Your data is in safe hands
Security isn't an add-on. It's how we built the product from day one — encryption, isolated data, audited payment processing, and full GDPR compliance.
Payments handled by Stripe
Card details never touch Bookr's servers. Stripe is PCI-DSS Level 1 — the highest standard in the payments industry. When customers pay, the card data goes directly to Stripe; we receive only a token and a confirmation.
Encryption everywhere
All traffic moves over TLS 1.3. Data at rest is encrypted with AES-256. Database access requires authenticated keys plus row-level security — so a business can only ever see their own bookings and their own customers.
GDPR-compliant from day one
Built in the UK, compliant with UK GDPR. Customers can request a copy or deletion of their data any time. Business owners can export their full data with one click — no support ticket required.
Your data is yours
We don't sell data. We don't share it with advertisers. Bookings, customer info, financial records — all yours, exportable and deletable. If you ever leave Bookr, you take everything with you.
What we collect, what we don't
We collect: email, name, booking times, payment amount. We don't collect: card details (Stripe does), browsing history, location, device fingerprints. Read the Privacy Policy for the full breakdown.
Found a security issue?
Email support@mybookr.app — we respond within 24 hours and credit responsible disclosure in our security acknowledgements.