Privacy Policy

Last updated: 31/12/2025

1. Introduction

This Privacy Policy explains how we collect, use, and protect your personal data when you use our website and services. We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data We Collect

We may collect the following information:

  • Name and email address (e.g., when you submit our contact form).
  • Account information when signing up for our service.
  • Payment information handled securely by our payment processor, Stripe.
  • Usage data such as IP address, browser type, and interaction information.

3. How We Use Your Data

We process your personal data to:

  • Provide and improve our services.
  • Respond to contact form submissions and support requests.
  • Process payments and manage subscriptions (via Stripe).
  • Send important service or account updates.
  • Ensure the security and performance of our platform.

4. Payments & Stripe

We use Stripe to process payments. When you make a purchase, your payment details are handled directly by Stripe and are never stored on our servers.

Stripe may process data such as your encrypted card information, billing address, and transaction details.

You can review Stripe's privacy policy here:
https://stripe.com/privacy

5. Legal Basis for Processing

Under UK GDPR, we rely on the following legal bases:

  • Contract — to create and maintain your account.
  • Consent — e.g., when submitting our contact form.
  • Legitimate interests — improving our service and preventing abuse.

6. Data Retention

We store personal data only for as long as necessary for the purposes outlined in this policy or to comply with legal obligations.

7. How We Share Your Data

We may share limited data with trusted third parties:

  • Stripe (payments)
  • Supabase (user authentication, contact form storage)
  • Hosting and analytics providers

We do not sell or rent your data. All data processors are compliant with UK GDPR.

8. International Transfers

Some partners (e.g., Stripe, Supabase) may store data outside the UK. When this happens, your data is protected through adequacy decisions, standard contractual clauses, or equivalent safeguards.

9. Your Rights

You have the right to:

  • Access your personal data.
  • Request correction or deletion.
  • Object to processing or withdraw consent.
  • Request data portability.
  • Make a complaint to the ICO (Information Commissioner’s Office).

10. Contact Us

If you have any questions about this policy or your data, contact us at:

support@yourdomain.com

Metrics Merchant