Book4Time Compliance

Book4Time is committed to performing above the industry standards in everything we do, when it comes to compliance, your data privacy and security is our top priority.  We accomplish this by implementing industry best practices and security measures that protect your data against breaches.
While no system can protect against every potential hazard, we have made considerable investments implementing advanced safeguards and systems that are monitored 24/7, 365 days a year.  If you have questions about Book4Time’s data privacy and security, please contact us us at

01. PCI Compliance

The Payment Card Industry Data Security Standard (PCI DSS) applies to companies of any size that accept credit card payments.
Book4Time is PCI compliant, whilst our platform does not store any credit card data we partner with PCI certified payment gateways that provide a tokenized solution that can prevent sensitive payment card data from ever entering your infrastructure.
We also embed best-in-class web application security technologies into our solutions to help safeguard your sensitive data. These include defenses against SQL injection, one of the most common types of attacks on web service security and data integrity.

02. HIPAA Compliance

Book4Time is The Health Insurance Portability and Accountability (HIPAA) compliant and maintains the appropriate administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and security of protected health information (PHI) so it remains safe and secure.
HIPAA sets the standard for sensitive patient data protection. Companies that deal with protected health information (PHI) must have physical, network, and process security measures in place and follow them to ensure HIPAA Compliance.


Book4Time is assessed yearly by external auditors who perform detailed examinations assuring that Book4Time is operating effectively and in accordance with predefined processes and controls.  In a SOC Type II report, the external auditor reports on the suitability of the design and existence of controls and on the operating effectiveness of these controls during a predefined period.  ISAE (International Standards for Assurance Engagements) 3402 is a global assurance standard for reporting on controls at service organizations.
If you would like to obtain a copy of Book4Time’s SSAE 18 / ISAE 3402 Compliance Report, please email

04. Data Privacy - General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) compliance

Book4Time’s strict security, privacy and operation standards already comply with the regulation standards set out by the GDPR and CCPA.
The aim of the GDPR is to protect all EU citizens from privacy and data breaches in an increasingly data-driven world. The regulation affects all companies doing business with EU citizens regardless of their physical location.
The CCPA provides enhanced privacy rights and consumer protection for California residents. It gives California residents significant rights around their data.

05. Contact Us:

For more information or questions regarding Book4Time and our compliance processes or validations please contact

Back to Homepage

We use cookies to ensure that we give you the best experience possible on our website. To review our policy, click "MORE INFO".