Legal

Privacy Policy

Effective Date: April 1, 2026 · Last Updated: April 13, 2026

Vurium Inc. ("Vurium," "we," "us," or "our") operates the VuriumBook™ platform — a scheduling and business management service for barbershops, salons, and service businesses. This Privacy Policy describes how we collect, use, store, and protect your personal information when you use our website and services. This policy applies to all users worldwide, including residents of the European Economic Area (EEA), United Kingdom, and California.

1. Information We Collect

We may collect the following types of information:

Personal Information: Name, mobile phone number, and email address (when provided during booking or account creation).
Booking Data: Requested services, appointment date/time, barber or provider preference, and any notes you provide.
Technical Data: IP address, browser user agent, and device information — collected for consent record-keeping, security, and analytics.
Payment Data: Processed securely by third-party payment providers such as Stripe, Square, or Apple, depending on the payment method used. We do not store full credit card numbers on our servers.
Cookies: We use a strictly necessary authentication cookie to keep you signed in. See our Cookie Policy for details.

2. Lawful Basis for Processing (GDPR)

Under the EU General Data Protection Regulation (GDPR), we process your personal data on the following legal bases:

Contract Performance: Processing your booking data and account information is necessary to provide the scheduling service you requested.
Consent: SMS notifications are sent only with your explicit opt-in consent, which you may withdraw at any time by replying STOP.
Legitimate Interest: We process technical data (IP address, device info) for security, fraud prevention, and service improvement, balanced against your privacy rights.
Legal Obligation: We retain certain records (e.g., SMS consent logs) to comply with regulatory requirements.

3. How We Use Your Information

To provide and manage appointment booking services.
To send transactional SMS/text messages related to your appointments (confirmations, reminders, schedule changes, and cancellations).
To communicate about your account or respond to inquiries.
To improve our services through aggregated, anonymized analytics.
To detect, prevent, and address fraud, abuse, and security issues.

4. SMS / Text Messaging Programs

Program A — Appointment Notifications (Customer Care)

We collect and use phone numbers to send appointment-related SMS messages including booking confirmations, reminders, schedule changes, and cancellation notices. By providing your phone number and checking the SMS consent box during the online booking process, you explicitly opt in to receive these text messages about your appointment with the business you are booking with. The consent text shown at booking identifies the program using the business name, such as "[Business Name] Appointment Notifications."

Program Name: The program is presented at booking as "[Business Name] Appointment Notifications."
Message Sender Identity: Messages concern your appointment with the specific business you booked with. Depending on that workspace's setup, they may be delivered through VuriumBook's messaging infrastructure using a dedicated toll-free number assigned to that business or, for grandfathered workspaces, the business's registered dedicated sender.
Message Types: Appointment confirmations, reminders (such as 24 hours and 2 hours before your visit), schedule changes, and cancellation notices. No marketing or promotional content is sent under this program.
Message Frequency: Up to 5 messages per booking, depending on appointment activity.
Message and data rates may apply. Contact your wireless carrier for details about your plan.
Opt-Out: Reply STOP to any message to opt out. No further appointment messages will be sent. Your booking will remain active. You may also email support@vurium.com to unsubscribe.
Help: Reply HELP to any message for assistance, or email support@vurium.com or call (847) 630-1884.
No Sharing: We will not sell, rent, or share your mobile phone number or SMS opt-in data with third parties for their marketing purposes. All categories of data sharing described in this Privacy Policy exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties except service providers that help us deliver these messages (such as telecommunications providers and messaging platforms), solely to provide the messaging service.
Separate Consent: SMS consent is separate from any other form of consent (such as email communications) and applies only to appointment-related text messages about your booking with that business.
Consent to receive SMS is not a condition of purchasing any service or making a booking.
Customer Care: For questions about this SMS program, contact support@vurium.com or call (847) 630-1884.

Program B — Account Verification & Security Codes (2FA)

We use SMS to help secure VuriumBook™ accounts. If you enter your mobile number and request verification (for example, by clicking "Send code" or "Verify"), we may send one-time authentication messages such as phone number verification codes during account signup, login verification codes, and password reset codes.

Program Name: VuriumBook Account Verification.
Message Sender: VuriumBook (operated by Vurium Inc.).
Message Types: One-time verification codes for signup, login, and password reset only. No marketing, no appointment notifications.
Message Frequency: Varies based on your requests, typically 1–2 messages per verification attempt.
Message and data rates may apply. Your wireless carrier may charge message and data rates.
Opt-Out: Reply STOP to opt out of SMS verification codes. If you opt out, you may need to use an alternate verification method (such as email) or contact support.
Help: Reply HELP for assistance, or email support@vurium.com or call (847) 630-1884.
No Sharing: Your mobile information will not be sold or shared with third parties for promotional or marketing purposes. All categories of sharing described in this Privacy Policy exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties except service providers that help us deliver these messages (such as telecommunications providers and messaging platforms), solely to provide the messaging service.
Separate Consent: SMS consent for verification codes is separate from any other form of consent and applies only to account security messages from VuriumBook.
Consent to receive SMS is not a condition of creating an account or using any service.
Customer Care: For questions about this SMS program, contact support@vurium.com or call (847) 630-1884.

