Plain English summary: KikoGlow collects the information needed to run your salon software — your account details, your clients' booking data, and payment information. We do not sell your data. We do not sell your clients' data. We use industry-standard security to protect everything.
01Information we collect
We collect information you provide when you create an account or use KikoGlow, including:
- Account information: your name, salon name, email address, phone number, and billing address.
- Payment information: bank account details for payouts (held securely by Stripe), and credit card details for your subscription (held by Stripe — we never store full card numbers).
- Salon data: services, pricing, team members, hours, and business preferences you configure.
- Client data: names, phone numbers, email addresses, appointment history, and notes you enter about your clients.
- Usage data: how you interact with the platform, including pages visited, features used, and session duration.
- Device data: IP address, browser type, operating system, and device identifiers.
02How we use your information
- Provide, maintain, and improve the KikoGlow platform.
- Process payments and manage payouts to your connected bank account.
- Send appointment confirmations, reminders, and receipts to your clients on your behalf.
- Power Kiko AI features, including gap-filling suggestions and revenue forecasting.
- Send you service updates, security alerts, and support messages.
- Detect and prevent fraud, abuse, and security incidents.
- Comply with legal obligations.
We do not use your data or your clients' data for advertising purposes. We do not sell data to third parties.
03How we share your information
- Service providers: Stripe (payments), Supabase (database), Twilio (SMS), Resend (email), and Anthropic (AI features).
- Legal requirements: We may disclose information if required by law, court order, or government authority.
- Business transfers: If KikoGlow is acquired or merges with another company, your information may be transferred.
- With your consent: We may share information for other purposes with your explicit consent.
We never sell your personal data or your clients' personal data to any third party.
04Data storage and security
- TLS encryption for all data in transit.
- AES-256 encryption for sensitive data at rest.
- Role-based access controls limiting employee access to your data.
- Regular security audits and vulnerability testing.
- Two-factor authentication available for all accounts.
05Your clients' data
When you enter your clients' information into KikoGlow, you are the data controller and KikoGlow acts as a data processor on your behalf.
- You are responsible for having a lawful basis for collecting and storing your clients' information.
- You may export or delete client data at any time from within your KikoGlow account.
- We process client data only to provide you with the services you have requested.
06Cookies and tracking
- Keep you logged in to your account.
- Remember your preferences and settings.
- Understand how you use the platform so we can improve it.
- Detect and prevent fraud and abuse.
We do not use third-party advertising cookies.
07Your rights
- Access: request a copy of the personal data we hold about you.
- Correction: request that we correct inaccurate or incomplete data.
- Deletion: request that we delete your personal data, subject to legal obligations.
- Portability: request your data in a machine-readable format.
To exercise any of these rights, email us at kikoglowcom@gmail.com. We will respond within 30 days.
08Children's privacy
KikoGlow is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from minors.
09Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email at least 14 days before the changes take effect.