Privacy Policy

Last updated: replace with the date you publish this policy.

This Privacy Policy explains what information we collect, how we use it, and the choices you have. We take privacy seriously and aim to be transparent about every category of data we touch.

What we collect

• Account data: name, email, hashed password, organisation, locale.
• Usage data: pages visited, features used, IP address, user agent, request timestamps.
• Billing data: handled by our payment processor; we store only an opaque customer reference.
• Cookies: a session cookie for authentication and a CSRF token cookie for security. We do not use third-party tracking cookies by default.

How we use it

To provide and improve the service, to respond to support requests, to send transactional emails, and to comply with legal obligations.

Sharing

We do not sell your data. We share it with sub-processors strictly to operate the service (hosting, email delivery, payment processing). A current sub-processor list is available on request.

Your rights (GDPR, UK GDPR, CCPA)

You have the right to access, correct, delete, and export your data. You may also object to or restrict certain processing. To exercise these rights, contact the address below.

Retention

We keep account data while your account is active and for a limited period after closure to satisfy legal and accounting obligations.

International transfers

Where data is transferred outside your jurisdiction, we rely on standard contractual clauses or equivalent safeguards.

Cookies

We use only the cookies strictly necessary for the service to function. If you opt in to analytics or marketing cookies through the cookie banner, those choices are recorded and respected on every page.

Contact

Replace this paragraph with the contact email or postal address for privacy enquiries.