Privacy Policy
Stillbook LLC · version 2026-06-draft
How Stillbook LLC handles your information — and your clients'.
The short version
Stillbook is built for solo massage therapists, and protecting your clients' information is the whole point. We do not sell or rent your data or your clients' data to anyone, and we never will.
We do not place advertising or analytics trackers on any page that touches client information — not your provider dashboard, not your booking page, not the links your clients use. Third-party analytics live only on our public marketing pages (this site), and they are privacy-respecting and cookieless.
Information we collect
Account information you give us: your business name, email address, password (stored only as a salted hash), and time zone.
Practice data you create: your services, hours, availability, appointments, client records, charting notes, and intake responses. This may include Protected Health Information (PHI), which we handle under the Business Associate Agreement you accept at signup.
Operational metadata: log and audit records of who accessed which record and when (kept free of PHI by design), and basic device/usage information needed to run and secure the service.
How we use it
We use your information solely to provide Stillbook: to run your scheduling, charting, payments, reminders, and client management, to keep the service secure, and to support you.
We send your clients only the transactional messages your practice triggers — booking confirmations, reminders, and the links to manage their appointments. We do not market to your clients.
Security
We encrypt data in transit and at rest, isolate each practice's data from every other practice, require strong authentication, and keep record-level audit logs. See the Security page for details.
Your choices & data rights
You can export your practice's data at any time and delete your account; on deletion we return or securely destroy the data we hold, where feasible.
Questions about privacy? Email support@stillbook.app.