Join Beta
Legal

Privacy Policy

Last updated: 20 January 2026

1. Who We Are

Luminate ("we", "us", "our") provides salon management software to hair and beauty salons across the UK. This privacy policy explains how we collect and use personal information.

  • When you visit our website or contact us, we act as a data controller.
  • When salons use our software to manage their business, we act as a data processor on their behalf.

2. Information We Collect

As a website operator:

  • Contact information you provide (name, email, phone)
  • Technical data (IP address, browser type, pages visited)
  • Communications you send us

As a service provider to salons:

We process data on behalf of salons, including their clients' names, contact details, appointment history, preferences, allergy/skin test records, and payment information. Salons determine what data is collected and how it is used.

3. How We Use Your Information

Website visitors:

  • To respond to enquiries (lawful basis: legitimate interests)
  • To provide information about our services (lawful basis: legitimate interests)
  • To improve our website (lawful basis: legitimate interests)

Salon customers:

  • We only process data as instructed by the salon
  • The salon is responsible for having a lawful basis to collect their clients' data

4. Data Sharing

We may share data with:

  • Cloud hosting providers (to store data securely)
  • Payment processors (to process transactions)
  • Communication providers (to send SMS/email on behalf of salons)

We do not sell personal data. A list of sub-processors is available to salon customers upon request.

5. Data Storage & International Transfers

All personal data is stored and processed within the European Union. We do not transfer your data outside the EU/EEA.

Our servers and infrastructure are located in EU data centres, ensuring your data benefits from the strong data protection standards of European law.

6. Data Retention

  • Website enquiries: We retain contact form submissions for 2 years.
  • Salon data: Retained as instructed by the salon and in accordance with our Data Processing Agreement.

7. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Restrict processing
  • Data portability
  • Object to processing

To exercise these rights for data we control (website visitors), contact us at hello@luminate.salon.

For data held by a salon using our software, please contact the salon directly as they are the data controller.

8. Data Security

We implement appropriate technical and organisational measures to protect personal data, including encryption, access controls, and regular security assessments.

9. Complaints

You have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data protection rights have been violated.

https://ico.org.uk/make-a-complaint/

10. Cookies & Analytics

Our application uses essential session cookies to keep you logged in and manage your session. These are strictly necessary for the service to function and do not require consent under UK law.

We use Plausible Analytics to understand how visitors use our website. Plausible is privacy-focused, does not use cookies, and collects only anonymous, aggregate data. No personal information is collected or stored. We do not use tracking or advertising cookies.

11. Changes to This Policy

We may update this policy from time to time. Significant changes will be communicated via our website.

12. Contact Us

For privacy-related queries:

Email: hello@luminate.salon

For salon customers, additional terms apply under our Data Processing Agreement provided upon sign-up.