly advise you to review the privacy policy of every site or service you visit.

We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

13. Changes to This Privacy Policy

We may update our privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the "Last updated" date at the top of this privacy policy.

We will let you know via email and/or a prominent notice on our App prior to the change becoming effective. You are advised to review this privacy policy periodically for any changes. Changes to this privacy policy are effective when they are posted on this page.

14. Your California Privacy Rights (For California Residents)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

• Right to know what personal information we collect, use, disclose, and sell
• Right to request deletion of your personal information
• Right to opt-out of the sale or sharing of your personal information
• Right to correct inaccurate personal information
• Right to limit use and disclosure of sensitive personal information
• Right to non-discrimination for exercising your CCPA rights

We do not sell your personal information. To exercise your California privacy rights, please contact us using the information provided below.

15. Your GDPR Rights (For European Economic Area Residents)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

• The right to lodge a complaint with a supervisory authority
• The right to be informed about any automated decision-making and profiling
• Additional information about international data transfers and safeguards

We process your data based on the legal bases outlined in Section 4.4 of this policy.

16. Specific App Permissions

16.1 Location Permission

Our App requests access to your device's location:

• For service providers: To capture and save your shop location coordinates in Firestore
• For users: To provide accurate directions to service provider locations via Google Maps

We only access your location when you grant permission and for the specific purposes described. You can revoke this permission at any time through your device settings.

16.2 Camera Permission

We may request camera access to allow you to:

• Upload profile photos
• Capture images of services or locations

16.3 Storage Permission

We may request storage access to:

• Save and upload images
• Cache app data for improved performance

17. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us:

By email: privacy@timelyapp.com
By phone: +233244032237

Data Protection Officer

We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy policy. If you have any questions, please contact the DPO using the details above.

18. Complaints

You have the right to make a complaint at any time to your local data protection authority. We would, however, appreciate the chance to deal with your concerns before you approach them, so please contact us in the first instance.

Appendix A: Third-Party Service Providers

This privacy policy was last updated on February 26, 2026.