Booking Magician Logo

Booking Magician — Privacy Policy

Last Updated: August 28, 2025

This Privacy Policy explains how Booking Magician LLC (“Booking Magician,” “we,” “us,” “our”) collects, uses, discloses, and safeguards personal information when you use bookingmagician.com, our applications, and related services (the “Service”). By using the Service, you acknowledge this Policy. If you do not agree, do not use the Service.

Contact: help@bookingmagician.com
Address: Booking Magician LLC, 3400 Cottage Way, Ste G2 #20396, Sacramento, CA 95825, USA

Note: The Service is intended for adults 18 years and older. We do not knowingly permit minors to use the Service.

1) Who We Are and Roles

  • Controller: Booking Magician LLC.
  • No Data Protection Officer appointed.
  • EU/UK/Swiss Representative: If we appoint a representative under GDPR/UK GDPR/Swiss FADP Art. 27, we will update this Policy with their contact details.

2) Scope

This Policy applies to personal information we process about users, site visitors, and affiliates worldwide. Region‑specific notices appear in Sections 11–12.

3) Information We Collect

  • Account and Contact: name, email address, password (hashed), phone number (for alerts/SMS), country/region (if provided).
  • Alert Preferences and Usage: restaurants or platforms you monitor, dates/times/party size, alert delivery settings, logs of alerts sent, and in‑product activity.
  • Device/Technical: IP address, device identifiers, browser type/version, OS, referrer, and server logs.
  • Cookies/Tracking: identifiers stored via cookies, pixels, SDKs, and similar technologies. See Section 7.
  • Communications: your emails or messages to us; marketing preferences; support records.
  • Payments: processed by Stripe. We do not collect or store full payment card details; we may receive limited metadata (e.g., last4, card brand, billing country), payment status, and subscription identifiers.
  • Affiliates: for program participants, PromoteKit/PayPal identifiers, payout details, and referral metrics; tax status where required by law.

We do not intentionally collect “sensitive” personal data as defined by many laws.

4) Sources of Information

  • Directly from you (account setup, preferences, communications).
  • Automatically via the Service (cookies, pixels, SDKs, logs, analytics).
  • Third parties (e.g., Stripe for payments metadata; PromoteKit for affiliate attribution; PayPal for payouts; analytics/ads partners as described).

5) How We Use Information (Purposes and Legal Bases)

  • Provide and operate the Service (including alerts, account functions, support): Contract; Legitimate Interests.
  • Communicate about the Service, including transactional emails/SMS (e.g., security, alerts, notices): Contract; Legitimate Interests; and where required, Consent.
  • Marketing communications by email/SMS when you opt in: Consent; you may withdraw at any time.
  • Analytics, performance, and personalization (e.g., GA4): Legitimate Interests; in EEA/UK/CH for non‑essential cookies/SDKs, Consent.
  • Security, fraud prevention, and enforcement of Terms: Legitimate Interests; Legal Obligation.
  • Legal compliance and defense: Legal Obligation; Legitimate Interests.

6) SMS and Email Programs

  • Transactional communications necessary to provide the Service may be sent via email and/or SMS.
  • Marketing Emails/SMS are sent only with your explicit consent (single optional checkbox at signup or via account settings).
    • SMS Program: Sent from our toll‑free number via Twilio. Recurring messages; message/data rates may apply. Reply STOP to cancel, HELP for help. Consent is not a condition of purchase or use. US users: we comply with TCPA/CTIA.
    • Email Program: Sent via SendGrid. Unsubscribe at any time via the link in our marketing emails.
  • Consent Records: We maintain logs of marketing consent/opt‑out (timestamp, disclosure text, channel, identifiers).
  • Preference Management: Manage marketing preferences in your account. Transactional communications are necessary for the Service.

7) Cookies, Analytics, and Advertising

  • Tools We Use: Google Analytics 4 (GA4), Google Tag/Ads technologies, and Meta Pixel. These may set cookies or similar identifiers to measure usage and, for ads pixels, support ad measurement and personalization.
  • Consent in EEA/UK/CH: We obtain your consent before placing non‑essential cookies or using similar technologies. If you do not consent, we will not deploy non‑essential tags. You may change preferences at any time via our Cookie Settings.
  • CPRA “Share”: Our use of certain ads/analytics pixels may constitute “sharing” for cross‑context behavioral advertising. See Section 11 for opt‑out rights and Global Privacy Control (GPC) handling.
  • Managing Cookies: Use your browser settings and our Cookie Settings to manage preferences. We recommend enabling GA4 Consent Mode.
    Links:
  • Do Not Sell or Share My Personal Information: /Do-Not-Sell-Or-Share
  • Cookie Settings (CMP): /cookie-settings

