1. Introduction
Welcome to BukHut ("BukHut", "we", "our", or "us").
BukHut is a multi-tenant booking and business management platform that allows service-based businesses to list and manage bookable services while enabling customers to discover, compare, and book appointments through a centralised platform.
This Privacy Policy explains how we collect, use, process, store, and protect personal information when users access or use BukHut.
This policy applies to customers, businesses, visitors, and all users interacting with BukHut through our website and any future mobile applications.
By accessing or using BukHut, you agree to the collection and use of information in accordance with this Privacy Policy.
2. Who We Are
BukHut is operated by:
For privacy-related enquiries, requests, or concerns, please contact us at info@galinisystems.com.
3. Information We Collect
We collect information necessary to provide booking, scheduling, business management, authentication, billing, and support services.
3.1 Business Account Information
When businesses register on BukHut, we may collect business name, owner or representative name, email address, telephone number, billing information, business address, Companies House number where applicable, optional verification documents, service details, pricing information, availability, and scheduling data.
3.2 Customer Booking Information
When customers create accounts or make bookings, we may collect customer name, email address, telephone number, booking details, appointment history, and communication preferences.
3.3 Technical and Usage Information
We may automatically collect browser type, device information, operating system, session data, authentication data, usage logs, cookie information, and application performance information.
3.4 Authentication Information
BukHut supports local authentication using email and password, Google authentication, and Apple authentication.
Passwords are not stored in plain text. Where local authentication is used, passwords are securely hashed and processed using appropriate technical safeguards. Social authentication data is processed through the relevant third-party authentication provider.
3.5 Payment Information
Payments processed through BukHut are handled by authorised third-party payment providers.
BukHut does not store full payment card details on its servers. Payment processors may collect and process card information, billing information, transaction metadata, and payment verification details.
Users should review the privacy policies of those payment providers where applicable.
4. How We Use Information
We use collected information to:
- create and manage accounts
- facilitate bookings
- manage business listings and services
- provide scheduling and availability tools
- send booking confirmations or reminders
- provide support
- improve the platform
- monitor reliability and security
- prevent fraud or abuse
- comply with legal obligations
- support future platform improvements
5. Legal Basis for Processing
Where applicable under the UK GDPR and EU GDPR, we process personal data under one or more lawful bases, including contractual necessity, legitimate interests, consent, legal obligation, and fraud prevention or platform security.
6. Business Verification and Compliance
Businesses registering on BukHut may be required to provide company registration details, Companies House numbers where applicable, verification-related information, or supporting documents.
BukHut may suspend, restrict, remove, or deny access to business accounts that provide inaccurate, misleading, fraudulent, or unverifiable business information.
Where necessary, BukHut may cooperate with legal, regulatory, or enforcement authorities in relation to suspected fraud, abuse, or unlawful activity.
8. Hosting and International Transfers
BukHut infrastructure may be hosted using AWS services located in the United States.
As a result, user information may be processed or stored outside the United Kingdom or European Economic Area.
Where international data transfers occur, BukHut will take reasonable steps to ensure appropriate safeguards are in place in accordance with applicable data protection laws. These safeguards may include contractual protections, UK International Data Transfer Agreements, the UK Addendum to EU Standard Contractual Clauses, Standard Contractual Clauses, adequacy decisions, or other lawful transfer mechanisms where applicable.
9. Customer and Business Data Responsibility
BukHut facilitates interactions between customers and businesses.
Businesses using BukHut may access customer information necessary to fulfil booked services, including customer names, booking details, and appointment-related contact information.
Businesses are responsible for handling customer information appropriately and in accordance with applicable data protection laws. In many cases, businesses act as independent Data Controllers for their customer relationships, while BukHut acts as a service provider or Data Processor for platform infrastructure.
10. Data Retention
BukHut retains personal information only for as long as reasonably necessary to provide services, comply with legal obligations, resolve disputes, enforce agreements, prevent fraud, and maintain platform security.
Dormant or unsubscribed accounts may be retained for up to 18 months before deletion from active systems.
Certain records may be retained for longer where required for legal, accounting, tax, fraud prevention, backup integrity, dispute resolution, or regulatory purposes.
Users may request deletion of their personal data by contacting info@galinisystems.com.
11. User Rights
Subject to applicable laws, users may have the right to:
- access their personal information
- correct inaccurate information
- request deletion
- object to certain processing
- request portability
- restrict processing
- withdraw consent where processing is based on consent
Privacy requests may be submitted to info@galinisystems.com.
Users may be asked to verify their identity before a request is completed.
Users also have the right to lodge a complaint with the UK Information Commissioner's Office at https://ico.org.uk/.
12. Security Measures
BukHut implements reasonable technical and organisational security measures designed to protect personal information.
These measures may include secure password hashing, encrypted authentication systems, SSL/TLS encryption, restricted access controls, role-based permissions, monitoring, logging, and infrastructure security controls.
No online platform or transmission method can be guaranteed to be completely secure. Users acknowledge that they use the platform at their own risk.
14. Children's Privacy
BukHut is not intended for individuals under the age of 13.
We do not knowingly collect personal information from children under 13. If we become aware that information has been collected from a child without appropriate authorisation, we may delete such information promptly.
15. Future Mobile Applications
BukHut currently operates primarily as a web-based platform.
Future iOS and Android applications may be introduced. This Privacy Policy may be updated to reflect additional features, permissions, technologies, or processing activities associated with those applications.
16. Changes to This Privacy Policy
BukHut may update this Privacy Policy periodically to reflect platform improvements, feature updates, legal requirements, operational changes, or security and compliance updates.
Updated versions will be published on the BukHut platform with revised effective dates.
Continued use of the platform after updates constitutes acceptance of the revised Privacy Policy.
17. Contact Information
For privacy-related enquiries, requests, or concerns, contact:
© 2026 BukHut. All rights reserved.