Privacy Policy

Last updated: 14 June 2026

Who we are

Linxwell ("we", "us", "our") operates a SaaS platform that provides AI-powered reception and booking management for service businesses. We are the data controller for personal data processed through our platform.

What data we collect

When you book an appointment or pay online, we may collect:

  • Your name, phone number, and email address
  • Appointment and booking details
  • Payment information (processed securely by Stripe — see below)
  • Call recordings and transcripts (when you interact with our AI receptionist)

Payment processing

We use Stripe as our payment processor. When you make a payment, your card details are sent directly to Stripe and are never stored on our servers. Stripe processes your payment data in accordance with PCI DSS Level 1 standards.

Stripe may collect and process the following data on our behalf:

  • Card number, expiry date, and CVC (during payment processing only)
  • Cardholder name and billing address
  • Transaction amounts, dates, and reference numbers
  • Device and browser information for fraud prevention

Stripe acts as a data processor under UK GDPR. Stripe processes data primarily within the EEA/UK but may transfer data internationally for fraud detection and compliance purposes, covered by Binding Corporate Rules and Standard Contractual Clauses. For more information, see Stripe's Privacy Policy.

Salon owner payment onboarding

If you are a salon owner setting up online payments, Stripe will collect identity verification data (name, date of birth, address, bank account details) as part of their Know Your Customer (KYC) requirements. This data is collected and stored directly by Stripe under their own privacy policy — Linxwell does not process or store this information.

How we use your data

  • To process and manage your bookings (contractual necessity)
  • To process payments securely via Stripe (contractual necessity)
  • To send booking confirmations and reminders (legitimate interest)
  • To improve our services and prevent fraud (legitimate interest)
  • To send marketing communications (only with your explicit consent)

Data sharing

We share your data only with the service business you are booking with and with our sub-processors who help us deliver the service:

  • Stripe — payment processing
  • Twilio — SMS notifications and voice calls
  • Supabase — database hosting
  • Vercel — application hosting
  • Vapi — AI voice assistant

We do not sell your personal data to third parties.

Your rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to processing based on legitimate interest
  • Withdraw consent for marketing at any time
  • Lodge a complaint with the ICO (ico.org.uk)

Contact

For privacy enquiries, contact us at support@linxwell.com.