Who we are
Our website address is: https://www.donbranco.fi.
Comments
When site users leave comments on the site, we collect the information in the comment form, as well as the user’s IP address and browser version information to help identify spam.
When visitors leave a comment on this site, we collect the information that is visible in the comment fields, IP address and browser version information. An anonymized hash (hash) created from the email address can be sent to the Gravatar service to see if the commenter is a service user. The Gravatar service’s privacy policy can be found at https://automattic.com/privacy/.
Media
If you upload images to this site, you should avoid uploading images that have location information (EXIF GPS) stored. Site visitors can download and view location information from images on the site.
Cookies
If you leave a comment on the site, you can choose to save your name, email address and url address to a cookie. This feature increases usability, as the form does not need to be filled out again each time a comment is added. Cookie information is deleted from the browser after one year.
If you have an account and log in to the site, we will set a temporary cookie that will determine whether your browser supports cookies or not. This cookie does not contain any personal information and will be deleted when you close your browser window.
When you log in, we will set several cookies that store your login and display settings. Login cookies will be deleted within two days, display settings cookies will expire after one year. If you select “Remember me” when logging in, your login information will be stored for two weeks. If you log out, the login-related cookies will be deleted at the same time.
If you publish an article or edit an existing one, we will store a cookie in your browser that contains the ID of the article being edited. The cookie expires in one day.
Embedded content from other sites
The articles on this site may contain embedded content (such as videos, images, articles, etc.). Opening embedded content imported from other sites is comparable to visiting a third-party site yourself.
These sites may collect information about you, use cookies, embed third-party tracking cookies, and monitor your interaction with embedded content, including tracking interaction if and when you are logged in as a user of the site.
Who we share your information with
If you request a password reset, your IP address will be included in the recovery email.
How long do we store information
If you leave a comment, the comment and its metadata will be stored indefinitely. This is done so that we can identify and approve subsequent comments automatically instead of keeping them in the moderation queue.
We store user profile information for registered users (if any). All users have the opportunity to view, edit and delete their own personal information at any time. Only the username cannot be changed. Website administrators can view and edit user profile information.
What rights do you have to your own information
If you have a user account on this site or have left comments, you can request a summary file of your own personal information, including all personal information that you have provided to us. You can also request the deletion of your personal information. The right to delete your own data does not apply to personal data that we must retain for administrative, legal or security reasons.
Where your data is sent
Visitor comments may be checked through an automated spam detection service.
Appendix: Chatbot and Booking System
1. Chatbot User Data
When using our chatbot service, the system records your conversation history and any voluntarily provided contact information (such as name, email address, or phone number).
Purpose of Use: This data is used exclusively for customer service, confirming bookings, and responding to contact requests.
Data Sharing: Data is not sold or shared with third parties for marketing purposes. Only technical personnel or contractors involved in providing the service have access, under strict confidentiality agreements.
2. Expert Google Calendar Integration
Our experts can connect their Google Calendar to the booking system via OAuth 2.0.
Data Accessed:
- Calendar list reading (calendar.readonly)
- Free/busy time slots (calendar.freebusy)
- Event creation, update, and deletion (calendar.events)
How Data is Used:
- Solely to display the expert’s available times in the chatbot and automatically create bookings.
- Tokens and calendar identifiers are stored securely encrypted.
What We Do Not Do:
- We do not read, analyze, or store other private calendar events.
- We do not share Google Calendar data with third parties.
Token Management and Revocation:
- Experts can revoke OAuth access at any time, which deletes all tokens from the system and logs the status as revoked.
- Expired tokens are automatically refreshed when possible; failures are logged as expired or revoked.
3. Google API Services User Data Policy – Limited Use
- Don & Branco strictly adheres to the Google API Services User Data Policy.
- Calendar data is used only to support system functionality and is not transferred to other applications.
- Scopes are limited to the minimum necessary (Sensitive scopes only):
- calendar.events
- calendar.freebusy
- calendar.readonly
Limited Use means the data is not analyzed, sold, or shared beyond its intended purpose: displaying availability and managing bookings.
Chatbot and Booking System Terms of Service
Purpose of Use: The chatbot and booking system on Don & Branco’s website is intended solely for legitimate contact and appointment bookings with our experts.
Right to Modify: We reserve the right to cancel, reschedule, or deny any booking made through the system without additional compensation, for example in cases of illness or if the booking is deemed inappropriate.
Service Availability: The service is provided “as is.” We do not guarantee 100% uninterrupted operation of the system and are not responsible for delays caused by technical issues.
Misuse: Automated abuse, spam, or other misuse of the system is strictly prohibited and may result in blocking of the IP address.
