Back to home

Privacy Policy

Last updated: June 17, 2026

Introduction

This Privacy Policy describes how [COMPANY LEGAL NAME] ("Tipanmi", "we", "us", or "our") collects, uses, stores, and protects personal information when you use the Tipanmi platform (the "Platform"). It also explains your rights as a data subject under Republic Act No. 10173, the Data Privacy Act of 2012, and its Implementing Rules and Regulations.

This Policy applies to personal information we process through the Tipanmi website (tipanmi.com), any related mobile applications, and all services accessible through them. It does not apply to the data practices of Partner Businesses you discover or book through the Platform — those businesses have their own privacy obligations. This Policy was last updated on June 17, 2026.

Who We Are

[COMPANY LEGAL NAME] is the Personal Information Controller for the data described in this Policy. We are registered in the Philippines at [REGISTERED ADDRESS], Philippines.

Our Data Protection Officer (DPO) can be reached at: [DPO NAME] — privacy@tipanmi.com. You may contact our DPO to exercise your data-subject rights, request a copy of your personal information, or file a complaint.

Information We Collect

We collect the following categories of personal information:

  • Account information: your full name, email address, mobile phone number, and (where applicable) social-login identifier (Google, Facebook, or Apple account ID).
  • Booking information: the service selected, the Partner Business, assigned staff member, appointment date and time, any notes you provide, and booking status history.
  • Payment information: payment method type (e.g. GCash, Maya), transaction reference numbers, and payment status. Card numbers and e-wallet credentials are processed directly by PayMongo and are not stored on Tipanmi's systems.
  • Device and usage information: IP address, browser type and version, device type and operating system, pages visited on the Platform, and timestamps of visits.
  • Communications: messages sent through or recorded by the Platform in connection with your bookings (e.g. Viber or Messenger confirmation messages).
  • Reviews and feedback: ratings, written reviews, and private feedback you submit after an appointment.
  • User preferences: categories of interest, saved businesses, and notification settings.

How We Collect Your Information

We collect personal information in the following ways:

  • Directly from you: when you register an account, complete or manage a booking, submit a review, or contact our support team.
  • Automatically: through cookies, server logs, and similar technologies when you access or interact with the Platform (see the "Cookies & Similar Technologies" section below).
  • From Partner Businesses: a business may provide information about your appointment (for example, the assigned staff member) that we record in connection with your booking.
  • From social-login providers: if you choose to sign in with Google, Facebook, or Apple, we receive the basic profile information you authorise through that provider.

How We Use Your Information

We use your personal information for the following purposes:

  • To create and manage your account and verify your identity.
  • To process, confirm, and manage your bookings with Partner Businesses.
  • To facilitate payment processing through PayMongo.
  • To send transactional notifications (booking confirmations, reminders, status updates) via SMS, Viber, Messenger, and email.
  • To enable Partner Businesses to manage and fulfil confirmed appointments.
  • To display, aggregate, and moderate reviews.
  • To personalise your experience (for example, recommending businesses based on your interests).
  • To improve and develop the Platform through analytics and user research.
  • To detect, investigate, and prevent fraud, abuse, and security incidents.
  • To comply with legal obligations and cooperate with regulatory authorities.

Our lawful bases for processing are: (a) your consent (for marketing communications and optional features); (b) performance of a contract (to process your bookings); (c) compliance with a legal obligation; and (d) our legitimate interests in operating and improving the Platform, where those interests are not overridden by your rights.

Sharing & Disclosure

We share personal information only as described below:

  • Partner Businesses: we share your name, mobile number, and booking details with the business you have booked so they can prepare for and manage your appointment.
  • PayMongo: your payment details and transaction data are shared with PayMongo to process deposits and payments.
  • Semaphore: your mobile number is shared to deliver SMS booking notifications.
  • Viber and Meta (Facebook/Messenger): your Viber or Messenger identifier is used to send booking confirmations and updates if you opt in to those channels.
  • Resend: your email address is shared to deliver transactional email notifications.
  • Cloudflare R2 and hosting providers: media files (such as business photos) and application data are stored on infrastructure provided by third-party cloud providers.
  • Legal and regulatory authorities: we may disclose information where required by law, court order, or in response to a request from a government authority (including the National Privacy Commission).
  • Business transfers: in the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before such a transfer occurs.

