CutOnTime
nl
Legal document

Privacy Policy (GDPR)

This policy explains how CutOnTime processes personal data for bookings, platform administration, and customer communication.

Last updated: 17 March 2026
1

Data controller

CutOnTime acts as controller for personal data collected and processed through the platform.

For privacy questions or data-right requests, contact us through the email listed on this page.

2

Data we process

We only process data needed to operate the service, including:

  • Barbershop and staff account data (name, email, login credentials).
  • Customer booking data (name, email, phone, appointment details).
  • Technical security data (sessions, IP address, user agent, abuse-prevention logs).
  • Notification and communication records for confirmations, reminders, and service updates.
3

Purposes and legal bases

We process personal data only under valid GDPR legal bases:

  • Performance of a contract (bookings, account access, service communication).
  • Legal obligations (administration, anti-fraud duties where required).
  • Legitimate interests (security, reliability, and quality assurance).
  • Consent (optional analytics and similar technologies).
4

Retention periods

Data is retained no longer than necessary for the purpose it was collected for.

Where possible, data is deleted or anonymized after retention periods expire.

5

Third-party processors

We share data only with processors necessary to provide the platform, such as hosting, email, and payment providers.

Processor agreements and appropriate safeguards are in place with relevant vendors.

6

International transfers

If personal data is processed outside the EEA, we rely on appropriate safeguards such as Standard Contractual Clauses.

7

Your rights

Under GDPR, data subjects have rights including:

  • Right of access, rectification, and erasure.
  • Right to restrict processing and to object.
  • Right to data portability for data provided by you.
  • Right to withdraw consent at any time where processing relies on consent.
8

Security

CutOnTime applies technical and organizational measures to protect data against loss, misuse, and unauthorized access.

In case of a data breach, we act under applicable incident response and legal notification obligations.

9

Complaints

If you believe we handle personal data incorrectly, please contact us first so we can address it promptly.

You also have the right to lodge a complaint with the Dutch Data Protection Authority.

Privacy contact

support@cutontime.nl