← Back to Bookuno

Privacy Policy

Effective: 7 June 2026 · Last updated: 7 June 2026 · Data controller: Bookuno Ltd

This policy explains what personal data Bookuno collects, how we use it, who we share it with, and what rights you have. We are committed to protecting your privacy and complying with UK GDPR and the Data Protection Act 2018.

We never sell your personal data.

1. Who we are

Bookuno Ltd is the data controller for personal data processed through the Bookuno platform at bookuno.co.uk. To contact us about privacy, email hello@bookuno.co.uk.

2. What data we collect

Customers

Business owners

Data we do not collect

3. How we use your data

PurposeData used
Creating and managing your accountAccount data
Processing and managing bookingsBooking data, account data
Processing payments and issuing refundsPayment status data (via Stripe)
Sending booking confirmations, reminders and receiptsEmail address, booking data
Providing customer supportAccount data, booking data, communications
Enabling business owners to manage their listings and bookingsBusiness profile data, booking data
Displaying verified reviewsReview content, first name and initial only
Improving and debugging the platformUsage data (anonymised where possible)
Fraud prevention and platform securityAccount data, usage data, IP address
Complying with legal obligationsAs required by applicable law

We do not use your data for automated decision-making that produces legal or similarly significant effects.

4. Lawful bases for processing

5. Who we share data with

We do not sell your data. We share it only as necessary to operate the platform:

RecipientPurposeLocation
StripePayment processing and payoutsUSA (adequacy)
SupabaseDatabase and authentication hostingEU / EEA
VercelPlatform hosting and deliveryEU / USA (SCCs)
The booking businessTo fulfil your booking requestUK

We may disclose personal data to law enforcement or regulatory bodies where required to do so by law, court order or to protect the safety of users or the public.

Where data is transferred outside the UK, we ensure appropriate safeguards are in place (adequacy decisions or Standard Contractual Clauses).

6. How long we keep data

Data typeRetention period
Account dataUntil account deletion, then 30 days for recovery, then permanently deleted
Booking records7 years from booking date (for financial and legal compliance)
Payment records7 years (HMRC requirements)
Support communications3 years from last contact
Usage and analytics dataUp to 24 months, then anonymised or deleted

7. Your rights

Under UK GDPR you have the following rights. To exercise any of them, contact hello@bookuno.co.uk. We will respond within one month.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO): ico.org.uk · 0303 123 1113.

To delete your Bookuno account, go to your account settings or email hello@bookuno.co.uk.

8. Cookies and local storage

Bookuno uses browser local storage and session storage (not traditional cookies) to maintain your session and app preferences. This is strictly necessary for the platform to function and does not require consent.

We do not currently use third-party advertising or tracking cookies. If we add analytics in the future, we will update this section and obtain consent where required.

What we store locally

You can clear stored data at any time through your browser's privacy settings.

9. Security

We protect your data using industry-standard measures including:

No system is 100% secure. If you believe your account has been compromised, contact us immediately at hello@bookuno.co.uk.

10. Children

Bookuno is not directed at children under 18. We do not knowingly collect personal data from anyone under 18. If you believe we have inadvertently collected such data, please contact us and we will delete it promptly.

11. Changes to this policy

We may update this privacy policy from time to time. We will notify you of significant changes by email and update the "Last updated" date at the top of this page. Continued use of the platform after the effective date constitutes acceptance.

12. Contact us

For any privacy questions, data requests or complaints:

We aim to respond to all privacy requests within 5 working days and will complete them within one month as required by UK GDPR.