Back to homepage

Privacy Policy

Last updated: March 2026

Agendix is committed to protecting the personal data of its users and to compliance with the General Data Protection Regulation (GDPR) and applicable Portuguese legislation.

1. Data controller

The data controller for personal data is the entity operating the Agendix platform, developed by Oxion in Portugal. To exercise your rights or for any enquiries, you can contact us through the means available on the site.

2. Data we collect

We collect and process the following types of data:

Account data

  • Email address, name and profile information
  • Business data (name, address, contacts, opening hours)

Your business clients' data

As a Platform user, you enter your clients' data (name, phone, email, service and booking history). Agendix acts as a data processor for this data, on behalf of your business.

Staff data

Information about staff you add to the Platform (name, contact, schedules, commissions).

Transaction and booking data

Records of bookings, sales, cash sessions and expenses, necessary for the operation of the Platform.

Technical and usage data

IP address, device type, browser, access and usage logs of the Platform, for security and service improvement purposes.

Payments: Payment processing is carried out by Stripe. Agendix does not have access to complete banking data (card number, etc.). All payment data processing is the responsibility of Stripe, in accordance with its privacy policies.

3. Legal basis and purposes

We process your data with the following legal bases and purposes:

  • Contract performance: Service provision, account management, billing and support.
  • Legitimate interest: Platform improvement, security, fraud prevention and service communications.
  • Consent: When applicable (e.g. newsletters, marketing communications).
  • Legal obligation: Compliance with tax and legal obligations.

4. Data sharing

We may share data with:

  • Subcontractors: Firebase (Google) for storage, authentication and real-time databases; Stripe for payments. These providers are contractually obliged to comply with data protection standards.
  • Authorities: When required by law or court order.

We do not sell, rent or transfer your personal data to third parties for marketing purposes.

5. International transfers

Some subcontractors (e.g. Firebase/Google, Stripe) may process data on servers outside the European Union. In these cases, we ensure adequate safeguards under the GDPR (standard contractual clauses, adequacy decisions or equivalent mechanisms).

6. Data retention

We retain personal data for as long as necessary for service provision, compliance with legal obligations and dispute resolution. After account cancellation, data may be retained for the period necessary for tax or legal obligations, after which it will be deleted or anonymised.

7. Your rights

Under the GDPR, you have the right to:

  • Access: Obtain confirmation that your data is being processed and access it.
  • Rectification: Correct inaccurate or incomplete data.
  • Erasure: Request deletion of your data (subject to legal exceptions).
  • Portability: Receive your data in a structured, commonly used format.
  • Objection: Object to processing in certain circumstances.
  • Restriction: Restrict processing in certain situations.

To exercise these rights, contact us. You also have the right to lodge a complaint with the Comissão Nacional de Proteção de Dados (CNPD): www.cnpd.pt.

8. Security

We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss or alteration, including encryption in transit and at rest, access control and security audits.

9. Cookies and similar technologies

The Platform and site may use cookies and similar technologies for essential functionality, security and usage analysis. You can configure your browser to refuse non-essential cookies; this may affect some features.

10. Changes

This policy may be amended to reflect changes in our practices or the law. Relevant changes will be communicated. The date of last update is at the beginning of this document.

11. Contact

For privacy questions or to exercise your rights, contact us through the means indicated on the site.

Made by Oxion in Portugal.