QueueCut

Privacy Policy

QueueCut — Last updated: 26 April 2026

A. Data controller

Genuine Goods Outlet (operating “QueueCut”), GSTIN 20FQWPB0689F1ZR, with address at Burma Mines, Jharkhand, India, is the data controller for personal data processed through the QueueCut website and web app at https://www.queuecut.co.in.

Contact: support@queuecut.co.in

Grievance officer (India)

For complaints relating to this Privacy Policy or processing of personal information under applicable Indian law:

  • Name: Behara Bharadwaj
  • Email: support@queuecut.co.in
  • Address: Burma Mines, Jharkhand, India
  • Response time: within 30 days of receipt of a written complaint where required by law

B. Data we collect

Users (customers)

  • Name, email, and phone (including when you sign in with Google OAuth).
  • Booking history, appointment details, and salon selections.
  • Payment transaction IDs and payment metadata (card/UPI credentials are handled by Razorpay, not stored by QueueCut).
  • Reviews you write.
  • Device push notification tokens when you opt in to web push.

Partner Salons (owners)

  • Business name, address, phone, and salon profile content.
  • PAN number and GSTIN (if provided).
  • Bank and payout details as collected by Razorpay for linked accounts and settlements.
  • Booking, bill, and revenue-related data visible in owner tools.

We may also process limited technical data (IP address, device/browser type, logs) for security, fraud prevention, and reliability.

C. How we use data

  • To operate bookings, reminders, and customer–salon communications.
  • To process payments and payouts via Razorpay.
  • To send booking confirmations and appointment reminders (including SMS/WhatsApp where enabled).
  • For tax compliance (including TCS/TDS reporting obligations where applicable).
  • For platform analytics, fraud prevention, and product improvement.

D. Data sharing

  • Razorpay — payment processing, Route transfers, settlements, and related compliance.
  • Supabase — authentication and database hosting. Our project is configured to use infrastructure in the Mumbai, India region for primary data at rest where applicable.
  • Vercel — application hosting and delivery at the edge.

We do not sell your personal data. We do not share your data with advertisers for ad targeting.

E. Cookies and cookie policy

We use essential cookies and similar technologies required to keep you signed in (Supabase session) and to operate the service securely.

We do not use third-party advertising cookies. We do not run behavioural ad networks on QueueCut.

Because only essential authentication-related technologies are required for core functionality, we do not show a cookie marketing banner for optional advertising cookies. If we introduce non-essential analytics cookies in the future, we will update this policy and obtain consent where required by law.

Cookie policy

  • Only essential authentication cookies (and functionally equivalent storage) are used to operate accounts and bookings.
  • No tracking or advertising cookies from ad networks.
  • You cannot opt out of essential cookies and still use logged-in QueueCut features, because they are required for the service to function safely.

F. Data retention

  • Account data: retained while your account is active and for a reasonable period after deletion to resolve disputes and meet legal duties.
  • Transaction and tax-related records: up to 7 years where required for Indian tax and accounting law.
  • Booking data: ordinarily retained for at least 2 years for support, disputes, and analytics, unless a longer period is required by law.

G. Your rights

Depending on applicable law (including the Digital Personal Data Protection Act, 2023 where applicable), you may request access, correction, deletion, or portability of your personal data.

You may request export of your booking history by writing to support@queuecut.co.in. We will respond within a reasonable time, subject to verification and legal exceptions.

H. Security

  • Data is encrypted in transit using HTTPS.
  • Primary database hosting is on Supabase (Mumbai region) with access controls and least-privilege practices.
  • Payment card and UPI secrets are not stored on QueueCut servers; Razorpay handles payment data in line with its certifications and terms.

I. Governing law

This Privacy Policy is governed by the Information Technology Act, 2000, the Information Technology (Amendment) Act, 2008 where applicable, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 where applicable, the Digital Personal Data Protection Act, 2023 where applicable, and other laws of India.

QueueCut is not directed at children under 13. We do not knowingly collect personal data from children.

J. Last updated

This Privacy Policy was last updated on 26 April 2026. We may update it from time to time; the date above will change when we do. Continued use after notice where required constitutes acceptance as permitted by law.