Privacy Policy

Effective date: 2026-01-01

Overview

We collect the minimum necessary information to process inquiries and bookings: contact details, booking preferences, and billing metadata. We do not sell personal data. fillight.click

This Privacy Policy explains what we collect, why we collect it, how we protect it, and the choices you have. If you do not agree with this policy, please do not submit personal information via our forms.

Data we collect

Contact: name, email, phone
Booking: studio IDs, hours, preferences
Technical: IP, device, and analytics (aggregated)

We may also collect messages you send us, support requests, and high-level payment metadata such as transaction status and invoice details (but not full card numbers).

How we use data

We use your information to respond to requests, manage bookings, operate our website, and improve our services.

Typical purposes

Process booking inquiries, confirm availability, and provide customer support
Send transactional messages related to your booking (e.g., confirmations, changes)
Detect fraud, abuse, and security incidents
Measure site performance using aggregated analytics (optional where required)
Comply with legal obligations (tax, accounting, and lawful requests)

Legal bases (where applicable)

Depending on your location, we process personal data under one or more of the following legal bases:

Performance of a contract or steps prior to entering into a contract (e.g., booking requests)
Legitimate interests (e.g., website security, service improvement)
Consent (e.g., optional analytics cookies where required)
Compliance with legal obligations

Cookies

We use essential cookies for session and consent. Optional analytics cookies are opt-in via the cookie banner.

Cookie categories

Essential: required for basic site functionality and storing consent choices
Analytics (optional): helps us understand aggregated usage and improve performance

You can withdraw consent at any time by reopening the cookie preferences dialog and disabling optional categories.

Your rights

You may request access, correction, deletion, or export of your personal data. Contact: [email protected].

Access: request a copy of the personal data we hold about you
Correction: ask us to fix inaccurate or incomplete data
Deletion: request deletion where we are not legally required to retain data
Portability: request export of certain data in a structured format
Objection/Restriction: in some cases you may object to or restrict processing

We may ask you to verify your identity before processing a request. Response times vary by jurisdiction and request complexity.

International transfers

Data may be processed across borders with appropriate safeguards and standard contractual clauses.

Where required, we use contractual safeguards and vendor due diligence to help protect personal information when transferred internationally.

Retention

We retain personal data only as long as necessary for the purposes described in this policy, including to comply with legal, accounting, and reporting requirements.

Booking inquiries: typically retained for a limited period for follow-up and audit
Completed bookings: retained as required for tax and accounting
Consent records: retained to demonstrate compliance and honor preferences

Security

We use reasonable administrative, technical, and organizational measures to protect personal data. No method of transmission or storage is 100% secure, so we cannot guarantee absolute security.

Contact

For privacy questions or requests, email [email protected] or call +1 (415) 555-0172.

If you include sensitive details in your request, we may ask you to use a safer channel to confirm identity before taking action.

Policy updates

We may update this policy to reflect changes to our practices or legal requirements. We will revise the effective date above when changes are posted.