Privacy Policy

1. Data Controller

The data controller is the operator of the Bellora platform. Contact details of the data controller can be found on the platform's contact page.

2. Scope of Processed Data

We process the following data during the use of the Service:

• Personal data: name, email address, phone number
• Salon data: salon name, address, opening hours
• Booking data: appointments, services, staff
• Payment data: transaction identifiers (we do not store credit card data)
• Technical data: IP address, browser type, device information

3. Purpose of Data Processing

The purpose of data processing is to provide the Service, manage appointments, send notifications, handle billing, and improve user experience.

4. Legal Basis for Data Processing

The legal basis for data processing is user consent, contract performance, and legal obligations. Consent can be withdrawn at any time.

5. Data Retention Period

Personal data is stored until account deletion or until the legally required retention period expires. After account deletion, data is permanently deleted within 30 days.

6. Data Transfer

We do not share data with third parties, except for data processors necessary for the operation of the Service (e.g., payment provider, email service). Data processors operate within the EU.

7. Rights of Data Subjects

Data subjects have the right to access, rectification, deletion, restriction of processing, data portability, and objection. To exercise these rights, please contact us through the contact page.

8. Data Security

We ensure data security through technical and organizational measures. Data is transmitted through encrypted channels and stored on secure servers.