Privacy & Data Handling

This page summarizes how the current TherapyBook product handles account, onboarding, booking, and session data.

What data the app stores

Account and profile data

  • • Name, email address, phone number, and role-based account metadata
  • • Trainee application profile fields such as specialties, languages, education, and public bio
  • • Availability records used to power booking and scheduling

Operational records

  • • Uploaded onboarding documents linked to document records
  • • Session reservations, payment state, reminders, and session notes
  • • Audit log entries for administrative and workflow-sensitive changes

How the product protects access

  • • Authentication is required for account management, onboarding drafts, dashboard access, uploads, and session participation.
  • • Uploads are presigned first and then committed to Prisma so files stay connected to a tracked document record.
  • • Booking, payment, and session status changes are server-authoritative instead of relying on client-only success states.
  • • Reminder emails, password reset, and verification emails are sent through transactional email flows rather than local-only UI state.

How data is used

Access control

To sign users in, verify email ownership, reset passwords, and gate access to role-based routes.

Marketplace operations

To review trainee applications, publish approved providers, reserve sessions, process payments, and send reminders.

Administrative oversight

To support audit trails, investigate booking issues, and manage approval, status, and compliance-related actions.

Privacy requests

If you need access to your stored data, want to correct account information, or want to request deletion of an account that is no longer active, contact the team directly.

Location: Berlin, Germany