Privacy Policy

Last updated: 25 March 2026 · Stockwise Business Ltd, Scotland

1. Who We Are

BeautyOS is operated by Stockwise Business Ltd ("we", "us", "our"), a company registered in Scotland. We are the Data Controller for salon owner account data and for platform-level operational data. For client data stored within BeautyOS on behalf of your salon, we act as a Data Processor and you (the salon owner) are the Data Controller.

Contact for data matters: support@beautyos.co.uk

2. What Data We Collect

Salon owner / account data:

Name, email address, and business phone number provided at sign-up
Business name, address, and postcode
Payment information (handled by Stripe — we do not store card details)
IP address and browser fingerprint collected at registration for fraud prevention
Login history and session activity

Client data (processed on behalf of your salon):

Client names, email addresses, and phone numbers entered into BeautyOS
Appointment history, treatment records, and notes
GDPR consent records
This data is entered by you or your staff, or by clients making online bookings

Usage data:

Pages visited and features used within the app (server logs only, no third-party analytics)
Error logs for debugging and platform improvement

3. How We Use Data

To provide and operate the BeautyOS service
To send transactional emails such as booking confirmations and appointment reminders (via Brevo)
To send appointment reminder SMS messages on your behalf (via Brevo)
To process subscription payments and manage billing (via Stripe)
To detect and prevent fraudulent registrations or abuse
To improve the platform based on usage patterns
To contact you about your account, including support and billing matters

4. Legal Basis for Processing

Contract performance: Processing necessary to provide you with the BeautyOS service you have subscribed to
Legitimate interests: Fraud prevention, platform security, and service improvement
Legal obligation: Compliance with applicable law, including tax and accounting requirements

5. Data Retention

We retain account data for the duration of your subscription and for up to 12 months after account closure, after which it is deleted. Billing records may be retained for longer where required by law (typically 7 years for financial records).

Client data stored within your BeautyOS account is retained as long as your account is active. If you permanently delete your account all associated data is removed immediately. You may also delete individual client records at any time.

6. Third-Party Services

We use the following trusted third-party services to operate BeautyOS:

Stripe — Payment processing. Stripe is PCI-DSS compliant and EU/UK GDPR compliant. Stripe Privacy Policy
Brevo — Transactional email and SMS delivery. Brevo is GDPR compliant and processes data within the EU. Brevo Privacy Policy
Render — Cloud hosting and infrastructure. Render operates EU-region servers. Render Privacy Policy

We do not sell your data or share it with any third parties other than those listed above for the purpose of operating the service.

7. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

Access: Request a copy of the personal data we hold about you
Rectification: Ask us to correct inaccurate or incomplete data
Erasure: Request deletion of your personal data ("right to be forgotten")
Portability: Receive your data in a structured, machine-readable format
Restriction: Ask us to restrict processing of your data in certain circumstances
Objection: Object to processing based on legitimate interests

To exercise any of these rights, contact us at support@beautyos.co.uk. We will respond within 30 days. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

8. Cookies

BeautyOS uses only essential session cookies required for authentication and security. We do not use tracking cookies, advertising cookies, or any third-party analytics cookies. No cookie consent banner is required as we only use strictly necessary cookies.

9. Data Security

We implement appropriate technical and organisational measures to protect your data, including HTTPS encryption in transit, secure database access controls, and regular security reviews. However, no system is completely secure and we cannot guarantee absolute security.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or via a notice within the app. The date at the top of this page indicates when it was last updated.

11. Contact

For any privacy-related questions or data requests, please contact: support@beautyos.co.uk