At EasyBook AI AI shpk (referred to as "EasyBook AI", "we", "us" and "our"), we are committed to protecting the privacy of our users. We are the data controller for the personal information we process, in accordance with Albanian data protection law (Law No. 9887, dated 10.3.2008 "On Personal Data Protection" and subsequent amendments) and applicable EU data protection regulations. Please read the following privacy policy that explains how we collect, manage and protect your personal information.
This is the Privacy (and Cookies) Notice ("Notice") for the website www.easybook.ai, and all EasyBook AI affiliate sites ("Sites"), or our applications ("Apps") (together "Services").
If you have any questions, comments and requests regarding this Notice you can get in touch with us via our Contact Us page, or via email at [email protected].
This Privacy Notice will apply to you if:
We will only use the information we collect about you if there is a reason for doing so, and if that reason is permitted under data protection law. We say what these reasons usually are in each section below, and we explain each one under 'What do each of these legal reasons mean?'.
We use your information to provide you with our Services. If you visit any of our Services, whether you're just browsing or you have an account, we will automatically collect information from you each time you use our Sites. This includes technical information, information about your visit and (if you opt-in) location data:
Technical information may include the phone number, Internet Protocol (IP) address, login information, browser type and version, browser plug-in types and versions, device IDs, social log-in ID/email address, time zone setting, operating system and platform, hardware version, device settings (e.g. language and time zone), file & software names and types (associated with your device and/or the Services), battery & signal strength, information relating to your mobile operator or Internet Service Provider (ISP).
Information about your visit may include the full Uniform Resource Locators (URL), clickstream to, through and from our Site (including date and time), pages and services you viewed or searched for, demographic information (including age and gender), page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), traceable campaign links (e.g. in emails, or via tracking URLs), methods used to browse away from the page, and any phone number used to call our customer service number or social media handle used to connect with our customer service team and our social media accounts.
Location data includes country location (based on your full or partial IP address and/or Google Analytics information) which we use to provide location services (if you ask or permit us to), so that we can deliver content, advertising or other services that are dependent on knowing where you are, like checking for fraudulent transactions. Location data may be collected in combination with device ID, so we can recognise your mobile browser or device when you return to the Service.
Delivery of location services will involve us checking any of the following:
- the coordinates (latitude/longitude) of your location,
- your current country or region, by referencing your current IP address against public sources, and/or
- your Identifier for Advertisers (IFA) code for your Apple device, or the Android ID for your Android device, or a similar device identifier.
You can opt-in and out of location sharing by changing your device settings.
If you contact or engage with us, we will collect your contact information, and the other communications information you provide.
Contact information includes basic contact information you provide:
and anything else you include, for example:
Communications information includes your correspondence with us, for example, if you get in touch with our Customer Service team about an order or booking or to report a problem with our Site. This includes:
We use this contact and communications information to:
Reasons: contract with you | legitimate interests | consent
When you create an EasyBook AI account using any of our Services, we may collect your:
As you use your account, we may collect information about your:
We use this account and related information to manage your account with us, including to:
Reasons: contract with you | legitimate interests
You may provide Partners with consultation, order, and booking information (like the date and time of your appointment). Partners may also ask you, via consultation forms on our Services, for health information (for example, if you are pregnant) or other sensitive information (called "special category data").
You may opt-in to receive marketing from a Partner. Partners may also upload their own customer information to EasyBook AI, including to use our Services to send marketing (EasyBook AI will not use this uploaded information for its own purposes). Partners are responsible for their own marketing.
The Partner is the data controller for this information. If you have any questions, please contact the relevant Partner.
When you order any products from a Partner's shop, we may collect your:
We use your account and order information to enable our Partners to fulfil and manage your orders, including to:
Reasons: contract with you | legitimate interests | consent
If you work for our Partner (e.g. as an employee, contractor, or worker), we may collect contact and company information from you:
Contact information may include:
Company information may include:
We also process other information on behalf of your company that is not personal data (for example, financial data and product inventory)
We use this contact and company information to manage the Partner's account with us, including to:
Reasons: contract with you | legitimate interests
The Partner can access and manage your EasyBook AI account details. Partners may also control what information Clients can see about the Partner, including order or booking information, staff names, and certain profile information, offers, ratings, and reviews (which may talk about staff members), prices and discounts, appointment availability, and related data.
The Partner you work for is the data controller for this information. If you have any questions, please contact the Partner you work for.
