Privacy Policy

Contents

1. Information We Collect

Information you provide directly

• Account registration details (name, email address, password)
• Organisation and event information you create or manage
• Artist and talent profile data you input (names, biographies, images)
• Schedule and event programme data
• Payment and billing information (processed securely by Stripe)
• Communications you send to us (support requests, feedback)

Information collected automatically

• Device information (browser type, operating system, device identifiers)
• Usage data (pages visited, features used, interaction timestamps)
• IP address and approximate geographic location
• Cookies and similar tracking technologies (see our ) Cookie Policy

2. How We Use Your Information

We use your information to:

• Provide, maintain, and improve the Schedulux Service
• Process transactions and manage your subscription
• Send transactional emails (account confirmations, billing receipts, security alerts)
• Provide customer support and respond to enquiries
• Analyse usage patterns to improve product features and user experience
• Detect, prevent, and address fraud, abuse, or technical issues
• Comply with legal obligations and enforce our Terms of Service

We will never sell your personal information to third parties for marketing purposes.

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, we process your personal data under the following legal bases:

• Contractual necessity — to provide the Service you have subscribed to
• Legitimate interests — to improve our products, prevent fraud, and ensure security
• Consent — where you have opted in to receive marketing communications or non-essential cookies
• Legal obligation — to comply with applicable laws and regulations

4. Data Sharing & Third Parties

We may share your information with:

• Service providers — companies that help us operate (e.g. Firebase/Google Cloud for hosting, Stripe for payments, Google Analytics for usage insights)
• Your organisation members — other users you invite to collaborate on events within your organisation
• Public embed viewers — schedule data you choose to publish via embeddable widgets is viewable by anyone who visits the embedding website
• Legal authorities — when required by law, court order, or to protect our rights and safety

All third-party service providers are contractually bound to handle your data securely and only for the purposes we specify.

5. International Data Transfers

Schedulux is hosted on Google Cloud / Firebase infrastructure. Your data may be stored and processed in data centres located in the United States, Australia, or other regions. When we transfer data outside the EEA or UK, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs), adequacy decisions, or other lawful transfer mechanisms recognised under applicable data protection law.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. When you delete your account, we will remove or anonymise your personal data within 90 days, unless we are required to retain it for legal, tax, or audit purposes. Aggregated, anonymised data that cannot identify you may be retained indefinitely for analytics and product improvement.

7. Your Rights

Depending on your location, you may have the following rights:

All Users

• Access the personal data we hold about you
• Correct inaccurate or incomplete data
• Delete your account and associated data
• Withdraw consent for optional processing

EEA / UK (GDPR)

• Right to data portability
• Right to restrict processing
• Right to object to processing based on legitimate interests
• Right to lodge a complaint with your local Data Protection Authority

California (CCPA / CPRA)

• Right to know what personal information is collected and how it is used
• Right to request deletion of personal information
• Right to opt out of the sale of personal information (note: we do not sell your data)
• Right to non-discrimination for exercising your rights

Australia (Privacy Act 1988)

• Right to access and correct your personal information
• Right to complain to the Office of the Australian Information Commissioner (OAIC)

To exercise any of these rights, please contact us at . privacy@schedulux.com

8. Children’s Privacy

Schedulux is not directed at children under the age of 16 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

9. Cookies & Tracking

We use cookies and similar technologies to provide essential functionality, analyse traffic, and remember your preferences. For full details on the cookies we use and how to manage them, please see our . Cookie Policy

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the “Last updated” date. For significant changes, we may also send you an email notification. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us: