Back to Documentation
Docs
VerifiedLast checked Mar 1, 2026by humanReport a bug or request a feature

Privacy Policy

new.salon.io

Last Updated: March 2026

1. Introduction

Welcome to new.salon.io ("New Salon", "Service"), operated by Salonio UG (haftungsbeschränkt) ("Salonio", "we", "us", "our"). We are committed to protecting your personal data and respecting your privacy.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website builder platform, social networking features, and marketplace services. Please read this policy carefully.

Data Controller:
Salonio UG (haftungsbeschränkt)
Prinzessinnenstraße 16
10969 Berlin, Germany
Email: contact@salon.io
Phone: +49 30 62933021

2. Information We Collect

2.1 Information You Provide

  • Account Information: When you register, we collect your email address, username, password, and optional profile information (name, bio, profile picture, location).
  • Profile Data: Information you choose to add to your public profile, including portfolio description, social media links, and professional details.
  • Content Data: Websites, images, text, designs, and other content you create and publish using our platform.
  • Payment Information: When you subscribe to paid services or use the marketplace, we collect billing information through our payment processor (Stripe). We do not store complete credit card numbers on our servers.
  • Communications: When you contact us, we collect the content of your messages, your email address, and any other information you provide.
  • Social Interactions: Your follows, likes, comments, and other interactions with other users on our platform.
  • Credit and Transaction Data: Your SLN credit balance, transaction history (credits earned, spent, and cashed out), invite activity (invitations sent, accepted, pending), referral relationships, and commission records. If you request a cash-out, we collect your payout method details (e.g., PayPal email or bank account information).

2.2 Information Collected Automatically

  • Usage Data: Pages visited, features used, time spent on the platform, click patterns, and navigation paths.
  • Device Information: Browser type, operating system, device type, screen resolution, and language settings.
  • Log Data: IP address, access times, referring URLs, and error logs.
  • Cookies and Similar Technologies: See our Cookie Policy for detailed information.

2.3 Information from Third Parties

  • Social Login: If you register using a third-party service (e.g., Google), we receive basic profile information from that service.
  • Payment Processors: Transaction confirmations and billing information from Stripe.

3. How We Use Your Information

We use your personal data for the following purposes:

3.1 Service Provision

  • Creating and managing your account
  • Providing the website builder, social networking, and marketplace features
  • Processing transactions and sending related information
  • Operating the SLN credit system, including crediting signup bonuses, processing invite costs and rewards, calculating referral commissions, applying subscription discounts, and processing cash-out requests
  • Maintaining accurate credit balances and transaction records
  • Responding to your requests and providing customer support

3.2 Service Improvement

  • Analyzing usage patterns to improve our platform
  • Developing new features and services
  • Troubleshooting technical issues

3.3 Communication

  • Sending service-related notices (e.g., security alerts, account notifications)
  • Responding to your inquiries
  • Sending marketing communications (with your consent)

3.4 Safety and Security

  • Detecting and preventing fraud, abuse, and security incidents, including manipulation of the SLN credit system (e.g., fake account creation, self-referral schemes)
  • Enforcing our Terms of Service and Acceptable Use Policy
  • Protecting the rights and safety of our users

3.5 Legal Compliance

  • Complying with applicable laws and regulations
  • Responding to legal requests and preventing harm

4. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your data based on the following legal grounds:

  • Contract Performance (Art. 6(1)(b)): Processing necessary to provide our services to you, including account management, website hosting, and marketplace transactions.
  • Legitimate Interests (Art. 6(1)(f)): Processing for our legitimate business interests, such as improving our services, preventing fraud, and ensuring security, where these interests are not overridden by your rights.
  • Consent (Art. 6(1)(a)): Processing based on your explicit consent, such as marketing communications and optional analytics. You may withdraw consent at any time.
  • Legal Obligation (Art. 6(1)(c)): Processing necessary to comply with legal requirements, such as tax and accounting obligations.

5. How We Share Your Information

We do not sell your personal data. We may share your information in the following circumstances:

5.1 Service Providers

We share data with third-party service providers who assist us in operating our platform:

5.2 Public Content

Content you publish on your New Salon website is publicly accessible. Your public profile information may be visible to other users.

5.3 Social Features

When you interact with other users (following, liking, commenting), those interactions may be visible to other users according to your privacy settings.

5.4 Legal Requirements

We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

5.5 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

6. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Transfers to countries with an adequacy decision from the European Commission
  • Other legally approved transfer mechanisms

Our primary service providers (Supabase, Vercel) offer EU data residency options, and we prioritize EU-based data storage where possible.

7. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy:

  • Account Data: Retained while your account is active and for 30 days after account deletion to allow for recovery.
  • Content Data: Retained while your account is active. Upon account deletion, your content is removed within 30 days.
  • Transaction Records: Retained for 10 years to comply with tax and accounting requirements. This includes Stripe payment records and SLN credit transaction logs.
  • SLN Credit Data: Credit balances and transaction histories are retained while your account is active. Upon account deletion, transaction records are retained for 10 years for tax and accounting compliance. Cash-out payment details (PayPal email, bank information) are retained for 10 years after the last payout.
  • Log Data: Retained for up to 90 days for security and troubleshooting purposes.
  • Marketing Preferences: Retained until you withdraw consent.

8. Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

  • Right of Access (Art. 15): Request a copy of your personal data.
  • Right to Rectification (Art. 16): Request correction of inaccurate data.
  • Right to Erasure (Art. 17): Request deletion of your data ("right to be forgotten").
  • Right to Restriction (Art. 18): Request limitation of processing.
  • Right to Data Portability (Art. 20): Receive your data in a structured, machine-readable format.
  • Right to Object (Art. 21): Object to processing based on legitimate interests or for direct marketing.
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.

To exercise these rights, please contact us at contact@salon.io. We will respond within one month as required by GDPR.

9. Cookies and Tracking

We use cookies and similar technologies to operate our platform. For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

10. Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit (TLS/SSL)
  • Encryption of sensitive data at rest
  • Regular security assessments and updates
  • Access controls and authentication measures
  • Employee training on data protection

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

11. Children's Privacy

New Salon is not intended for users under 16 years of age. We do not knowingly collect personal data from children under 16. If you believe we have collected data from a child under 16, please contact us immediately at contact@salon.io, and we will take steps to delete such information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on our website and updating the "Last Updated" date. For significant changes, we may also notify you via email.

We encourage you to review this policy periodically.

13. Contact Us and Complaints

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Email: contact@salon.io

Address:
Salonio UG (haftungsbeschränkt)
Prinzessinnenstraße 16
10969 Berlin, Germany

Phone: +49 30 62933021

If you are not satisfied with our response, you have the right to lodge a complaint with a supervisory authority. The relevant authority for Salonio UG is:

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Alt-Moabit 59-61
10555 Berlin
Germany
Website: https://www.datenschutz-berlin.de

Privacy Policy - Salon Docs