We may collect contact information (as explained above), like your name and email address.
We may also collect marketing preferences, which are our records of what information you would or would not like to receive from us, and if you have opted out of any direct marketing.
We use this contact and marketing preference information to:
You can opt-out of further marketing at any time by selecting the "unsubscribe" link at the end of all our promotional updates.
Reasons: legitimate interests | consent
We must have a relevant legal justification, called a 'lawful basis' for each way in which we use your personal information.
Lawful bases may include consent, a contract with you (as a data subject), compliance with our legal obligations, and our specified legitimate interests.
We'll use your personal information to send you promotional or marketing content (for example, our insight updates or newsletters), if you have given us consent to us doing so, where required by law. We may also send direct marketing based on our legitimate interests (see below).
You can opt-out of further marketing at any time by selecting the "unsubscribe" link at the end of all our promotional updates and marketing to you.
We also rely on consent for some of the cookies we use (see our Cookies Notice for more detail).
We collect, store, and process your personal information if it is necessary for performing a contract you have with us (for example, our Terms of Use and Terms of Service), or where you have asked us to take specific steps before entering into that contract. This includes notifying you about changes to our Services. This does not include any agreement we have with a Partner, whether you are a Booker or Partner staff – this is based on our legitimate interests (see below).
We may need to process any of your personal information to comply with our legal obligations, including under applicable Albanian law, EU regulations, and/or any court orders. This may include compliance with know-your-client and anti-money laundering rules.
We may process your personal information if it is necessary for our legitimate interests or the legitimate interests of a third party, provided those interests are not outweighed by your rights and interests.
Our legitimate interests include:
In each case, these legitimate interests are only valid if they are not outweighed by your rights and interests. If you would like further information about how we assess our legitimate interests, please contact us at [email protected].
We also use different types of cookies on our Site – we explain this in the Cookies Notice.
We will share your information with our Partners if you have asked us to (for example, if you want to connect with, order from, or make a booking with one of our Partners). We may share your contact and account information, and they will receive any other information you provide through EasyBook AI (for example, completing a Partner's consultation form). Partners may use this information to manage your communications, orders, and bookings with them.
If you leave a public review for a Partner (or any of their products in their shop on our Services), your rating, review, review date, and first name and last initial will be published on EasyBook AI. Other EasyBook AI users and members of the public may be able to see your reviews. Reviews may be published or syndicated on third-party websites. Public reviews will survive the termination or expiry of the EasyBook AI Terms of Service.
EasyBook AI users may rate the Partner you work at or for, and may rate you as an individual. Your individual ratings may be shared with the relevant Partner, and may be publicly available on our Services.
We may publish limited Partner information (including individual and business public reviews and ratings) to other websites, for example, so it can be included in search results or advertising (including online and offline advertising and promotional media, including, but not limited to Google, Google AdWords, Facebook Ads, Twitter, email distribution lists, and third-party business partners and affiliates).
We may also share your information with:
EasyBook AI operates globally, including in the United States, Canada, United Kingdom, Australia, the United Arab Emirates, Netherlands, and other countries in the European Economic Area ("EEA"). We generally don't share personal data between group companies.
We may transfer your personal information outside Albania and the European Economic Area (EEA):
We will put legal protections in place to safeguard personal data transfers in compliance with Albanian data protection law and applicable EU data protection regulations.
We may transfer your personal information outside Albania and the EEA, including to the key organizations listed here.
We update our partners and service providers as we grow, and will update this Notice regularly. For more information about how we currently transfer and protect data, please contact [email protected].
All information you provide to us is securely stored. Our website uses secure end-to-end encryption to protect your information. All connections into our platform are secured using industry-standard security and encryption.
All data we capture is stored in secured databases and data storage systems with strict access limitations. All data access requests are logged and monitored in accordance with any threat detection policies.
Unfortunately, the transmission of information via the internet is not completely secure. We do our best to protect your personal information, but we cannot guarantee the security of your data transmitted to us – even if there is a special notice that a particular transmission (for example, credit card information) is encrypted. Any transmission is at your own risk. Once we have received your information, we use strict procedures and security features to try to prevent unauthorized access.
