Privacy Policy

Effective date: April 24, 2026
Last updated: April 24, 2026

This Privacy Policy describes how YAKIR B SYSTEMS ("we", "us", or "our") collects, uses, stores, and shares information in connection with the APPOINTEMP platform (the "Service") — an appointment scheduling and business management SaaS available through our website and partner integrations.

By using the Service, you agree to the practices described in this Policy. If you do not agree, please do not use the Service.

1. Who We Are

The data controller responsible for your information is:

• Name: YAKIR B SYSTEMS
• Product: APPOINTEMP
• Based in: Israel
• Email: support@appointemp.com
• Phone: +972-50-574-5907

Full registered business address is available upon verified request and is provided to regulators, verification partners, and competent authorities where required by law.

2. Summary

APPOINTEMP serves two types of users: (a) business owners and their staff who use the platform to manage their business ("Business Users"), and (b) end customers of those businesses who book appointments ("End Customers"). We collect only the information necessary to provide scheduling, communication, and related business management features. We do not sell personal data, and we do not use personal data for advertising.

3. Information We Collect

3.1 Information from Business Users

• Account details: business name, owner name, contact email, phone number.
• Business configuration: services offered, pricing, working hours, staff members, branding, and uploaded images.
• Authentication data: WhatsApp-based login identifiers and session tokens.
• Usage data: login events, actions taken within the platform, feature usage.

3.2 Information from End Customers

• Identification: name and phone number used to book appointments.
• Appointment data: the services booked, chosen staff member, date, time, and any notes provided.
• Communication metadata: confirmations, reminders, and cancellations tied to the appointment.

3.3 Technical Information

• Device and browser information (user agent, screen size).
• IP address and approximate location, used for security and abuse prevention.
• Log data from our backend infrastructure (Google Firebase).

4. How We Use Your Information

We use the information described above to:

• Provide the core scheduling, booking, and calendar features of the Service.
• Authenticate users via WhatsApp-based one-time codes.
• Send appointment confirmations, reminders, and status updates.
• Enable Business Users to communicate with their End Customers.
• Maintain the security and integrity of the Service, including rate limiting and abuse detection.
• Generate aggregated analytics and usage statistics for Business Users and for platform improvement.
• Comply with legal obligations and enforce our Terms of Service.

5. WhatsApp Business API and Messaging

APPOINTEMP integrates with the WhatsApp Business Platform (operated by Meta Platforms Ireland Limited) to authenticate users and to deliver transactional notifications related to appointments. Messaging in APPOINTEMP is strictly opt-in and user-initiated — we do not send unsolicited or marketing messages under any circumstances.

5.1 Opt-In Model

A WhatsApp message is only ever sent to a user after that user has taken an explicit action to initiate contact with our service:

• Authentication (reverse OTP): users log in by sending a WhatsApp message from their own device to our business number. Only in response to that user-initiated message do we reply with a one-time code. No authentication message is ever sent without the user having messaged us first.
• Self-booked appointments: when an End Customer books an appointment through the platform, they do so through a logged-in session that they themselves initiated, which constitutes their active consent to receive transactional messages related to that appointment (confirmations, reminders, and status updates for the specific appointment they booked).
• Admin-created appointments: when a Business User creates an appointment on behalf of an End Customer, no message is sent to that End Customer until the End Customer logs in through the reverse-OTP flow described above and confirms the appointment themselves. An unconfirmed admin-created appointment does not generate reminders or notifications to the customer.

5.2 Types of Messages

• One-time authentication codes (sent only in response to a user-initiated login request).
• Appointment confirmations, reminders, and cancellation or rescheduling notices, tied to a specific appointment the user has confirmed.

We do not send marketing messages, promotional content, newsletters, or broadcasts through WhatsApp.

5.3 Data Shared with Meta

When a message is sent, the recipient's phone number, the message content (typically generated from a pre-approved template), and related delivery metadata are processed by Meta in order to deliver the message. Meta's handling of this data is governed by its own policies, including the WhatsApp Privacy Policy and the WhatsApp Business Messaging Policy.

5.4 Stopping Messages

Because messaging is strictly tied to appointments the user has actively confirmed, a user can stop all future messages at any time by cancelling the relevant appointment, logging out, or contacting us at support@appointemp.com to request deletion of their record. A user may also reply "STOP" on WhatsApp at any time, and no further messages will be sent to that number.

6. Third-Party Services We Use

We rely on the following trusted service providers to operate the platform. These providers process data on our behalf, under their own privacy and security commitments:

• Google Firebase (Google LLC / Google Ireland Ltd.) — hosting, database (Firestore), authentication backend, cloud functions, and file storage. Data is stored in Google's data centers, primarily in the me-west1 (Tel Aviv) region.
• Meta Platforms Ireland Limited — delivery of WhatsApp messages via the WhatsApp Business Platform.

We do not sell personal data, and we do not share it with third parties for their own marketing purposes.

7. Data Retention

We retain personal data only for as long as necessary for the purposes described in this Policy:

• Business User accounts: retained while the account is active, and for up to 12 months after account closure, to allow reactivation and to comply with tax and accounting obligations.
• End Customer records: retained by the Business User who owns the relationship. Business Users may delete End Customer records at any time.
• Appointment history: retained for up to 24 months for reporting and analytics purposes.
• Authentication session data: retained only for the duration of the session and short-term audit logs.

8. Security

We implement reasonable technical and organizational measures to protect personal data, including encryption in transit (HTTPS/TLS), role-based access controls within Firestore, Firebase Security Rules, rate limiting, and secure password/token handling. No system is completely secure, and we cannot guarantee absolute security.

9. Your Rights

Subject to applicable law (including the Israeli Privacy Protection Law, 5741-1981, and, where applicable, the EU General Data Protection Regulation), you have the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate data.
• Request deletion of your data, subject to legal exceptions.
• Object to or restrict certain processing.
• Withdraw consent for optional processing at any time.
• Lodge a complaint with the Israeli Privacy Protection Authority or another competent supervisory authority.

To exercise any of these rights, contact us at support@appointemp.com.

10. International Data Transfers

Our infrastructure is hosted primarily in Google's me-west1 (Tel Aviv, Israel) region. However, some data may be processed outside Israel by our service providers (for example, Meta's message delivery infrastructure). Where data is transferred outside your country, we rely on the service providers' standard safeguards, including contractual protections and compliance with applicable data transfer frameworks.

11. Cookies and Similar Technologies

The APPOINTEMP platform uses only essential storage (such as local storage and session cookies) needed to keep you signed in and to operate the Service. We do not use advertising cookies or third-party tracking pixels on the marketing website.

12. Children's Privacy

APPOINTEMP is intended for use by businesses and their customers who are at least 18 years old, or the age of legal majority in their jurisdiction. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can delete it.

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of the page. Material changes will be communicated through the Service or by email where appropriate.

14. Contact Us

For any privacy-related question or request, please contact:

• YAKIR B SYSTEMS
• Email: support@appointemp.com
• Phone: +972-50-574-5907