Last updated: December 2024

Privacy Policy

How we collect, use, and protect your data.

At Salony, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.

1. Information We Collect

1.1 Information You Provide

When you register for an account or use our services, we may collect:

  • Account Information: Name, email address, phone number, business name, and billing details
  • Client Data: Information about your salon clients that you enter into the system
  • Staff Data: Information about your team members
  • Service Data: Details about your services, pricing, and bookings
  • Communications: Messages you send through our platform

1.2 Automatically Collected Information

When you use our services, we automatically collect:

  • Device and browser information
  • IP address and location data
  • Usage data and analytics
  • Cookies and similar technologies

2. How We Use Your Information

We use the information we collect to:

  • Provide and maintain our services
  • Process transactions and send related information
  • Send you technical notices and support messages
  • Respond to your comments and questions
  • Develop new products and features
  • Monitor and analyze trends and usage
  • Detect, investigate, and prevent security incidents
  • Personalize and improve our services

Under the General Data Protection Regulation (GDPR), we process your data based on:

  • Contract: Processing necessary to perform our agreement with you
  • Consent: Where you have given explicit consent
  • Legitimate Interests: For purposes that are in our legitimate business interests
  • Legal Obligation: To comply with applicable laws

4. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: Third parties who perform services on our behalf (e.g., payment processing, email delivery, hosting)
  • Business Partners: With your consent, for integrations you enable
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

We never sell your personal data to third parties.

5. Data Retention

We retain your data for as long as your account is active or as needed to provide services. After account deletion:

  • Personal data is deleted within 30 days
  • Backups are purged within 90 days
  • Some data may be retained longer for legal or audit purposes

6. Your Rights (GDPR)

Under GDPR, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Receive your data in a machine-readable format
  • Restriction: Request limitation of processing
  • Object: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent at any time where consent is the basis for processing

To exercise these rights, contact us at hello@salony.co.uk.

7. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • TLS encryption for data in transit
  • AES-256 encryption for data at rest
  • Regular security audits and penetration testing
  • Access controls and authentication
  • Secure data centres with physical security

8. International Data Transfers

Your data is primarily stored in UK/EU data centres. If data is transferred outside the UK/EEA, we ensure appropriate safeguards are in place (e.g., Standard Contractual Clauses).

9. Cookies and Tracking

We use cookies and similar technologies for:

  • Essential Cookies: Required for the service to function
  • Analytics Cookies: To understand how you use our service
  • Preference Cookies: To remember your settings

You can control cookies through your browser settings. Note that disabling essential cookies may affect functionality.

10. Children's Privacy

Our services are not intended for individuals under 16. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

12. Contact Us

For questions about this Privacy Policy or to exercise your rights:

Data Protection Officer
Email: hello@salony.co.uk
Address: , ,

13. Supervisory Authority

If you are not satisfied with our response to a privacy concern, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

https://ico.org.uk/make-a-complaint/

Note: This is a template document and should be reviewed by a legal professional before use. Salony Ltd is not responsible for ensuring this document meets your specific legal requirements.