Plain English Summary: We collect only what we need to run your salon software. We never sell your data or your customers' data. SMS and email are used only to send appointment confirmations and reminders. You can opt out anytime by replying STOP to any text or clicking unsubscribe in any email.
This Privacy Notice for Andy Tran (doing business as SalonOSX) ("we," "us," or "our") describes how and why we might access, collect, store, use, and/or share ("process") your personal information when you use our services ("Services"), including when you visit our website at salonosx.com or use the SalonOSX platform. Questions or concerns? Contact us at [email protected].
- What Information Do We Collect?
- How Do We Process Your Information?
- When and With Whom Do We Share Your Personal Information?
- How Long Do We Keep Your Information?
- How Do We Keep Your Information Safe?
- Do We Collect Information from Minors?
- What Are Your Privacy Rights?
- Controls for Do-Not-Track Features
- Do United States Residents Have Specific Privacy Rights?
- SMS Personal Data Protection
- Do We Make Updates to This Notice?
- How Can You Contact Us About This Notice?
- How Can You Review, Update, or Delete the Data We Collect?
What Information Do We Collect?
Personal Information You Disclose to Us
We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us or our products and Services, when you participate in activities on the Services, or otherwise when you contact us. The personal information we collect may include the following:
- Names
- Phone numbers
- Email addresses
- Passwords
- Usernames
- Contact or authentication data
Sensitive Information
We do not process sensitive information.
Payment Data
We may collect data necessary to process your payment if you choose to make purchases, such as your payment instrument number and the security code associated with your payment instrument. All payment data is handled and stored by Stripe and Square. You may find their privacy notice links here: stripe.com/privacy and squareup.com/us/en/legal/general/privacy.
All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.
How Do We Process Your Information?
We process your personal information for a variety of reasons, depending on how you interact with our Services, including:
- To facilitate account creation and authentication. We may process your information so you can create and log in to your account, as well as keep your account in working order.
- To deliver and facilitate delivery of services to the user. We may process your information to provide you with the requested service.
- To respond to user inquiries and offer support. We may process your information to respond to your inquiries and solve any potential issues you might have with the requested service.
- To send administrative information to you. We may process your information to send you details about our products and services, changes to our terms and policies, and other similar information.
- To fulfill and manage your orders. We may process your information to fulfill and manage your orders, payments, returns, and exchanges made through the Services.
- To request feedback. We may process your information when necessary to request feedback and to contact you about your use of our Services.
- To protect our Services. We may process your information as part of our efforts to keep our Services safe and secure, including fraud monitoring and prevention.
- To evaluate and improve our Services. We may process your information when we believe it is necessary to identify usage trends, determine the effectiveness of our promotional campaigns, and to evaluate and improve our Services, products, marketing, and your experience.
- To comply with our legal obligations. We may process your information to comply with our legal obligations, respond to legal requests, and exercise, establish, or defend our legal rights.
- To send transactional communications. To send appointment confirmation and reminder emails and SMS messages to salon customers on behalf of salons using the platform. These messages are transactional in nature and directly related to booked appointments.
- To send marketing communications to salon owners. To send product updates, feature announcements, and promotional communications to registered salon owners and staff who use the SalonOSX platform. Salon owners and staff may opt out at any time.
How Long Do We Keep Your Information?
We will only keep your personal information for as long as it is necessary for the purposes set out in this Privacy Notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). No purpose in this notice will require us keeping your personal information for longer than the period of time in which users have an account with us.
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information, or, if this is not possible, we will securely store your personal information and isolate it from any further processing until deletion is possible.
How Do We Keep Your Information Safe?
We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information. You should only access the Services within a secure environment.
Do We Collect Information from Minors?
We do not knowingly collect, solicit data from, or market to children under 18 years of age, nor do we knowingly sell such personal information. By using the Services, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent's use of the Services. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any data we may have collected from children under age 18, please contact us at [email protected].
What Are Your Privacy Rights?
Withdrawing Your Consent
If we are relying on your consent to process your personal information, you have the right to withdraw your consent at any time by contacting us using the contact details provided in the section below. Please note that this will not affect the lawfulness of the processing before its withdrawal.
Opting Out of Marketing and Promotional Communications
You can unsubscribe from our marketing and promotional communications at any time by:
- Clicking on the unsubscribe link in the emails that we send
- Replying "STOP" or "UNSUBSCRIBE" to the SMS messages that we send
- Contacting us directly at [email protected] to request removal from all communications
You will then be removed from the marketing lists. However, we may still communicate with you to send service-related messages that are necessary for the administration and use of your account.
Important: No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. Information sharing to subcontractors in support services, such as customer service, is permitted. All other use case categories exclude text messaging originator opt-in data and consent; this information will not be shared with third parties.
