Last updated: 30 June 2026. This notice is provided under UK GDPR Articles 13 and 14.
1. Who we are
This notice will identify the data controller once company registration is complete.
2. What we collect and why
Account: your email address — used for sign-in via one-time code (OTP) only. No password stored.
Pet profile: name, species, breed, date of birth, microchip number — entered by you, stored to identify your pet's records.
Medical log entries: observations, symptoms, treatments, vet visits, medications — append-only; entries are immutable once saved.
Insurance policies: insurer name, policy number, renewal date, premium — used to generate renewal reminders and cost analysis.
Uploaded documents: insurance certificates and invoices in PDF or image format — stored in encrypted cloud storage; read by AI only with your explicit consent.
AI review records: when you consent to AI certificate or record reading, we log the model version, confidence score, extracted fields, and whether you confirmed the result — required for AI transparency and audit.
Anonymised research contribution (optional): if you opt in, one de-identified record per case — concern themes, a broad breed/age band, outcome. Never your name, your pet's name, dates, or location.
3. Lawful basis
We process your data on the basis of your consent (UK GDPR Article 6(1)(a)).
You may withdraw consent at any time — log in and use Your data & privacy → Erase everything.
Withdrawal does not affect the lawfulness of processing before withdrawal.
4. How long we keep it
We retain your data for the lifetime of your active account, plus two years, to allow for any insurance
claim or dispute that may arise after your last entry. When you erase your account, all data is deleted
within 30 days, except for any backup retained for up to 90 days to protect against accidental deletion.
5. Our processors
Supabase Inc. — database, auth, and file storage. Data held in the UK (London) region; UK-based processing under UK GDPR / DPA 2018.
Anthropic PBC — AI extraction (only when you consent). Data transferred to the US under UK International Data Transfer Agreement (IDTA). No training on your data (zero-retention API).
Fly.io Inc. — Python API service hosted in London (lhr). UK-based processing.
Cloudflare Inc. — static file hosting and aggregate web analytics (no PII, no cookies, no cross-site tracking). Data transferred to the US under UK IDTA.
Email provider (TBC) — OTP delivery and renewal notifications. Processor DPA in place before live user emails are sent.
6. Your rights
Access: download a full copy of your data — log in → Your data & privacy → Export your data.
Erasure: delete your account and all records — log in → Your data & privacy → Erase everything.
Portability: your data export is machine-readable JSON.
Rectification: medical log entries are intentionally append-only (tamper-evident); add a correcting entry using the supersedes field.
Restriction / objection: contact us at the address below.
7. How to complain
If you have a concern about our use of your data, contact us first at
[data controller email — see legal-config.js].
You also have the right to complain to the
Information Commissioner's Office (ICO) at
ico.org.uk/make-a-complaint/
or by calling 0303 123 1113.
ICO registration reference: [ICO reference — see legal-config.js].