BarberOne← Back to BarberOne

Privacy Policy

Launchpad HQ Limited trading as “BarberOne”
Last updated: 10/12/2025

1. Who we are

This Privacy Policy explains how Launchpad HQ Limited, a company registered in England and Wales with company number 16149065, whose registered office is at 85 Great Portland Street, London, W1W 7LT, trading as “BarberOne” (“BarberOne”, “we”, “us”) collects and uses personal data when barbershops and similar businesses become our clients; and those businesses use BarberOne to manage their customers, loyalty passes, marketing and bookings.

BarberOne is the data controller of personal data relating to its own clients and prospects. For barbers’ end-customers (“Client Customers”), BarberOne normally acts as a data processor on behalf of the barbershop, which is the controller.

Our contact details are: BarberOne (Launchpad HQ Limited), company no. 16149065, registered office 85 Great Portland Street, London, W1W 7LT. Email: [email protected].

2. Scope of this Privacy Policy

This Privacy Policy covers personal data we process about our clients (e.g. barbershop owners, staff contacts); personal data we process about prospective clients (e.g. email lists we build from enquiries, events or marketing); and personal data we process as a processor about Client Customers (e.g. barbershop customers who receive coupons, loyalty passes, SMS/email reminders).

Where we act as a processor, we process Client Customers’ personal data only on the instructions of the relevant barbershop/controller. In such cases, you should also review that barbershop’s privacy notice.

3. Personal data we collect

3.1. Data about our clients and prospects

3.2. Data about Client Customers (barbershop customers)

On behalf of our clients, we may process:

The exact categories of data will depend on how each barbershop chooses to configure and use BarberOne.

4. How we collect personal data

5. Purposes and lawful bases for processing

We process personal data only where we have a lawful basis under UK GDPR (and, where applicable, EU GDPR).

5.1. For our clients and prospects (BarberOne as controller)

1. Provide and administer the Services – set up your account, configure your barbershop(s), manage access and deliver support. Lawful basis: performance of a contract (or steps prior to entering into a contract).

2. Take payment and manage billing – process subscription fees, issue invoices and manage renewals. Lawful bases: performance of a contract and legal obligation (e.g. accounting rules).

3. Communicate with you – respond to enquiries, send service updates, inform you of changes to our terms or policies. Lawful bases: performance of a contract and/or legitimate interests (to operate our business and keep you informed of key changes).

4. Improve and secure our Services – monitor usage patterns, fix issues, develop new features and maintain security. Lawful basis: legitimate interests (to grow and protect our business).

5. Market BarberOne to you – send emails or SMS about BarberOne features, offers and content we think may be of interest. Lawful bases: consent (where required by PECR) or legitimate interests (e.g. for existing customers within the “soft opt-in”, with a clear opt-out in each message). You can opt out of marketing communications at any time by using the unsubscribe link or contacting us.

5.2. For Client Customers (BarberOne as processor)

On behalf of our clients (the barbershops), we may process Client Customers’ personal data in order to issue and manage digital coupons and loyalty passes; send transactional messages relating to bookings, loyalty status and coupon redemptions; send marketing messages where the barbershop has established a lawful basis; track visits, redemptions and loyalty progression; and provide analytics and reports to the barbershop. In these cases, the barbershop is responsible for determining the lawful basis and providing privacy information to Client Customers. BarberOne processes the data as instructed by the barbershop and in accordance with our data-processing terms.

6. Direct marketing by SMS and email

BarberOne supports sending SMS and email campaigns through the platform. The legal responsibility for compliance with UK GDPR and PECR (and equivalent local laws) lies primarily with the barbershop as controller. In particular, the barbershop must ensure that it has an appropriate lawful basis (e.g. consent or soft opt-in) before sending marketing messages; consents are specific, informed and recorded, where required; each message contains a clear and easy way to opt out; and any opt-out requests are acted upon promptly. BarberOne provides tools to record and respect opt-outs, but we cannot guarantee a client’s compliance with the law.

7. Sharing of personal data

We may share personal data with:

We do not sell personal data to third parties for their own marketing.

8. International transfers

Some of our service providers may be located outside the UK/EEA. Where personal data is transferred internationally, we ensure appropriate safeguards are in place, such as an adequacy regulation by the UK government or European Commission; or standard contractual clauses (SCCs) or equivalent mechanisms approved under data-protection law. You can contact us for more information about the safeguards used for a specific transfer.

9. Data retention

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy or as required by law. Factors we consider include how long you use our Services; legal and regulatory retention periods (e.g. tax and accounting); and the likelihood of disputes or complaints. For Client Customers, retention periods are typically determined by the barbershop/controller. We may retain certain logs or backups for a limited additional period for security and audit purposes.

10. Your rights

Where BarberOne acts as controller (e.g. for client data), you have the following rights under UK GDPR, subject to limitations and conditions:

To exercise these rights, contact us at [email protected]. We may need to verify your identity before responding. Where BarberOne acts as processor (for Client Customers), requests should normally be sent to the relevant barbershop, who is the controller. We will assist the barbershop in responding to such requests where required by law and by our contract with them.

Your right to complain

You also have the right to lodge a complaint with your local data-protection authority. In the UK, this is the Information Commissioner’s Office (ICO).

11. Security

We take appropriate technical and organisational measures to protect personal data against unauthorised or unlawful processing, accidental loss, destruction or damage. These may include access controls and authentication; encryption in transit and/or at rest (where appropriate); regular backups; and internal policies and staff training. However, no system is completely secure, and we cannot guarantee absolute security of information transmitted via the internet.

12. Children

The Services are designed for use by barbershops and other service businesses, not directly by children. Our clients may process personal data about younger customers; in such cases the barbershop is responsible for ensuring compliance with applicable child-protection and consent rules.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “last updated” date at the top and, where appropriate, provide more prominent notice (e.g. email or in-app notification). We encourage you to review this Privacy Policy periodically to stay informed about how we handle personal data.

14. Contact us

If you have any questions about this Privacy Policy or how we handle personal data, please contact: BarberOne (Launchpad HQ Limited), company no. 16149065, registered office 85 Great Portland Street, London, W1W 7LT. Email: [email protected].

BarberOne is a trading name of Launchpad HQ Limited, registered in England and Wales (company no. 16149065), registered office 85 Great Portland Street, London, W1W 7LT. Questions? [email protected]