Security and data access

Clear boundaries around payments, credentials, and account data.

BoothIQ uses server-verified access for sensitive operations and keeps operator payments, platform billing, email connections, client access, and MCP credentials in their proper lanes.

Stripe Connect and merchant of record

The operator connects their own Stripe account and remains the merchant of record. BoothIQ charges no transaction fee; standard Stripe processing fees still apply.

Gmail, SMTP, and built-in sending

Operators can connect Gmail through OAuth, configure another SMTP provider, or use BoothIQ’s built-in sending. Replies go to the operator’s existing inbox.

MCP OAuth 2.1 and tokens

The remote MCP server supports OAuth 2.1 and personal access tokens with revocation and last-used tracking.

No MCP delete tools

The current MCP capability set intentionally does not expose delete tools. Email is previewed before a confirmed send action.

E-signature audit details

Supported signature records include drawn or typed signatures, timestamps, server-recorded IP details, authenticated signer identity, and signed PDF output.

Payment idempotency

Payment writes are idempotent on transaction ID and run through Firestore transactions to avoid duplicate money records.

Account access and cancellation

Operator identity is verified server-side for sensitive access. Cancellation ends renewal, access continues through the paid period, and existing data is retained.

Need details?

Talk to the BoothIQ team.

For questions about access, account data, payment connections, or security behavior, contact support.

Ready to run your photo booth business from one place?

Start your 14-day trial and set up your business in minutes.

$0 today · Card required · Cancel anytime