Legal
Privacy Policy
Effective Date: April 1, 2026 · Last Updated: April 13, 2026
Vurium Inc. ("Vurium," "we," "us," or "our") operates the VuriumBook™ platform — a scheduling and business management service for barbershops, salons, and service businesses. This Privacy Policy describes how we collect, use, store, and protect your personal information when you use our website and services. This policy applies to all users worldwide, including residents of the European Economic Area (EEA), United Kingdom, and California.
1. Information We Collect
We may collect the following types of information:
- Personal Information: Name, mobile phone number, and email address (when provided during booking or account creation).
- Booking Data: Requested services, appointment date/time, master or provider preference, and any notes you provide.
- Technical Data: IP address, browser user agent, and device information — collected for consent record-keeping, security, and analytics.
- Payment Data: Processed securely by third-party payment providers such as Stripe, Square, or Apple, depending on the payment method used. We do not store full credit card numbers on our servers.
- Cookies: We use a strictly necessary authentication cookie to keep you signed in. See our Cookie Policy for details.
2. Lawful Basis for Processing (GDPR)
Under the EU General Data Protection Regulation (GDPR), we process your personal data on the following legal bases:
- Contract Performance: Processing your booking data and account information is necessary to provide the scheduling service you requested.
- Consent: SMS notifications are sent only with your explicit opt-in consent, which you may withdraw at any time by replying STOP.
- Legitimate Interest: We process technical data (IP address, device info) for security, fraud prevention, and service improvement, balanced against your privacy rights.
- Legal Obligation: We retain certain records (e.g., SMS consent logs) to comply with regulatory requirements.
3. How We Use Your Information
- To provide and manage appointment booking services.
- To send transactional SMS/text messages related to your appointments (confirmations, reminders, schedule changes, and cancellations).
- To communicate about your account or respond to inquiries.
- To improve our services through aggregated, anonymized analytics.
- To detect, prevent, and address fraud, abuse, and security issues.
4. SMS / Text Messaging Programs
Program A — Legacy per-salon (Element only)
We collect and use phone numbers to send appointment-related SMS messages including booking confirmations, reminders, schedule changes, and cancellation notices. By providing your phone number and checking the SMS consent box during the online booking process, you explicitly opt in to receive these text messages about your appointment with the business you are booking with. The consent text shown at booking identifies the program using the business name, such as "[Business Name] Appointment Notifications."
- Program Name: The program is presented at booking as "[Business Name] Appointment Notifications."
- Message Sender Identity: Messages concern your appointment with the specific business you booked with. Depending on that workspace's setup, they may be delivered through VuriumBook's messaging infrastructure using a dedicated toll-free number assigned to that business or, for grandfathered workspaces, the business's registered dedicated sender.
- Message Types: Appointment confirmations, reminders (such as 24 hours and 2 hours before your visit), schedule changes, and cancellation notices. No marketing or promotional content is sent under this program.
- Message Frequency: Up to 5 messages per booking, depending on appointment activity.
- Message and data rates may apply. Contact your wireless carrier for details about your plan.
- Opt-Out: Reply STOP to any message to opt out. No further appointment messages will be sent. Your booking will remain active. You may also email support@vurium.com to unsubscribe.
- Help: Reply HELP to any message for assistance, or email support@vurium.com or call (847) 630-1884.
- No Sharing: We will not sell, rent, or share your mobile phone number or SMS opt-in data with third parties for their marketing purposes. All categories of data sharing described in this Privacy Policy exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties except service providers that help us deliver these messages (such as telecommunications providers and messaging platforms), solely to provide the messaging service.
- Separate Consent: SMS consent is separate from any other form of consent (such as email communications) and applies only to appointment-related text messages about your booking with that business.
- Consent to receive SMS is not a condition of purchasing any service or making a booking.
- Customer Care: For questions about this SMS program, contact support@vurium.com or call (847) 630-1884.
Program A2 — VuriumBook Appointment Notifications
Workspaces that have not enrolled in their own dedicated business sender use the VuriumBook shared messaging service. When you book an appointment through vurium.com and check the SMS consent box, you opt in to receive transactional appointment messages sent by Vurium Inc. The SMS body identifies the sender as "VuriumBook" and contains appointment metadata only — the time, the specialist's first name, and the street address — without naming the booked business as a sender. The booked business name is shown on the linked appointment page (vurium.com/manage-booking).
