CalendarWise Back

GDPR & Privacy Policy

Last updated: April 2026

1. Data Controller

AGCS LIMITED trading as ARTISTEHUB (Company Registration 10778479) is the data controller for personal data processed through CalendarWise. Contact: [email protected].

2. Data We Collect

We collect and process the following categories of personal data:

  • Account data: name, email address, and password (hashed) when you register.
  • Booking data: name, email, phone number, company name, and any messages provided by visitors when making booking requests.
  • Usage data: IP address, browser type, pages visited, and timestamps for security and analytics.
  • Company data: business name, logo, description, timezone, and brand settings you configure.

3. Legal Basis for Processing

We process your data on the following bases under the UK GDPR:

  • Contract performance: to provide you with the scheduling service you signed up for.
  • Legitimate interests: to improve and secure our Service, prevent fraud, and communicate service updates.
  • Consent: where explicitly given, for optional communications such as marketing emails.

4. How We Use Your Data

  • To operate and maintain your account and booking functionality.
  • To send transactional emails (booking confirmations, status updates).
  • To enforce our terms of service and protect against misuse.
  • To improve the Service through aggregated, anonymised analytics.

5. Data Sharing

We do not sell your personal data. We may share data with trusted third-party service providers (hosting, email delivery, cloud storage) who process data on our behalf under strict data processing agreements. We may disclose data if required by law.

6. Data Retention

We retain account data for as long as your account is active. Booking data is retained for 24 months after the last booking activity. You may request earlier deletion by contacting us.

7. Your Rights

Under the UK GDPR, you have the right to:

  • Access your personal data and receive a copy.
  • Rectify inaccurate or incomplete data.
  • Erase your personal data (“right to be forgotten”).
  • Restrict the processing of your data.
  • Data portability — receive your data in a structured, machine-readable format.
  • Object to processing based on legitimate interests.
  • Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, email [email protected]. We will respond within 30 days.

8. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including encryption in transit (TLS), secure password hashing (bcrypt), and access controls.

9. International Transfers

Your data may be processed on servers outside the UK/EEA. Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses.

10. Cookies

We use essential cookies for authentication and session management. We do not use advertising or tracking cookies. Essential cookies cannot be disabled as they are necessary for the Service to function.

11. Complaints

If you are not satisfied with our handling of your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk.

12. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or a notice within the Service.