Anywherecuts

Legal

Privacy Policy

Effective date: May 8, 2026

Anywherecuts ("we," "us," or "our") operates the Anywherecuts platform — a barbershop booking and business management service available on the web at anywherecuts.com and as native apps on iOS and Android. This Privacy Policy explains how we collect, use, share, and protect personal information when you use our platform as a barber, shop owner, or client.

By using Anywherecuts, you agree to the collection and use of information in accordance with this policy. If you do not agree, please discontinue use of our services.

1. Information We Collect

We collect the categories of information listed below. Each category is paired with the specific purpose we use it for. We do not collect information beyond what is necessary to provide the service.

Account Information

  • Email Address. Email used to sign in and receive transactional emails.
  • Full Name. Display name shown on profile and bookings.
  • Phone Number. Optional. Shown to barbers for booking coordination.
  • Profile Photo (Avatar). Optional avatar shown on profile and reviews.

Booking Data

  • Booking and Transaction History. Records of appointments, services, prices, cancellations.
  • Payment Confirmation Data. Stripe charge IDs and amounts. Card numbers and CVV are NEVER stored on our servers — handled by Stripe directly.
  • Subscription State (IAP). For barbers and shop owners on Pro plan: subscription provider (Apple/Google/Stripe), tier, expiration, cancellation status. Card numbers handled by the platform store, never by us.

Location

  • Approximate Location. When you allow location permission, used to find nearby barbers and pre-fill booking address.

User-Generated Content

  • Portfolio Photos (Barbers). Photos uploaded by barbers showcasing their work. Screened by automated moderation before display.
  • Booth Listing Photos (Shop Owners). Photos of rentable booths uploaded by shop owners. Moderated like portfolio photos.
  • Reviews. Star ratings and written reviews tied to completed bookings.
  • In-App Messages. Direct messages between barbers and clients to coordinate appointments.
  • Content Reports. Reports submitted by users about objectionable content. Used for moderation decisions.
  • User Blocks. Records of which users have blocked which other users (one-way, blocker-only).

Device Identifiers

  • Push Notification Token. Per-device identifier issued by Expo for delivering push notifications. Stored only when push notifications are enabled.
  • Notification Preferences. Per-user toggles controlling which categories of push notifications can be sent (booking reminders, marketing, etc.).

Diagnostics

  • Crash Data. Stack traces, device model, OS version, app version when the app or server encounters an unhandled error. Captured by Sentry.
  • Performance Data. Page load times and transaction durations sampled at 10% by Sentry to identify slow operations.
  • Web Usage Logs. Standard web request logs (IP, user-agent, path, timestamp). Used for security and abuse prevention.

2. How We Use Your Information

  • To provide, operate, and improve the Anywherecuts platform.
  • To process bookings and facilitate payments between clients and barbers.
  • To send transactional messages (booking confirmations, receipts, cancellation notices, push notifications you have enabled).
  • To respond to support requests and resolve disputes.
  • To moderate user-generated content for safety. Photos uploaded to portfolios, avatars, or booth listings are screened by an automated NSFW classifier (Replicate) before being made visible. Reports submitted by users about objectionable content are reviewed by our team within 24 hours.
  • To diagnose crashes and performance issues. Crash data and performance traces are sent to Sentry; we have configured Sentry to not capture user emails or IP addresses.
  • To detect and prevent fraud, abuse, and unauthorized access.
  • To comply with legal and tax obligations.
  • To enforce our Terms of Service.

3. How We Share Your Information

We do not sell your personal information. We share information only in the following circumstances:

Between Platform Users

When a client books with a barber, we share the client's name, booking details, and contact information with the barber to facilitate the appointment. Barber profile information (name, photos, location, services, reviews) is visible to clients browsing the platform.