Payments made on our Services are processed through our payment gateway provider, Paysera LT, UAB ("Paysera"). You will be providing credit or debit card information directly to Paysera, which operates a secure server to process payment details, encrypting your credit/debit card information, and authorizing payment. EasyBook AI can view pseudonymized cardholder and card details. Additionally, EasyBook AI stores the following card information:
Information that you supply to Paysera is not within our control and is subject to Paysera's own privacy policy and terms.
EasyBook AI may, from time to time, contain links to external sites. If you follow a link to any of these websites, please note that these websites have their own privacy policies. EasyBook AI does not accept any responsibility or liability for these policies or any content on external sites and does not necessarily endorse the views expressed within them. EasyBook AI has no control over the availability of any of these websites. Please check each site's policies before you submit any personal information to these websites.
We will generally process personal information:
We may retain your personal data for a longer period in the event of a complaint, if we reasonably believe there is a prospect of legal proceedings, or we are aware of pending or ongoing legal proceedings. In some circumstances, we may keep data longer if applicable law requires us to do so.
If you have opted to receive insights, newsletters, or other promotional material, but later decide to opt out of receiving these updates, or object to any other processing of your personal information, we may keep a record of your opt-out or objection so we can respect your preferences.
We may keep aggregated, anonymized, or pseudonymized data – for example, for reporting and analytics – for longer periods.
In some circumstances, we will anonymize your personal data (so that it can no longer be associated with you and you cannot be re-identified). This anonymized data (for example, aggregated statistics) is no longer personal data, and we may keep and use this anonymized information indefinitely without further notice to you.
We use this to help us provide, develop, and improve our services, including to:
In certain circumstances, you have the following rights:
If you wish to exercise any of these rights in relation to the personal information we hold about you, you can contact us at [email protected]. If you have any concerns, you have the right to lodge a complaint with a data protection supervisory authority.
The Commissioner for the Right to Information and Protection of Personal Data is the supervisory authority in Albania and can provide further information about your rights, an organization's obligation in relation to your personal information, as well as deal with any complaints that you may have.
Albanian Information and Data Protection Commissioner:
If you are located outside Albania, you may also contact your local data protection authority for assistance with privacy-related matters.
We use Firebase Cloud Messaging (FCM), a service provided by Google, to send push notifications to your device. When you enable push notifications, we collect and store a device push token that uniquely identifies your device for notification delivery.
You can manage your push notification preferences at any time through your account notification settings or your device's operating system settings. Disabling push notifications will not affect the core functionality of our Services. Your push token is deleted from our servers when you log out or revoke notification permissions.
Push notification data is processed by Google's Firebase Cloud Messaging infrastructure. For more information, see Google's privacy policy at policies.google.com/privacy.
We offer multi-factor authentication (MFA) to help protect your account. If you enable MFA, we may process the following additional data:
All MFA secrets and credentials are encrypted at rest using AES-GCM encryption. You can manage your security settings, including removing MFA methods, through your account security settings at any time.
Some of the third-party services we use to provide our platform are operated by companies based outside of Albania and the European Economic Area (EEA). When your data is transferred outside the EEA, we ensure appropriate safeguards are in place:
We only transfer personal data to countries or organizations that provide an adequate level of protection as recognized by relevant authorities, or where appropriate safeguards (such as Standard Contractual Clauses approved by the European Commission) are in place.
If you participate in our rewards program, we collect and process additional information including your points balance, tier status, referral activity, and reward redemption history. This data is used to operate the program, calculate your benefits, and prevent fraud. Your rewards data is retained for as long as you maintain an active account and participate in the program.
This Notice was last updated on 06 Apr 2026.
We may update this Notice from time to time and will post any changes on this page.
If we make any substantive changes, we will notify you through email or website pop-ups within our Site.
Our Sites use cookies and/or other similar technologies such as device-IDs, in-App codes, pixel tags, and web beacons to collect and store certain information. These typically involve pieces of information or code that a website transfers to or accesses from your computer hard drive or mobile device to store and sometimes track information about you. Cookies and similar technologies enable you to be remembered when using that computer or device to interact with websites and online services and can be used to manage a range of features and content as well as storing searches and presenting personalized content.
Our Sites use cookies and similar technologies either alone or in combination with each other to create a unique device ID, and to distinguish you from other users of our Sites. This helps us to provide you with a good experience when you browse our Sites and also allows us to improve our Sites.
A number of cookies and similar technologies we use last only for the duration of your web or app session and expire when you close your browser or exit one of our Sites. Others are used to remember you when you return to one of our Sites and will last for longer.