Privacy policy

How Leen-related services handle personal information. Review this document with your legal counsel where required.

Last updated: 2 May 2026

1. Introduction

This Privacy policy describes how information may be collected, used, stored, and shared when you use websites, APIs, or applications that are part of or connected to the Leen platform (“Services”). The data controller and specific contact details depend on your jurisdiction and contractual setup; where applicable, that information is provided in the app or in your agreement.

2. Information we may process

Depending on your role (client, professional, administrator), we may process categories such as:

Account identifiers (e.g. phone number, user ID, authentication tokens)
Profile and booking details (services, times, locations where relevant)
Payment-related metadata as required by payment partners (card data is typically handled only by certified processors)
Device and technical logs (IP address, app version, crash diagnostics) for security and reliability
Communications you send through in-app chat or support channels

3. Purposes of processing

We use information to:

Provide, operate, and improve the Services
Authenticate users, prevent fraud, and enforce our terms
Send service-related notifications and, where permitted, marketing (with opt-out where required)
Comply with legal obligations and respond to lawful requests

4. Legal bases (where applicable)

If the GDPR or similar frameworks apply, we rely on appropriate bases such as contract performance, legitimate interests (balanced against your rights), consent where required, and legal obligation.

5. Sharing and processors

We may share data with hosting providers, analytics or error-reporting tools, payment gateways, messaging providers, and other subprocessors who assist in delivering the Services under strict terms. We do not sell your personal information as a commodity; any “sale” or “sharing” as defined by U.S. state laws will be described in region-specific notices if they apply.

6. Retention

We retain information only as long as needed for the purposes above, including legal, tax, and dispute resolution requirements. Retention periods may differ by data category and region.

7. Security

We implement technical and organisational measures designed to protect personal data. No method of transmission over the Internet is completely secure; we encourage strong device passcodes and updated apps.

8. Your rights

Subject to local law, you may have rights to access, rectify, delete, restrict, or object to certain processing, and to data portability. You may also have the right to lodge a complaint with a supervisory authority. To exercise rights, follow the in-app or contractual process, or contact us as described on our Contact page.

9. International transfers

If data is processed across borders, we use appropriate safeguards (such as standard contractual clauses) where required by law.

10. Children

The Services are not directed at children under the age where parental consent is required for data processing in your region. If you believe we have collected such data in error, please contact us.

11. Changes

We may update this policy from time to time. Material changes will be communicated through the Services or other appropriate means. Continued use after the effective date may constitute acceptance where permitted by law.