PRIVACY POLICY
Draak-app Platform
Effective Date: February 14, 2026
1. Introduction
Welcome to the Draak-App platform! Draak-App is a digital ecosystem consisting of a Website (for Clients) and a Mobile Application (for Service Providers). Your privacy is fundamental to us. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when using any part of our Platform. By accessing the Site or downloading the Application, the user agrees to the practices described in this policy, which complies with the General Data Protection Regulation (GDPR) of the European Union.
2. Identification of the Controller
The entity responsible for processing your personal data is: Willian Freitas Borges, Unipessoal Lda. Mailing Address: Rua Pedro Alvares Cabral, 205, 4A, São Domingos de Rana, Cascais, 2785-396, Portugal. Privacy Email: contact@draak-app.com
3. Personal Data We Collect
| Category | Data Collected |
|---|---|
| General (Everyone) | IP address, technical access data (dates, times), browser type, device model, and operating system. |
| Clients | When booking: Name, phone number, and email address (optional). Browsing: Search history and visited providers (anonymous data or associated with cookies). We do not collect the Client's NIF (Tax Identification Number). |
| Providers | Name, email, phone, professional address, details of services/products, and profile/work photos. Transaction Data (Subscription): Proof of payment provided by the App Store (e.g., purchase ID, subscription expiration date). We do not have access to your bank or credit card details. We do not collect the Provider's NIF (Tax Identification Number), as subscription billing management is carried out entirely by the App Stores. |
| App Permissions | Camera and Gallery: We request access if the Provider wishes to upload photos. Notifications: To send alerts for new bookings or reminders. |
4. Purposes of Processing
We process your data for the following specific purposes:
| Purpose | Legal Basis (GDPR) |
|---|---|
| Account and Booking Management | To allow Provider registration and bookings by the Client. |
| Connection between Users | To share the Client's contact with the Provider when a booking is confirmed. |
| App Monitoring and Security | Collection of crash reports (logs) to fix bugs and improve the stability of the Application. |
| Communication and Support | To send booking confirmations or respond to inquiries. |
| Marketing | Sending news or promotions (only if authorized). |
5. Sharing of Personal Data
We do not sell your personal data. Data sharing occurs only in the following strict situations:
- Between Client and Provider (Essential): When a Client confirms a booking, their Name, Phone, and Email are automatically shared with the selected Provider.
- Payments and Transactions: All subscriptions are processed directly by the Google Play Store or Apple App Store platforms. Draak-app does not collect or store any payment data (such as credit card numbers). The management of this data is the exclusive responsibility of the respective stores, in accordance with their own privacy policies.
- Technological Service Providers: We use trusted partners for hosting, sending transactional emails, and analyzing App errors, who act under our instructions and confidentiality obligations.
- Authorities: When required by law or court order.
6. Cookies Policy and Tracking Technologies
Our Website uses cookies to improve the browsing experience.
- What are they? Small text files stored in your browser.
- Types of Cookies we use: Essential (necessary for basic operation and scheduling) and Analytical (optional, used to measure and improve performance).
- Control: The user has full control over non-essential cookies through the site's consent banner.
7. International Transfers
If our external service providers are located outside the European Economic Area (EEA), we ensure that the transfer is made under appropriate safeguards, such as the Standard Contractual Clauses approved by the European Commission.
8. Data Security
We implement technical (encryption, HTTPS) and organizational (restricted access) measures to protect your personal data. However, we remind you that it is the Provider's responsibility to keep Application credentials secure.
9. Data Subject Rights
According to the GDPR, you have the right to Access, Rectify, Erase ("Right to be forgotten"), object to processing, and request Portability of your data. To exercise these rights, send an email to: contact@draak-app.com.
9.1. Exception for Professionals Registered by the Provider Company
If you are a professional working under the management of a Provider Account (Owner Company), your registration, data, and eventual deletion must be primarily managed by the owner Provider (the company) through the "Team Management" feature. Draak-app will only process deletion requests from individual professionals upon request or confirmation from the owner Provider account that performed the registration. This measure aims to protect the account's data structure and ensure authorization for deletion.
10. Complaints
If you consider that your data is not being processed correctly, you have the right to lodge a complaint with the national supervisory authority: National Data Protection Commission (CNPD) – www.cnpd.pt
11. Changes to this Policy
We may update this policy periodically. The latest version will always be available on the Site and in the Application. The effective date at the top indicates the last revision.