We do not sell your personal information to third parties for their own marketing purposes.

Cookies & Similar Technologies

We use cookies and similar tracking technologies to operate and improve the Platform. Cookies we use include:

  • Strictly necessary cookies: required for user authentication, session management, and security. These cannot be disabled.
  • Functional cookies: remember your preferences (such as language and theme) to improve your experience.
  • Analytics cookies: collect aggregated, anonymised data about how visitors use the Platform so we can improve it.

You can control non-essential cookies through your browser or device settings. Disabling certain cookies may affect the functionality of the Platform.

Data Retention

We retain your personal information for as long as your account is active and for a reasonable period thereafter, in any case for as long as necessary to fulfil the purposes described in this Policy. Specific retention periods:

  • Account data: retained for the duration of your account plus two (2) years after account deletion, to handle any post-deletion queries or disputes.
  • Booking and transaction records: retained for five (5) years from the date of the transaction, in accordance with applicable tax and accounting requirements under Philippine law.
  • Review content: retained for as long as the related Partner Business remains on the Platform, or until you request removal.
  • Server logs and device data: retained for up to six (6) months, then deleted or anonymised.

Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, disclosure, alteration, or destruction. These include TLS encryption for data in transit, access controls limiting data access to authorised personnel, and regular security reviews.

In the event of a personal data breach that is likely to affect your rights and freedoms, we will notify you and the National Privacy Commission in accordance with the requirements of the Data Privacy Act and its Implementing Rules and Regulations.

Your Rights Under the Data Privacy Act

As a data subject under Republic Act No. 10173 (Data Privacy Act of 2012), you have the following rights with respect to your personal information:

  • Right to be informed: to know how your personal data is collected, processed, and used.
  • Right of access: to request a copy of the personal information we hold about you.
  • Right to rectification: to have inaccurate or incomplete data corrected.
  • Right to erasure or blocking: to request deletion or suspension of processing of your data, subject to lawful grounds for retention.
  • Right to object: to object to the processing of your personal data, including for direct marketing.
  • Right to data portability: to receive a copy of your personal data in a structured, commonly used, and machine-readable format.
  • Right to damages: to be compensated for damages sustained as a result of inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorised use of your personal data.
  • Right to lodge a complaint: to file a complaint with the National Privacy Commission (NPC) at privacy.gov.ph if you believe your rights have been violated.

To exercise any of these rights, please contact our Data Protection Officer at [DPO NAME] — privacy@tipanmi.com or email us at privacy@tipanmi.com. We will respond within a reasonable time and in any case within 15 days of receiving your request.

Children's Privacy

The Platform is not directed at children under 18 years of age. If you believe a child under 18 has provided us with personal information without parental consent, please contact us at privacy@tipanmi.com and we will take steps to delete that information.

Where a booking is made for a minor (for example, a child's pet-grooming appointment), the parent or guardian who completes the booking is responsible for providing any personal information and consenting to its processing on the minor's behalf.

International Data Transfers

Some of our service providers — including Cloudflare (data storage and CDN), Resend (email delivery), and Vercel (web hosting) — operate infrastructure outside the Philippines. When we transfer your personal information internationally, we apply appropriate safeguards (such as contractual data-processing agreements) to ensure your information is protected to a standard at least equivalent to that required by the Data Privacy Act.

Changes to This Policy

We may update this Privacy Policy from time to time. For material changes, we will notify you by email or by posting a prominent notice on the Platform at least 30 days before the changes take effect. Your continued use of the Platform after the effective date of the revised Policy constitutes your acceptance of those changes.

Contact Us & Data Protection Officer

For privacy-related enquiries, to exercise your data-subject rights, or to file a complaint, please contact:

  • Data Protection Officer: [DPO NAME] — privacy@tipanmi.com
  • Privacy enquiries: privacy@tipanmi.com
  • Company: [COMPANY LEGAL NAME]
  • Address: [REGISTERED ADDRESS], Philippines

If you are not satisfied with our response, you have the right to file a complaint with the National Privacy Commission at privacy.gov.ph or call their hotline at (02) 8234-2228.