Privacy & Cookie Policy

Last update: 11 March 2026

Salon Ventures B.V. (Salon) values the protection of your personal data.

Salon is a business-to-business marketplace that connects cultural venue providers with event organisers. As Salon is designed for business-to-business interactions, we primarily process business-related data. However, we do process some personal data of the individuals who act as points of contact (POCs) at organisations using our platform, as well as of our website (www.hostsalon.eu) visitors (Website Visitors).

This Privacy and Cookie Notice describes how we collect and use the personal data of POCs and Website Visitors.

In this Privacy and Cookie Notice you will find the following information:

1. Identity of the controller

2. How do we collect your personal data?

3. Information about the processing of your personal data

4. Cookies

5. Automated decision-making

6. Who do we share your personal data with?

7. How do we secure your personal data?

8. Transfer of your personal data outside the European Economic Area

9. Your rights

10. Updates to this Privacy and Cookie Notice

11. Identity of the controller

The controller for your personal data is Salon Ventures B.V., located at Keizersgracht 555, 1017 DR Amsterdam, The Netherlands.

If you have any questions or complaints regarding this Privacy and Cookie Notice or the way we process your personal data, you can contact us by email at privacy@hostsalon.eu .

2. How do we collect your personal data

We collect your personal data in the following ways: When you, as a POC at a venue provider or event organiser, provide it directly to us by creating an account on Salon. When you visit our website and we use cookies and similar technologies to collect analytics and advertising data.

You are not legally or otherwise obligated to provide your personal data. However, if POCs at venue providers or event organisers do not provide their data, their organisations cannot use Salon as we need the data to enable account registration, facilitate bookings, process payments, provide support services and communicate with these organisations.

3. Information about the processing of your personal data

The table below contains all information about:

• The reason why we process your personal data (purpose);
• Which personal data are involved (categories of personal data);
• The legal basis on which we process your personal data (legal basis); and
• How long we retain your personal data (retention period).

4. Cookies

Salon uses cookies and similar technologies on our website to ensure functionality and improve your experience. A cookie is a small text file that is stored on your device when you visit our website. Cookies enable us to recognize your browser and distinguish your visit from those of other users.

We use two types of cookies:

• Essential cookies: These cookies are strictly necessary for the website to function properly. They enable core functionalities such as secure login, session management, and payment processing. Essential cookies do not require your consent.
• Non-essential cookies: These cookies are used for analytics, advertising, and personalization purposes. Non-essential cookies require your consent before they are placed on your device.

The table below provides detailed information about the specific cookies used on our website, including their purpose, the data they collect, the legal basis for their use, and their retention period.

You can manage your cookie preferences at any time through your browser settings or by adjusting your preferences in our cookie banner.

5. Automated decision-making

We do not make use of automated decision-making.

6. Who do we share your personal data with?

We share your personal data only when this is necessary for operating our platform, providing our services, or meeting legal obligations. We share your personal data with our service providers, such as our CRM provider and Sharetribe (our marketplace hosting provider), which act as our processors and support the platform's technical infrastructure and customer relationship management. Your contact details may be shared with a third-party insurance partner, but only when you choose to opt in for insurance coverage. Your personal data may be shared with government bodies or supervisory authorities where this is required to comply with a legal obligation. Your personal data may be shared with our professional advisers, such as lawyers, auditors, or other external consultants, where this is necessary to obtain professional advice, protect our legal rights, or support us in complying with our regulatory obligations. Your personal data may be shared with a legal successor, if personal data is transferred as part of the sale or other transfer of (part of) our assets to another company.

7. How do we secure your personal data?

We take appropriate administrative, technical and organisational measures to protect your personal data against unauthorised or unlawful processing, accidental loss, destruction or damage. For instance, your personal data is encrypted during transmission via HTTPS and stored in encrypted form within the cloud infrastructure used by Sharetribe. Access to personal data is limited to authorised personnel only, based on role-based access controls and the ‘need-to-know’ principle. We use pseudonymisation where appropriate, apply Data Loss Prevention controls, and maintain logging and monitoring of administrative actions. Regular backups and recovery processes are in place to ensure data integrity. Secure authentication and password requirements are applied to all internal accounts with access to personal data.

8. Transfer of your personal data outside the European Economic Area

We do not transfer your personal data to countries outside the European Economic Area. If this changes in the future, we will only do so in accordance with the applicable rules on international data transfers.

However, certain processing activities may involve transfers of personal data outside the EEA. Stripe participates in the EU–U.S. Data Privacy Framework (DPF), which provides an adequate level of protection for such transfers. For Sharetribe, any transfers outside the EEA are carried out on the basis of the European Commission’s Standard Contractual Clauses (SCCs), ensuring that an equivalent level of data protection is maintained.

Furthermore, advertising partners (e.g. Google LLC, Meta Platforms Inc., Microsoft) may transfer personal data to the United States. Transfers rely on SCCs or the EU–US Data Privacy Framework, as described in the privacy notices of these advertising partners: https://policies.google.com/privacy, https://www.facebook.com/privacy/policy, and https://privacy.linkedin.com/.

9. Your rights You have the right to access your personal data, the right to request correction or deletion of your personal data, the right to request restriction of processing, the right to data portability, and the right to object to the processing of your personal data. Most of these rights are not absolute and may be subject to legal exceptions.

Below we explain your rights in more detail and how you can exercise them. We will respond to your request within one month. We may extend this period by two further months if your request is complex or if we have received multiple requests. If we extend the response period, we will inform you within one month after receiving your request. If your request is clearly unfounded or excessive, we reserve the right to charge a reasonable fee or refuse to comply with the request.

• Access: You have the right to ask whether we process your personal data and, if so, to request access to that personal data. This enables you to receive a copy of the personal data we hold about you and to check that we are processing it lawfully;

• Correction: You have the right to request the correction or completion of inaccurate or incomplete personal data we hold about you;

• Deletion: You have the right, in certain circumstances, to request the deletion of your personal data. There may be situations in which we cannot comply with such a request, for example where we still need the data for the processing purposes set out above, to comply with legal obligations or for the establishment, exercise or defence of legal claims;

• Restriction: You have the right to request that we temporarily suspend the processing of certain personal data, for example while we verify its accuracy or consider the basis for processing;

• Data portability: You may request a copy of certain personal data to be transferred to yourself or to another organisation (where technically feasible). This right applies only to personal data you have provided to us, and that we process based on your consent or on a contract with you; and

• Objection: Where we process your personal data on the basis of our legitimate interests, you have the right to object to such processing. We may continue processing your data if we can demonstrate compelling legitimate grounds that override your interests, rights and freedoms, or if the processing is required for legal claims.

Where you have given consent for processing, such as consenting to non-essential cookies, you may withdraw that consent at any time. Withdrawing your consent does not affect the lawfulness of processing carried out before the withdrawal. If you wish to exercise any of your rights, you can contact us at: privacy@hostsalon.com.

If you have a complaint about the way we process your personal data, you may lodge a complaint with a supervisory authority in the country where you live, where you work, or where an alleged infringement of applicable data protection law has taken place. The competent supervisory authority in the Netherlands is the Autoriteit Persoonsgegevens (Dutch Data Protection Authority).

10. Updates to this privacy and cookie notice

We may update this Privacy and Cookie Notice from time to time, for example to reflect new developments, new services, or changes in applicable laws and regulations. Any updates will be published on our website. [In case of material changes, account holders will also be informed by email.]