Legal documents

Service & terms

• Service Agreement — platform service terms, fees, liability limitation, termination
• Terms of Service — general rules for using the website and the service
• Imprint & Contact — operator details, contact information

Data protection

• Privacy Policy — processing purposes, legal bases, data subject rights (GDPR Art. 13–14)
• Cookie & Tracking Policy — types of cookies used and how they are managed
• AI Sub-processors — statement on automated decision-making (GDPR Art. 22)
• Incident Response & Data Subject Requests — DSAR guidance, notification obligations, deadlines
• Staff Data Processing Information — GDPR Art. 13/14 notice for salon staff: legal basis, retention, data subject rights

Compliance

• Sub-processor list — engaged providers, data transfer safeguards (SCC, DPF)
• Retention & deletion policy — per-data-category retention schedule, automated deletion
• Data Processing Agreement (DPA) — full GDPR Art. 28 data processing agreement for providers
• Security & privacy — infrastructure, encryption, access management, GDPR summary
• Licensing & open source — open-source components used in Bokko

Earlier versions (archive)

Previous effective versions of Bokko's legal documents are preserved for transparency and traceability. Each archived version is marked with its effective date and contains a notice that it is no longer in force. Only English archive files are listed here; for Hungarian-only archived versions (including the legacy DPA annex) please refer to the Hungarian legal index.

• Privacy Policy (EN) — 2026-06-22 (Open Beta v1-r10-en, intra-day) — superseded: 2026-06-22 r11-en (§8 admin TOTP risk-based wording refinement)
• Privacy Policy (EN) — 2026-06-22 (Open Beta v1-r9-en) — superseded: 2026-06-22 r10-en (admin TOTP step-up wording refinement)
• Cookie & Tracking Policy (EN) — 2026-06-22 (Open Beta v1-r3-en) — superseded: 2026-06-22 r4-en (help.bokko.io GA4 consent-gated disclosure + bokko_consent_v1 localStorage entry + docs.bokko.io Scalar CDN edge disclosure)
• Privacy Policy (EN) — 2026-06-21 (Open Beta v1-r8-en) — superseded: 2026-06-21 r9-en (Microsoft Outlook calendar OAuth disclosure + Firebase Cloud Messaging push notification disclosure + admin TOTP audit chain)
• Service Agreement (EN) — 2026-06-21 (Open Beta v1-r4-en) — superseded: 2026-06-21 r5-en (full content catch-up to HU r4 master)
• Privacy Policy (EN) — 2026-06-02 (Open Beta v1-r6-en) — superseded: 2026-06-02 r8-en (Google reCAPTCHA Enterprise bot-protection disclosure + _GRECAPTCHA cookie row)
• Service Agreement (EN) — 2026-06-01 (Open Beta v1-r2-en) — superseded: 2026-06-21 r4-en (initial HU r4 catch-up)
• Privacy Policy (EN) — 2026-06-01 (Open Beta v1-r5-en) — superseded: 2026-06-02 (Google Maps Embed auto-visible → persistent consent + reset button on the salon-specific privacy page)
• Privacy Policy (EN) — 2026-05-06 (Open Beta v1-r4-en) — superseded: 2026-06-01 (Google Maps Embed external service disclosure)
• Service Agreement (EN) — 2026-04-23 (Open Beta v1-en) — superseded: 2026-06-01 (Google Maps Embed clause in Platform Service section)
• Terms of Service (EN) — 2026-04-23 (Open Beta v1-en) — superseded: 2026-05-21 r2-en (30-day prior email notification for material modifications, content exclusion rules, security recommendations)
• Cookie & Tracking Policy (EN) — 2026-04-04 — superseded: 2026-05-21 (Firebase Analytics cookie tables — _ga / _ga_<container-id> / _gid with retentions, admin TOTP session detail, granular settings management section)

Downloadable documents

The templates below are optional — acceptance of the DPA and the TOMs is by default granted through accepting the Service Agreement in the dashboard (click-wrap, GDPR Art. 28 contract). A bilaterally signed copy is only required on explicit request; in that case, please reach out at [email protected].

• Data Processing Agreement (DPA) — printable template — fillable, can be saved as a signed PDF (optional)
• Technical and Organisational Measures (TOMs) — printable — for GDPR Art. 32, audit and enterprise onboarding purposes