BarberOne – Privacy Policy

Launchpad HQ Limited trading as "BarberOne"

Last updated: 10/12/2025

1. Who we are

This Privacy Policy explains how Launchpad HQ Limited, a company registered in England and Wales with company number 16149065, whose registered office is at 85 Great Portland Street, London, W1W 7LT, trading as “BarberOne” (“BarberOne”, “we”, “us”) collects and uses personal data when:

  • barbershops and similar businesses become our clients; and
  • those businesses use BarberOne to manage their customers, loyalty passes, marketing and bookings.

BarberOne is the data controller of personal data relating to its own clients and prospects. For barbers’ end-customers (“Client Customers”), BarberOne normally acts as a data processor on behalf of the barbershop, which is the controller.

Our contact details are:

BarberOne (Launchpad HQ Limited)
Launchpad HQ Limited, company no. 16149065
Registered office: 85 Great Portland Street, London, W1W 7LT
Email: andrew@barberone.co.uk

2. Scope of this Privacy Policy

This Privacy Policy covers:

  • personal data we process about our clients (e.g. barbershop owners, staff contacts);
  • personal data we process about prospective clients (e.g. email lists we build from enquiries, events or marketing); and
  • personal data we process as a processor about Client Customers (e.g. barbershop customers who receive coupons, loyalty passes, SMS/email reminders).

Where we act as a processor, we process Client Customers’ personal data only on the instructions of the relevant barbershop/controller. In such cases, you should also review that barbershop’s privacy notice.

3. Personal data we collect

3.1. Data about our clients and prospects

We may collect:

  • Identification and contact details – name, business name, role, email address, phone number, postal address.
  • Business details – barbershop name, locations, services offered, opening hours, pricing, logos and brand assets.
  • Account and usage data – login details, activity logs, support tickets, feedback and preferences.
  • Billing and transaction data – payment method details (through our payment processor), invoices, payment history.
  • Marketing and communication preferences – records of your consents or objections to receiving marketing communications.

3.2. Data about Client Customers (barbershop customers)

On behalf of our clients, we may process:

  • Contact details – name, mobile number, email address.
  • Visit and transaction data – dates and times of visits, services purchased, coupons redeemed, loyalty stamps, rewards.
  • Wallet pass and coupon data – pass IDs, status, redemptions, expiry dates, associated offers.
  • Marketing interaction data – whether SMS or email messages were delivered, opened or clicked; unsubscribes or opt-outs.
  • Technical data – device type, browser type, IP address and similar technical identifiers when interacting with landing pages or forms (where configured).

The exact categories of data will depend on how each barbershop chooses to configure and use BarberOne.

4. How we collect personal data

We collect personal data:

  • directly from you – when you request information, sign up for a trial, sign a contract, use the Services or contact us;
  • automatically – through cookies and similar technologies on BarberOne websites or landing pages (to the extent configured and permitted by law);
  • from our clients – who upload or enter Client Customer details into the platform, or connect BarberOne with their other systems;
  • from publicly available sources – limited business contact information for prospective clients.

5. Purposes and lawful bases for processing

We process personal data only where we have a lawful basis under UK GDPR (and, where applicable, EU GDPR).

5.1. For our clients and prospects (BarberOne as controller)

We may use your personal data to:

1. Provide and administer the Services

  • Set up your account, configure your barbershop(s), manage access and deliver support.
  • Lawful basis: Performance of a contract (or steps prior to entering into a contract).

2. Take payment and manage billing

  • Process subscription fees, issue invoices and manage renewals.
  • Lawful bases: Performance of a contract and legal obligation (e.g. accounting rules).

3. Communicate with you

  • Respond to enquiries, send service updates, inform you of changes to our terms or policies.
  • Lawful bases: Performance of a contract and/or legitimate interests (to operate our business and keep you informed of key changes).

4. Improve and secure our Services

  • Monitor usage patterns, fix issues, develop new features and maintain security.
  • Lawful basis: Legitimate interests (to grow and protect our business).

5. Market BarberOne to you

  • Send emails or SMS about BarberOne features, offers and content we think may be of interest.
  • Lawful bases: Consent (where required by PECR) or legitimate interests (e.g. for existing customers within the “soft opt-in”, with a clear opt-out in each message).

You can opt out of marketing communications at any time by using the unsubscribe link or contacting us.

