Last updated 25 June 2026
This policy explains what personal information Next Scheduling Software collects, how it is used, and your choices. It covers both people who book through a business's page and businesses that run their scheduling on the Service.
Next Scheduling Software is provided by Magnifecent Dragon LTD. For data about people who book through a business's page, that business decides how the data is used (the controller) and we process it on their behalf (the processor). For a business's own account data, we are the controller.
When you book a session or sign up for a class, we collect your first and last name, email address, phone number (if you provide one), time zone, the session you booked, and any message you add.
When a business creates an account, we collect their name and email, business details (such as business name, time zone, and booking handle), login and security information, and payment-related identifiers from our payment processor (we do not see or store full card numbers).
We use booking data to schedule and confirm sessions, send confirmation and reminder emails, and let you and the business manage, reschedule, or cancel a booking. We use account data to provide, secure, and bill the Service. We do not sell personal information or use it for advertising.
Where required by law, our bases for processing are performance of a contract, our legitimate interests in running the Service securely, and consent (for example, for optional marketing emails, which you can withdraw at any time).
Booking details are visible to the business you booked with. To deliver the Service we also use a small set of service providers (sub-processors) — for example for hosting, our database, email delivery, and payments. If a business has connected Google Calendar, your session is added to it as an event that includes your name and email.
A current list of our sub-processors is available at /subprocessors. These providers handle data only to provide the Service to us.
We keep booking and account data for as long as the account is active and as needed to provide the Service and keep records of sessions. After an account is closed, we delete or anonymize personal data within a reasonable period, except where we must keep certain records (such as transaction records) to meet legal, tax, or accounting obligations.
When you start a booking, we store one small functional cookie to hold your selected time slot while you complete the form. Businesses signing in use secure session cookies to stay logged in. These are not used for tracking or advertising.
Payments are processed by Stripe. Card details are entered directly with Stripe and are never stored on our servers; we keep only the identifiers needed to reconcile a payment.
Our hosting and database providers process data in the United States. Where personal data is transferred internationally, we rely on appropriate safeguards as required by applicable law.
We protect data with measures such as encryption in transit, hashed passwords, access controls, and optional two-factor authentication for business accounts. No system is perfectly secure, but we work to protect your information.
You can ask to see, correct, delete, or receive a copy of the personal data we hold about you. If your request is about data you provided when booking with a business, please contact that business — we will help them respond. For account data, or to reach us directly, email support@viktorzaharov.com.
We may update this policy from time to time and will change the date above when we do. Questions about this policy or your data? Email support@viktorzaharov.com.