- Program Name: The program is presented at booking as "VuriumBook."
- Message Sender Identity: Vurium Inc. Messages are delivered from a dedicated phone number registered to Vurium Inc. through VuriumBook's 10DLC messaging infrastructure.
- Message Types: Appointment confirmations, reminders (such as 24 hours and 2 hours before your visit), reschedule notices, and cancellation notices. No marketing or promotional content is sent under this program.
- Message Content: Each message contains the appointment time, the specialist's first name (when on file), and the street address of the appointment (when on file). It does not contain the business name. Tap the linked appointment page to see the full business details.
- Message Frequency: Up to 5 messages per booking.
- Message and data rates may apply. Contact your wireless carrier for details about your plan.
- Opt-Out: Reply STOP to any message to opt out of all VuriumBook Appointment Notifications across every business you have booked through the platform. No further appointment messages will be sent. Your existing booking remains active. You may also email support@vurium.com.
- Help: Reply HELP to any message for assistance, or email support@vurium.com.
- No Sharing: We will not sell, rent, or share your mobile phone number or SMS opt-in data with third parties for their marketing purposes. All categories of data sharing described in this Privacy Policy exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties except service providers that help us deliver these messages (such as telecommunications providers and messaging platforms), solely to provide the messaging service.
- Separate Consent: SMS consent under this program is separate from any consent the business itself may collect (such as email marketing) and applies only to appointment-related text messages sent through the VuriumBook platform.
- Consent to receive SMS is not a condition of purchasing any service or making a booking.
- Customer Care: For questions about this SMS program, contact support@vurium.com.
Program B — Account Verification & Security Codes (2FA)
We use SMS to help secure VuriumBook™ accounts. If you enter your mobile number and request verification (for example, by clicking "Send code" or "Verify"), we may send one-time authentication messages such as phone number verification codes during account signup, login verification codes, and password reset codes.
- Program Name: VuriumBook Account Verification.
- Message Sender: VuriumBook (operated by Vurium Inc.).
- Message Types: One-time verification codes for signup, login, and password reset only. No marketing, no appointment notifications.
- Message Frequency: Varies based on your requests, typically 1–2 messages per verification attempt.
- Message and data rates may apply. Your wireless carrier may charge message and data rates.
- Opt-Out: Reply STOP to opt out of SMS verification codes. If you opt out, you may need to use an alternate verification method (such as email) or contact support.
- Help: Reply HELP for assistance, or email support@vurium.com or call (847) 630-1884.
- No Sharing: Your mobile information will not be sold or shared with third parties for promotional or marketing purposes. All categories of sharing described in this Privacy Policy exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties except service providers that help us deliver these messages (such as telecommunications providers and messaging platforms), solely to provide the messaging service.
- Separate Consent: SMS consent for verification codes is separate from any other form of consent and applies only to account security messages from VuriumBook.
- Consent to receive SMS is not a condition of creating an account or using any service.
- Customer Care: For questions about this SMS program, contact support@vurium.com or call (847) 630-1884.
5. How We Share Your Information
We do not sell your personal data. We may share information with:
- Service Providers (Data Processors): Telnyx (SMS delivery and verification, US), Google Cloud (hosting and infrastructure, US), and payment providers such as Stripe, Square, and Apple where applicable — only as necessary to provide our services. Each provider is bound by a Data Processing Agreement or comparable contractual controls where available.
- Business Partners: The specific barbershop, salon, or service provider you book an appointment with receives your booking information to fulfill your appointment. These businesses act as independent data controllers for the data they receive.
- Legal Compliance: When required by law, subpoena, or legal process.
SMS Opt-In Data Protection: Notwithstanding the above, all categories of data sharing described in this section exclude text messaging originator opt-in data and consent. Your mobile phone number, SMS opt-in status, and consent information will not be sold, rented, shared, or transferred to any third parties for promotional or marketing purposes. This information is shared only with service providers (such as telecommunications providers and messaging platforms) solely to deliver the messaging services described in our SMS programs above.
