Last updated: February 2026
Slottify is an online appointment management platform that acts as a data processor on behalf of the businesses (tenants) that use the service. Each business is responsible for their clients' data.
When making a booking, the following data is collected: - Full name (required) - Phone number (required) - Email address (optional, only if the client provides it) Phone and email data are stored in encrypted form (AES-256-GCM). Phone numbers are additionally hashed for blocking features.
Personal data is used exclusively to: - Manage and confirm booked appointments - Send email notifications (confirmation, reminder, cancellation) if the client provides their email - Prevent system abuse (blocking malicious users) - Generate anonymous usage statistics for the business
Data processing is based on user consent when making a booking. Email is completely optional and requires explicit client consent. Users can unsubscribe from email communications at any time via the link included in each email.
In accordance with GDPR, users have the right to: - Access: request what personal data is stored - Rectification: correct inaccurate data - Erasure: request deletion of their data - Objection: object to the processing of their data - Portability: receive their data in a structured format To exercise these rights, contact the business where you made your booking directly.
Slottify uses essential technical cookies for site functionality (e.g. session, security) and optional analytics cookies. A consent banner is shown on first access; analytics cookies are only set if you accept. If you accept, we use Google Analytics. Google may set cookies such as _ga (2 years), _gid (24 hours) and _gat (1 minute) to measure usage. We enable IP anonymisation so your full IP is not stored. You can accept or reject analytics cookies in the banner; rejecting them does not affect site functionality. For more details, see Google's policy: https://policies.google.com/technologies/cookies.
Booking data is retained for the time necessary to provide the service and comply with legal obligations. Data of clients who have unsubscribed from email communications is retained only in hashed form to respect their unsubscribe preference.
We implement technical and organizational security measures to protect personal data, including AES-256-GCM encryption, HTTPS communications, access auditing, and access attempt rate limiting.
We reserve the right to update this privacy policy. Changes will be published on this page with the update date.
Slottify maintains a public directory of beauty, hair and wellness businesses in Spain. This directory includes factual public information (name, address, phone, opening hours and services) obtained from public sources. If you are the owner of a listed business and wish to: - Claim your profile and manage your data: register for free at slottify.es - Request removal of your business from the directory: contact us via WhatsApp at +34 643 49 22 62 We will handle your request within 72 hours, in accordance with GDPR.