5. How We Share Your Information

We do not sell your personal data. We may share information with:

Service Providers (Data Processors): Telnyx (SMS delivery and verification, US), Google Cloud (hosting and infrastructure, US), and payment providers such as Stripe, Square, and Apple where applicable — only as necessary to provide our services. Each provider is bound by a Data Processing Agreement or comparable contractual controls where available.
Business Partners: The specific barbershop, salon, or service provider you book an appointment with receives your booking information to fulfill your appointment. These businesses act as independent data controllers for the data they receive.
Legal Compliance: When required by law, subpoena, or legal process.

SMS Opt-In Data Protection: Notwithstanding the above, all categories of data sharing described in this section exclude text messaging originator opt-in data and consent. Your mobile phone number, SMS opt-in status, and consent information will not be sold, rented, shared, or transferred to any third parties for promotional or marketing purposes. This information is shared only with service providers (such as telecommunications providers and messaging platforms) solely to deliver the messaging services described in our SMS programs above.

6. International Data Transfers

Vurium is based in the United States. If you are located outside the US (including in the EEA or UK), your personal data will be transferred to and processed in the United States. We rely on Standard Contractual Clauses (SCCs) approved by the European Commission and other appropriate safeguards to ensure your data is protected in accordance with GDPR requirements. By using our service, you acknowledge this transfer.

7. Data Retention

Booking data is retained for up to 2 years for service continuity and business records.
Phone numbers are retained while your relationship with the business is active.
SMS consent records and messaging logs are retained for up to 5 years for compliance and audit purposes.
Account data is retained until you request deletion or close your account.
You may request deletion at any time (see Your Rights below).

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

For All Users

Access: Request a copy of the personal data we hold about you.
Correction: Request correction of inaccurate or incomplete data.
Deletion: Request deletion of your personal data.
Data Portability: Request an export of your data in a portable format.
Withdraw Consent: Withdraw consent for SMS messaging at any time by replying STOP.

Additional Rights for EEA/UK Residents (GDPR)

Restriction: Request restriction of processing of your personal data.
Objection: Object to processing based on legitimate interest.
Supervisory Authority: You have the right to lodge a complaint with your local data protection authority. For example: the Information Commissioner's Office (ICO) in the UK, the CNIL in France, the BfDI in Germany, or the relevant DPA in your EU/EEA member state. A full list is available at edpb.europa.eu.
Data Processing Agreement: Business customers can request a Data Processing Agreement (DPA).

Additional Rights for California Residents (CCPA/CPRA)

Right to Know: You may request the categories and specific pieces of personal information we have collected about you in the past 12 months.
Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
Right to Opt-Out of Sale: We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising.
Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
Authorized Agents: You may designate an authorized agent to submit requests on your behalf.

To exercise any of these rights, contact us at support@vurium.com. We will verify your identity and respond within 30 days (or 45 days for complex requests, with notice).

9. Do Not Sell or Share My Personal Information

Vurium does not sell your personal information to third parties. We do not share your personal information for cross-context behavioral advertising. If you have questions or concerns, contact us at support@vurium.com.

10. Children's Privacy

Our Service is not directed to children under 16 years of age (or under 13 in the United States under COPPA). We do not knowingly collect personal information from children. If we learn that we have collected personal data from a child without parental consent, we will delete that information promptly. If you believe a child has provided us with personal data, please contact us at support@vurium.com.

11. Security

We implement industry-standard security measures to protect your information, including encrypted data transmission (TLS/HTTPS), encrypted storage for phone numbers at rest, and access controls for our systems. However, no method of transmission or storage is 100% secure.

12. Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR. If the breach is likely to result in a high risk to you, we will also notify you directly without undue delay. For US-based users, we will comply with applicable state breach notification laws.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a new effective date. For material changes affecting your rights, we will provide at least 30 days' notice. Continued use of our services after changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions about this Privacy Policy, our data practices, or wish to exercise your privacy rights, contact us at:

Vurium Inc.
1142 W Lake Cook Rd
Buffalo Grove, IL 60089, United States
Email: support@vurium.com
Phone: (847) 630-1884
Privacy inquiries: support@vurium.com
Support: vurium.com/support

Vurium has not appointed a formal Data Protection Officer (DPO) as the nature and scale of our processing does not require one under GDPR Article 37. For all privacy-related inquiries, please contact us using the details above.