6. International Data Transfers
Vurium is based in the United States. If you are located outside the US (including in the EEA or UK), your personal data will be transferred to and processed in the United States. We rely on Standard Contractual Clauses (SCCs) approved by the European Commission and other appropriate safeguards to ensure your data is protected in accordance with GDPR requirements. By using our service, you acknowledge this transfer.
7. Data Retention
- Booking data is retained for up to 2 years for service continuity and business records.
- Phone numbers are retained while your relationship with the business is active.
- SMS consent records and messaging logs are retained for up to 5 years for compliance and audit purposes.
- Account data is retained until you request deletion or close your account.
- You may request deletion at any time (see Your Rights below).
8. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
For All Users
- Access: Request a copy of the personal data we hold about you.
- Correction: Request correction of inaccurate or incomplete data.
- Deletion: Request deletion of your personal data.
- Data Portability: Request an export of your data in a portable format.
- Withdraw Consent: Withdraw consent for SMS messaging at any time by replying STOP.
Additional Rights for EEA/UK Residents (GDPR)
- Restriction: Request restriction of processing of your personal data.
- Objection: Object to processing based on legitimate interest.
- Supervisory Authority: You have the right to lodge a complaint with your local data protection authority. For example: the Information Commissioner's Office (ICO) in the UK, the CNIL in France, the BfDI in Germany, or the relevant DPA in your EU/EEA member state. A full list is available at edpb.europa.eu.
- Data Processing Agreement: Business customers can request a Data Processing Agreement (DPA).
Additional Rights for California Residents (CCPA/CPRA)
- Right to Know: You may request the categories and specific pieces of personal information we have collected about you in the past 12 months.
- Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
- Right to Opt-Out of Sale or Sharing: We do not sell your personal information. We do share limited pseudonymous event data (such as page visits and form submissions) with Meta Platforms, Inc. through the Meta Pixel and Conversions API to measure the effectiveness of our advertising on Facebook and Instagram. You may opt out at any time by following the steps in our Cookie Policy or by emailing support@vurium.com.
- Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
- Authorized Agents: You may designate an authorized agent to submit requests on your behalf.
To exercise any of these rights, contact us at support@vurium.com. We will verify your identity and respond within 30 days (or 45 days for complex requests, with notice).
9. Do Not Sell or Share My Personal Information
Vurium does not sell your personal information to third parties for monetary consideration. We do, however, share limited pseudonymous event data with Meta Platforms, Inc. (Facebook, Instagram) through the Meta Pixel and Conversions API so we can measure and improve the advertising campaigns that bring new customers to Vurium. The data shared is limited to events such as page views, content views, and lead form submissions, together with hashed identifiers (e.g. SHA-256 of an email address) when you have already given us that information. To opt out, follow the steps in our Cookie Policy or contact us at support@vurium.com.
10. Children's Privacy
Our Service is not directed to children under 16 years of age (or under 13 in the United States under COPPA). We do not knowingly collect personal information from children. If we learn that we have collected personal data from a child without parental consent, we will delete that information promptly. If you believe a child has provided us with personal data, please contact us at support@vurium.com.
11. Security
We implement industry-standard security measures to protect your information, including encrypted data transmission (TLS/HTTPS), encrypted storage for phone numbers at rest, and access controls for our systems. However, no method of transmission or storage is 100% secure.
12. Data Breach Notification
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR. If the breach is likely to result in a high risk to you, we will also notify you directly without undue delay. For US-based users, we will comply with applicable state breach notification laws.
13. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a new effective date. For material changes affecting your rights, we will provide at least 30 days' notice. Continued use of our services after changes constitutes acceptance of the updated policy.
14. Contact Us
If you have questions about this Privacy Policy, our data practices, or wish to exercise your privacy rights, contact us at:
Vurium Inc.
1142 W Lake Cook Rd
Buffalo Grove, IL 60089, United States
Email: support@vurium.com
Phone: (847) 630-1884
Privacy inquiries: support@vurium.com
Support: vurium.com/support
Vurium has not appointed a formal Data Protection Officer (DPO) as the nature and scale of our processing does not require one under GDPR Article 37. For all privacy-related inquiries, please contact us using the details above.