Introduction
This privacy policy explains how EasyQueue ("we", "us", "our", or "the Service") collects, uses, and protects your personal data when you use our queue management platform. We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
The Operator of this service is a sole trader based in the United Kingdom. We act as the data controller for the personal information we collect through EasyQueue.
Data We Collect
We collect and process the following types of personal data:
- Account Information: Name, email address, phone number, and business details you provide when registering for EasyQueue.
- Customer Details: Information about your customers that you input into the queue system, including names, contact details (phone numbers, email addresses), and any custom notes you add.
- SMS and Email Notifications: Contact information used to send queue updates and notifications to your customers, including delivery status and engagement metrics.
- Usage Data: Information about how you use the Service, including login times, features accessed, queue statistics, and interaction patterns.
- Analytics Data: Aggregated and anonymised data about service performance, feature usage, and system health to improve our platform.
- Payment Information: Billing details and transaction history. Payment card details are handled securely by our payment processor and are not stored on our servers.
- Technical Data: IP addresses, browser type, device information, and cookies for security and functionality purposes.
How We Use Data
We use your personal data for the following purposes:
- Queue Notifications: To send SMS and email notifications to your customers about their queue position, estimated wait times, and status updates.
- Service Provision: To provide, maintain, and improve the queue management features of EasyQueue, including real-time updates and customer management.
- Service Improvements: To analyse usage patterns, identify bugs, develop new features, and enhance the overall user experience.
- Customer Support: To respond to your enquiries, troubleshoot issues, and provide technical assistance.
- Billing and Payments: To process subscription payments, manage your account, and send billing notifications.
- Security: To detect, prevent, and address fraud, security issues, and violations of our terms of service.
- Legal Compliance: To comply with applicable laws, regulations, and legal processes.
Lawful Basis for Processing
Under UK GDPR, we process your personal data on the following lawful bases:
- Contractual Necessity: Processing is necessary to perform our contract with you when you use EasyQueue's services.
- Legitimate Interests: We have a legitimate interest in improving our service, ensuring security, and conducting analytics, balanced against your privacy rights.
- Consent: Where you have given us explicit consent to process your data for specific purposes, such as marketing communications.
- Legal Obligation: Processing is necessary to comply with legal requirements, such as tax and accounting obligations.
Data Retention & Security
Retention: We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy, unless a longer retention period is required by law. Account data is retained while your subscription is active and for up to 12 months after cancellation for billing and legal purposes. Customer queue data may be deleted or archived according to your preferences and retention settings.
Security: We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or misuse. This includes encryption in transit and at rest, secure server infrastructure, regular security audits, access controls, and employee training. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.
Third-Party Services
We work with trusted third-party service providers to deliver EasyQueue's functionality. These providers may process your data on our behalf and are bound by data processing agreements:
- SMS Providers: To send text message notifications to your customers about queue updates.
- Email Service Providers: To send email notifications and account-related communications.
- Cloud Hosting: To host our platform infrastructure and store data securely.
- Payment Processors: To handle subscription payments and billing securely.
- Analytics Tools: To understand how our service is used and identify improvements.
We ensure that all third-party providers comply with UK GDPR and have appropriate safeguards in place. We do not sell or share your personal data with third parties for their own marketing purposes.
Your Rights
Under UK GDPR, you have the following rights regarding your personal data:
- Right of Access: You can request a copy of the personal data we hold about you.
- Right to Rectification: You can ask us to correct inaccurate or incomplete data.
- Right to Erasure: You can request that we delete your personal data in certain circumstances ("right to be forgotten").
- Right to Restriction: You can ask us to restrict processing of your data in specific situations.
- Right to Data Portability: You can request your data in a structured, commonly used format to transfer to another service.
- Right to Object: You can object to processing based on legitimate interests or for direct marketing purposes.
- Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time.
To exercise any of these rights, please contact us using the details below. We will respond to your request within one month, as required by UK GDPR.
Contact Us
If you have any questions about this privacy policy, wish to exercise your data protection rights, or have concerns about how we handle your personal data, please contact the Operator using the contact details provided on this service.
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection, if you believe we have not handled your data appropriately. Visit ico.org.uk for more information.