iden.book is an embeddable booking widget engineered for activity venues. Digital waiver signing, SMS-verified identity, capacity management, party bookings and wallet-pass enrollment — all in a single conversion-optimized flow.
Each step is a standalone page on a CDN-hosted widget server that proxies to Supabase. Timing is measured and optimized on every page.
Pick Sofia or Veliko Tarnovo
Pick a day & guest count
Real-time availability
Socks, F&B, add-ons
Phone + SMS OTP
E-signed per guest
Wallet pass delivered
iden.book isn't just a calendar. Four specialized engines work together to turn every booking into a recognized customer relationship.
30-minute overlapping slot algorithm with venue-specific capacity rules. Stock-aware, session-aware, and group-aware.
Per-guest e-signed waivers stored in an encrypted bucket. SMS-OTP identity verification makes every signature legally binding.
Returning customers are detected and welcomed back. New customers are enrolled in loyalty automatically when the waiver is signed.
End-to-end funnel tracking from first click to post-session NPS. Attribution surviving cross-device sessions and iOS Mail proxy.
At most activity venues, the waiver is a paper form shoved into a drawer and the loyalty system is a half-used email newsletter. iden.book treats the waiver as the primary customer identity moment: verified phone, signed consent, auto-enrollment in loyalty, and wallet pass delivered on the spot.
The result: every guest walking through your door is a known customer with a digital relationship that survives the visit.
iden.book follows a three-secret architecture designed to prevent common booking-widget attack patterns. The browser never touches Supabase directly — all calls go through a widget server on Vercel that signs and enforces its own capability tokens.
Every request carries a signed capability token with timing-safe comparison. No cookies. No cross-origin surprises.
Invisible bot protection at the edge. No CAPTCHA friction for humans, high friction for automated attacks.
Per-phone and per-IP rate limits on the hot paths (SMS OTP, booking creation). Keeps costs bounded during abuse.
The full auth design is a formal versioned spec — reviewed, iterated, and followed by the code.
All customer data lives in Supabase Frankfurt. No transatlantic data transfers, no Schrems II gotchas.
Every booking action, waiver signature and identity verification is logged immutably for compliance review.
Birthday parties are where activity venues make their margin. iden.book handles the whole messy reality of 15 guests, 3 food packages and 8 waivers — end to end.
Parents call to book. Staff creates the party in seconds with a dedicated parent page that tracks the whole event timeline.
Each invited guest gets a personalized RSVP link with their own waiver. The parent never has to chase signatures.
SMS and email reminders at T-72h, T-24h and T-2h. Waiver completion nudges, arrival instructions, parking info — all automated.
Staff see every party with a minute-by-minute timeline, a dynamic guest list, and a running checklist in the iden.crew tablet app.
Standard, deluxe, premium packages — each with configurable inclusions. Session-package revenue recognition handled correctly.
A dedicated dashboard in iden.crew shows staff all parties today, tomorrow, and this weekend — with status signals.
We'll walk you through a live booking, show you the admin dashboard, and demo the waiver-to-wallet flow end to end.
Questions? hello@iden.software