Account Information
If you would at any time like to review or change the information in your account or terminate your account, you can log in to your account settings and update your user account, or contact us using the contact information provided. Upon your request to terminate your account, we will deactivate or delete your account and information from our active databases. However, we may retain some information in our files to prevent fraud, troubleshoot problems, assist with any investigations, enforce our legal terms and/or comply with applicable legal requirements.
If you have questions or comments about your privacy rights, you may email us at [email protected].
Controls for Do-Not-Track Features
Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage, no uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this Privacy Notice.
California law requires us to let you know how we respond to web browser DNT signals. Because there currently is not an industry or legal standard for recognizing or honoring DNT signals, we do not respond to them at this time.
Do United States Residents Have Specific Privacy Rights?
If you are a resident of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, or Virginia, you may have the right to request access to and receive details about the personal information we maintain about you, correct inaccuracies, get a copy of, or delete your personal information. You may also have the right to withdraw your consent to our processing of your personal information. These rights may be limited in some circumstances by applicable law.
Categories of Personal Information We Collect
| Category | Examples | Collected |
|---|---|---|
| A. Identifiers | Contact details, such as real name, telephone number, unique personal identifier, email address, and account name | YES |
| B. Personal information (California Customer Records statute) | Name, contact information, education, employment, employment history, and financial information | YES |
| C. Protected classification characteristics | Gender, age, date of birth, race and ethnicity, national origin, marital status | NO |
| D. Commercial information | Transaction information, purchase history, financial details, and payment information | YES |
| E. Biometric information | Fingerprints and voiceprints | NO |
| F. Internet or other similar network activity | Browsing history, search history, online behavior, interest data, and interactions with our websites | YES |
| G. Geolocation data | Device location | NO |
| H. Audio, electronic, sensory, or similar information | Images and audio, video or call recordings created in connection with our business activities | NO |
| I. Professional or employment-related information | Business contact details, job title, work history, and professional qualifications | NO |
| J. Education information | Student records and directory information | NO |
| K. Inferences drawn from collected personal information | Inferences drawn from any of the collected personal information to create a profile about an individual's preferences and characteristics | NO |
| L. Sensitive personal information | NO |
We will use and retain the collected personal information as needed to provide the Services or for as long as the user has an account with us (Categories A, B, D, and F).
Your Rights
You have rights under certain US state data protection laws, including:
- Right to know whether or not we are processing your personal data
- Right to access your personal data
- Right to correct inaccuracies in your personal data
- Right to request the deletion of your personal data
- Right to obtain a copy of the personal data you previously shared with us
- Right to non-discrimination for exercising your rights
- Right to opt out of the processing of your personal data if it is used for targeted advertising, the sale of personal data, or profiling
How to Exercise Your Rights
To exercise these rights, you can contact us by visiting salonosx.com/privacy, by emailing us at [email protected], or by referring to the contact details at the bottom of this document. We will need to verify your identity to determine you are the same person about whom we have information in our system.
Appeals
Under certain US state data protection laws, if we decline to take action regarding your request, you may appeal our decision by emailing us at [email protected]. We will inform you in writing of any action taken or not taken in response to the appeal, including a written explanation of the reasons for the decisions. If your appeal is denied, you may submit a complaint to your state attorney general.
California "Shine The Light" Law
California Civil Code Section 1798.83, also known as the "Shine The Light" law, permits our users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us using the contact details provided in the section below.
SMS Personal Data Protection
Message Frequency: Message frequency varies based on appointment activity.
Rates: Message and data rates may apply depending on your mobile carrier and plan.
Opt-Out: Reply STOP to any message to unsubscribe. You will receive one final confirmation message. To re-subscribe, reply START.
Help: Reply HELP to any message for assistance, or contact [email protected].
Mobile information will not be shared with third parties or affiliates for marketing or promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties, provided that the foregoing does not apply to sharing such information with our service providers (such as Twilio) who assist us in providing the services.
Text messaging originator opt-in data and consent will not be shared with any third parties. This restriction does not apply to service providers who assist us in delivering appointment-related SMS communications on behalf of salons using the platform.
Do We Make Updates to This Notice?
Yes, we will update this notice as necessary to stay compliant with relevant laws. We may update this Privacy Notice from time to time. The updated version will be indicated by an updated "Last Updated" date at the top of this Privacy Notice. If we make material changes to this Privacy Notice, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this Privacy Notice frequently to be informed of how we are protecting your information.
How Can You Contact Us About This Notice?
If you have questions or comments about this notice, please contact us:
SalonOSX
Andy Tran, doing business as SalonOSX
Email: [email protected]
Location: Cerritos, CA 90703, United States
How Can You Review, Update, or Delete the Data We Collect?
Based on the applicable laws of your country or state of residence in the US, you may have the right to request access to the personal information we collect from you, details about how we have processed it, correct inaccuracies, or delete your personal information. You may also have the right to withdraw your consent to our processing of your personal information. These rights may be limited in some circumstances by applicable law.
To request to review, update, or delete your personal information, please visit salonosx.com/privacy or email us at [email protected].