Privacy Policy

Last updated 25 June 2026

This policy explains what personal information Next Scheduling Software collects, how it is used, and your choices. It covers both people who book through a business's page and businesses that run their scheduling on the Service.

Who we are

Next Scheduling Software is provided by Magnifecent Dragon LTD. For data about people who book through a business's page, that business decides how the data is used (the controller) and we process it on their behalf (the processor). For a business's own account data, we are the controller.

What we collect

When you book a session or sign up for a class, we collect your first and last name, email address, phone number (if you provide one), time zone, the session you booked, and any message you add.

When a business creates an account, we collect their name and email, business details (such as business name, time zone, and booking handle), login and security information, and payment-related identifiers from our payment processor (we do not see or store full card numbers).

Why we use it and our legal basis

We use booking data to schedule and confirm sessions, send confirmation and reminder emails, and let you and the business manage, reschedule, or cancel a booking. We use account data to provide, secure, and bill the Service. We do not sell personal information or use it for advertising.

Where required by law, our bases for processing are performance of a contract, our legitimate interests in running the Service securely, and consent (for example, for optional marketing emails, which you can withdraw at any time).

Who it is shared with

Booking details are visible to the business you booked with. To deliver the Service we also use a small set of service providers (sub-processors) — for example for hosting, our database, email delivery, and payments. If a business has connected Google Calendar, your session is added to it as an event that includes your name and email.

A current list of our sub-processors is available at /subprocessors. These providers handle data only to provide the Service to us.

How long we keep it

We keep booking and account data for as long as the account is active and as needed to provide the Service and keep records of sessions. After an account is closed, we delete or anonymize personal data within a reasonable period, except where we must keep certain records (such as transaction records) to meet legal, tax, or accounting obligations.

Cookies

When you start a booking, we store one small functional cookie to hold your selected time slot while you complete the form. Businesses signing in use secure session cookies to stay logged in. These are not used for tracking or advertising.

Payments

Payments are processed by Stripe. Card details are entered directly with Stripe and are never stored on our servers; we keep only the identifiers needed to reconcile a payment.

Where your data is processed

Our hosting and database providers process data in the United States. Where personal data is transferred internationally, we rely on appropriate safeguards as required by applicable law.

Security

We protect data with measures such as encryption in transit, hashed passwords, access controls, and optional two-factor authentication for business accounts. No system is perfectly secure, but we work to protect your information.

Your rights and choices

You can ask to see, correct, delete, or receive a copy of the personal data we hold about you. If your request is about data you provided when booking with a business, please contact that business — we will help them respond. For account data, or to reach us directly, email support@viktorzaharov.com.

Changes and contact

We may update this policy from time to time and will change the date above when we do. Questions about this policy or your data? Email support@viktorzaharov.com.