Service Providers / Sub-Processors

We use the following third parties to operate the platform. Each is bound by their own privacy policy and data processing terms. We select providers that meet appropriate security standards:

  • Supabase Inc. — Authenticated database, file storage, and real-time. Our primary backend. [Privacy Policy]
  • Stripe, Inc. — Payment processing for booking transactions and Pro subscriptions on web. Barber payouts via Stripe Connect. [Privacy Policy]
  • Vercel Inc. — Web platform and serverless function hosting. [Privacy Policy]
  • Resend Inc. — Transactional email delivery (booking confirmations, receipts, password resets). [Privacy Policy]
  • Functional Software Inc. (Sentry) — Crash reporting and error tracking. Configured to not collect PII. [Privacy Policy] (sendDefaultPii: false — emails and IP addresses are not captured.)
  • Replicate, Inc. — Photo moderation: each uploaded image URL is sent to a hosted NSFW classifier (Falconsai model) before the image is made visible. Images are not retained by Replicate. [Privacy Policy]
  • Expo (650 Industries) — Push notification delivery via Expo Push API (relays to APNs and FCM). [Privacy Policy]
  • Apple, Inc. — iOS App Store distribution and In-App Purchase processing for the Pro subscription on iOS. [Privacy Policy]
  • Google LLC — Google Play distribution and Play Billing for the Pro subscription on Android (when enabled). [Privacy Policy]

Legal Requirements

We may disclose information if required by law, subpoena, court order, or to protect the rights, property, or safety of Anywherecuts, our users, or the public.

4. Data Retention

We retain account data for as long as your account is active. When you request account deletion (in-app or via email to support@anywherecuts.com), your account enters a 15-day grace period during which you can recover it. After the grace period your personal information is removed except where we are required to retain records for legal or financial compliance — most notably, payment transaction records are kept for 7 years as required by tax regulations.

Crash and performance diagnostics retained by Sentry follow Sentry's default retention policies (currently 30 days for the free tier).

5. Your Rights

Depending on your location (US state laws, EU GDPR, UK GDPR, etc.), you may have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request that we correct inaccurate information.
  • Deletion: Request deletion of your account and associated data. The mobile app provides an in-app account deletion flow under Settings; the web app provides one at the same location.
  • Portability: Request your data in a machine-readable format.
  • Opt-out of push notifications: Toggle push categories under Settings → Notifications, or revoke at the OS level.
  • Block another user: The barber detail screen exposes a "Block this barber" option that hides their content from your view across the app.
  • Report content: Every UGC surface (reviews, portfolio photos, profiles) has a "Report" affordance. We respond within 24 hours.

To exercise rights that aren't self-service in the app, contact us at support@anywherecuts.com. We will respond within 30 days.

6. Security

We implement industry-standard security measures including encryption at rest and in transit (TLS), role-based access control via Supabase Row-Level Security policies, and audit logging of all privileged actions. However, no system is 100% secure. In the event of a data breach affecting your rights, we will notify you as required by applicable law.

7. Cookies

We use essential cookies to maintain your session, and third-party cookies from services like Stripe during checkout. We do not use advertising or analytics cookies. See our Cookie Policy for details.

8. Children's Privacy

Anywherecuts is not directed to individuals under 18 years of age. We do not knowingly collect personal information from minors. If you believe a minor has created an account, contact us immediately at support@anywherecuts.com.

9. Changes to This Policy

We may update this Privacy Policy as we add or change services. We will notify you of material changes by email and by posting a notice on the platform at least 14 days before the change takes effect. Continued use of the platform after changes constitutes acceptance.

Recent changes:

  • May 8, 2026. Restructured policy generation onto a single source of truth. Added Sentry (crash reporting), Replicate (photo moderation), Expo (push notifications), Apple/Google (IAP) as sub-processors. Added push tokens, crash data, content reports, user blocks, photo moderation rows as new data categories. Updated retention from 30 days post-deletion to 15-day grace period to match account deletion implementation.
  • April 1, 2024. Initial publication.

10. Contact

For privacy-related questions or to exercise your rights, contact our team at:

Anywherecuts

support@anywherecuts.com