5.2. For Client Customers (BarberOne as processor)

On behalf of our clients (the barbershops), we may process Client Customers’ personal data in order to:

  • issue and manage digital coupons and loyalty passes;
  • send transactional messages relating to bookings, loyalty status and coupon redemptions;
  • send marketing messages where the barbershop has established a lawful basis;
  • track visits, redemptions and loyalty progression;
  • provide analytics and reports to the barbershop.

In these cases, the barbershop is responsible for determining the lawful basis and providing privacy information to Client Customers. BarberOne processes the data as instructed by the barbershop and in accordance with our data-processing terms.

6. Direct marketing by SMS and email

BarberOne supports sending SMS and email campaigns through the platform. The legal responsibility for compliance with UK GDPR and PECR (and equivalent local laws) lies primarily with the barbershop as controller.

In particular, the barbershop must ensure that:

  • it has an appropriate lawful basis (e.g. consent or soft opt-in) before sending marketing messages;
  • consents are specific, informed and recorded, where required;
  • each message contains a clear and easy way to opt out; and
  • any opt-out requests are acted upon promptly.

BarberOne provides tools to record and respect opt-outs, but we cannot guarantee a client’s compliance with the law.

7. Sharing of personal data

We may share personal data with:

  • Service providers / processors – e.g. hosting providers, email/SMS gateways, payment processors, analytics providers, wallet pass providers, CRM/databases and automation platforms, used exclusively to deliver our Services and subject to contractual safeguards.
  • Our professional advisers – such as lawyers, accountants and insurers, under confidentiality obligations.
  • Authorities and regulators – where required by law or to protect our rights, property or the safety of others.
  • Successors – if we sell or transfer part or all of our business, personal data may be transferred as part of that transaction, subject to appropriate protections.

We do not sell personal data to third parties for their own marketing.

8. International transfers

Some of our service providers may be located outside the UK/EEA. Where personal data is transferred internationally, we ensure appropriate safeguards are in place, such as:

  • an adequacy regulation by the UK government or European Commission; or
  • standard contractual clauses (SCCs) or equivalent mechanisms approved under data-protection law.

You can contact us for more information about the safeguards used for a specific transfer.

9. Data retention

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy or as required by law. Factors we consider include:

  • how long you use our Services;
  • legal and regulatory retention periods (e.g. tax and accounting);
  • the likelihood of disputes or complaints.

For Client Customers, retention periods are typically determined by the barbershop/controller. We may retain certain logs or backups for a limited additional period for security and audit purposes.

10. Your rights

Where BarberOne acts as controller (e.g. for client data), you have the following rights under UK GDPR, subject to limitations and conditions:

  • Right of access – to request a copy of your personal data we hold.
  • Right to rectification – to correct inaccurate or incomplete data.
  • Right to erasure – to request deletion of your personal data in certain circumstances.
  • Right to restriction of processing – to limit processing in certain situations.
  • Right to data portability – to receive your data in a structured, commonly used and machine-readable format where the lawful basis is consent or contract and processing is automated.
  • Right to object – to processing based on legitimate interests, and to direct marketing.

To exercise these rights, contact us at privacy@barberone.co.uk. We may need to verify your identity before responding.

Where BarberOne acts as processor (for Client Customers), requests should normally be sent to the relevant barbershop, who is the controller. We will assist the barbershop in responding to such requests where required by law and by our contract with them.

Your right to complain

You also have the right to lodge a complaint with your local data-protection authority. In the UK, this is the Information Commissioner’s Office (ICO).

11. Security

We take appropriate technical and organisational measures to protect personal data against unauthorised or unlawful processing, accidental loss, destruction or damage. These may include:

  • access controls and authentication;
  • encryption in transit and/or at rest (where appropriate);
  • regular backups;
  • internal policies and staff training.

However, no system is completely secure, and we cannot guarantee absolute security of information transmitted via the internet.

12. Children

The Services are designed for use by barbershops and other service businesses, not directly by children. Our clients may process personal data about younger customers; in such cases the barbershop is responsible for ensuring compliance with applicable child-protection and consent rules.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “last updated” date at the top and, where appropriate, provide more prominent notice (e.g. email or in-app notification).

We encourage you to review this Privacy Policy periodically to stay informed about how we handle personal data.

14. Contact us

If you have any questions about this Privacy Policy or how we handle personal data, please contact:

BarberOne (Launchpad HQ Limited)
Launchpad HQ Limited, company no. 16149065
Registered office: 85 Great Portland Street, London, W1W 7LT
Email: andrew@barberone.co.uk