Privacy Policy

Last updated: April 4, 2026

5 Stars Saloon ("we", "our", or "us") operates the 5 Stars Saloon mobile application (the "App"). This Privacy Policy explains how we collect, use, and protect your personal information when you use our App.

1. Information We Collect

We collect the following types of information:

Personal Information (required):

• Name — to identify you in bookings and your profile
• Phone number — for account authentication via OTP verification
• User ID — a unique identifier assigned to your account

Personal Information (optional):

• Email address — for payment receipts if provided
• Profile photo — for your user profile

Financial Information:

• Purchase and booking history — records of your appointments and payments
• Tokenized payment references — last 4 digits of card and card brand only. We never store full credit card numbers, CVV codes, or expiration dates. All payment processing is handled securely by our payment provider, Lahza.

App Performance Data:

• Crash logs and diagnostics — error reports, stack traces, and device information collected automatically to improve app stability

Device Identifiers:

• Push notification token — a device-specific token used to deliver push notifications

2. How We Use Your Information

• App functionality — to enable booking, payments, notifications, and profile management
• Account management — to create and manage your account, verify your identity via phone OTP
• Communications — to send appointment reminders, booking confirmations, and important service updates
• Analytics — to monitor app stability, diagnose crashes, and improve performance (via Firebase Crashlytics)

3. Information Sharing

We share your data only with the following third-party services, and only as necessary:

• Firebase (Google) — authentication, database, crash reporting, and push notifications. Google processes this data under their Firebase Data Processing Terms.
• Lahza — payment processing. Your email (if provided) and payment amount are shared to process transactions. Lahza handles all sensitive card data directly; we never see or store full card details.

We do not sell your personal data. We do not share data for advertising or marketing purposes with any third party.

4. Data Security

All data transmitted between the App and our servers is encrypted in transit using TLS 1.2 or higher. Data stored in our database (Firebase Firestore) is encrypted at rest. Payment data is processed through Lahza's PCI-compliant infrastructure.

5. Data Retention

• Account data is retained as long as your account is active.
• Crash logs are retained for up to 90 days.
• Anonymized audit logs may be retained for up to 90 days after account deletion for legal compliance.

6. Data Deletion

You can request permanent deletion of your account and all associated data at any time:

• In the App: Go to Settings → Delete Account
• Online: Visit our account deletion page

When you delete your account, we permanently remove your profile, booking history, payment records, notifications, and uploaded images. Anonymized audit logs may be retained for up to 90 days for compliance purposes.

7. Children's Privacy

Our App is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13.

8. Your Rights

You have the right to:

• Access the personal data we hold about you (visible in your profile)
• Correct inaccurate data (via the Edit Profile screen)
• Delete your account and all associated data
• Opt out of push notifications (via device settings)

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes through the App or by updating the "Last updated" date above.

10. Contact Us

If you have questions about this Privacy Policy or your data, please contact us through the Help & Support section in the App.