8) Disclosure of Personal Information

We disclose personal information to:

  • Service Providers/Processors: Twilio (SMS), SendGrid (email), Stripe (payments), DigitalOcean (hosting), Cloudflare (CDN/security), analytics/ads partners (Google, Meta), and similar vendors under contract.
  • Affiliates Program: PromoteKit (attribution/management) and PayPal (payouts).
  • Legal and Compliance: to comply with law, enforce our Terms, protect rights, or respond to lawful requests.
  • Business Transfers: related to mergers, acquisitions, financing, or asset sales, subject to this Policy.

We do not sell personal information for money. In jurisdictions such as California, certain analytics/ads disclosures may be deemed a “sale” or “share” of identifiers; you may opt out (see Section 11).

9) Data Security and Retention

  • Security: We employ technical and organizational measures appropriate to the risk. No system is 100% secure.
  • Retention: We retain personal information as long as necessary to provide the Service and for legitimate and legal purposes. Typical defaults:
    • Account data: for the life of the account plus up to 24 months.
    • Alert logs and communications metadata (emails/SMS): up to 24 months.
    • Analytics data: per vendor defaults or as configured in our retention settings.
      We may anonymize or aggregate data for analytics and retain it indefinitely.

10) Your Choices

  • Account: Update profile info and alert preferences in your account.
  • Marketing: Unsubscribe from marketing emails via links; reply STOP to marketing SMS; you may revoke consent at any time without affecting prior lawful processing.
  • Cookies/Tracking: Use browser settings and our Cookie Settings (CMP) to manage preferences.
  • Do Not Track/GPC: We honor Global Privacy Control (GPC) where required by law.

11) United States State Privacy Disclosures (incl. California CPRA)

Residents of certain states (e.g., CA, CO, CT, UT, VA) may have rights to: know/access, delete, correct, portability, opt out of sale/share/targeted advertising, and non‑discrimination.

  • Opt‑Out of “Sale/Share” and Targeted Ads: Use our “Do Not Sell or Share My Personal Information” mechanism at /Do-Not-Sell-Or-Share and/or enable GPC in a supported browser.
  • Sensitive Personal Information: We do not use or disclose sensitive personal information for additional purposes requiring a right to limit.
  • Requests and Appeals: Submit requests to help@bookingmagician.com. We may need to verify your identity. Authorized agents may act for you with proof of authority. If we deny a request, you may appeal by replying to our decision; we will respond within applicable timelines.
  • Non‑Discrimination: We will not discriminate against you for exercising your privacy rights.

12) GDPR/UK/Swiss Disclosures (EEA/UK/CH)

  • Controller: Booking Magician LLC (see contact above).
  • Legal Bases: See Section 5. Where we rely on consent, you may withdraw it at any time.
  • Your Rights: access, rectification, erasure, restriction, portability, and objection; lodge a complaint with your local supervisory authority. Contact help@bookingmagician.com to exercise rights.
  • Representative: If we appoint an EU/UK/Swiss representative, we will list contact details here.
  • International Transfers: See Section 13.
  • Children: 18+ only; we do not knowingly process children’s data.

13) International Data Transfers

We are US‑based and may transfer your information to the US and other countries where our vendors operate. We rely on appropriate safeguards, such as Standard Contractual Clauses (SCCs) for EEA/UK/CH transfers, and comparable mechanisms under other laws. Our providers (e.g., Cloudflare, Google, Meta, Stripe, Twilio, SendGrid, DigitalOcean, PromoteKit, PayPal) may process data globally consistent with their policies.

14) Third‑Party Platforms and Restaurants

We are not responsible for third‑party reservation platforms or restaurant policies. Your interactions with them are governed by their own terms and privacy policies.

15) Changes to this Policy

We may update this Policy periodically. If we make material changes, we will notify you by posting the revised Policy and updating the “Last Updated” date, and we may provide additional notice as required by law. Your continued use of the Service after changes take effect constitutes acknowledgment.

16) Contact Us

Booking Magician LLC
3400 Cottage Way, Ste G2 #20396
Sacramento, CA 95825, USA
help@bookingmagician.com

Links (provide on your site/app):

  • Do Not Sell or Share My Personal Information: /Do-Not-Sell-Or-Share
  • Privacy Notice for California Residents: /Privacy-Notice-California
  • Cookie Settings (CMP): /cookie-settings
Privacy Policy|California Privacy Policy|Terms of Service|Do Not Sell or Share My Personal Information