Skip to main content

Privacy Policy

Last updated: 10 July 2025

1. Who we are

Keep Loyalty App Ltd. (“Keep Loyalty App”, “we”, “us”, “our”) provides a branded digital loyalty platform for small-to-medium service businesses (the “Service”). We are registered in England and Wales with company number [●] and have our registered office at [●]. For the purposes of the UK General Data Protection Regulation (“UK GDPR”) and the EU GDPR, we are the “controller” of the personal data that we collect through https://keeployaltyapp.com (the “Site”), our mobile applications (the “App”), and related services.

If you have any questions about this policy or your data, please contact us at:

Email: This email address is being protected from spambots. You need JavaScript enabled to view it.

Postal address: Data Protection Officer, Keep Loyalty App Ltd., [address]

2. The information we collect

Category

Examples

Collected from

Account & profile data

Name, business name, email address, phone number, billing address, account credentials

You

App usage data

Device ID, operating system, app interactions, loyalty stamp activity, redemption history

Automatically from your device

Website usage data

IP address, browser type, pages visited, referral URL, cookies

Automatically via cookies & similar technologies

Payment data

Partial card details, transaction ID, billing postcode (processed by our payment provider, e.g., Stripe)

Our payment processor

Marketing data

Marketing preferences, survey responses, competition entries

You

We do not intentionally collect special category (“sensitive”) personal data. Please do not provide such data through the Service.

3. How and why we use your information

We process personal data to:

  1. Provide the Service – create and manage accounts, authenticate users, issue and redeem digital stamps, and deliver core functionality.

  2. Process transactions – handle subscription payments and send invoices/receipts.

  3. Improve & secure the Service – monitor usage, fix bugs, conduct analytics, test new features, and protect against fraud.

  4. Communicate with you – send operational emails (e.g., password reset, service updates) and respond to enquiries.

  5. Marketing – send newsletters or offers you opt in to receive. You can unsubscribe at any time.

  6. Comply with law – maintain records and respond to lawful requests.

4. Legal bases (UK/EU GDPR)

Our legal bases are:

  • Contract – when processing is necessary to fulfil our agreement with you (Art. 6(1)(b)).

  • Legitimate interests – to operate, improve, and secure the Service (Art. 6(1)(f)). We balance these interests against any potential impact on you.

  • Consent – for optional marketing (Art. 6(1)(a)). You may withdraw consent at any time.

  • Legal obligation – where laws require us to retain or disclose information (Art. 6(1)(c)).

5. Sharing your information

We share personal data only with:

  • Service providers – hosting (e.g., AWS), analytics (e.g., Google Analytics), payment processors, customer-support tools – under contract to process data on our behalf.

  • Business customers – stamp activity data is shared with the specific business whose loyalty programme you join.

  • Professional advisers & authorities – where necessary for audits, legal claims, or law-enforcement requests.

    We do not sell or rent your personal data.

6. International transfers

Some providers operate outside the UK/EEA. Where we transfer data internationally, we rely on:

  • Adequacy regulations (e.g., UK-US data bridge), or

  • Standard Contractual Clauses plus supplementary measures.

7. Data retention

We keep personal data while you have an active account and for up to 6 years afterwards to comply with accounting and legal obligations, unless a longer retention is required or permitted by law.

8. Your rights

Subject to conditions and exemptions, you have the right to:

  • Access your personal data

  • Rectify inaccurate data

  • Erase data (“right to be forgotten”)

  • Restrict or object to processing

  • Port your data to another provider

  • Withdraw consent at any time

  • Lodge a complaint with the UK ICO or your local supervisory authority

To exercise your rights, contact us at This email address is being protected from spambots. You need JavaScript enabled to view it..

9. Security

We use industry-standard technical and organisational measures, including encryption in transit (TLS), access controls, and regular security reviews. However, no system is 100% secure.

10. Children

Our Service is not directed to children under 16. If we learn that we have inadvertently collected such data, we will delete it.

11. Cookies & similar technologies

We use cookies, SDKs, and device identifiers to:

  • Enable essential functionality

  • Remember preferences

  • Measure performance

  • Run targeted ads (only with your consent)

You can manage cookies via your browser or device settings. For detailed information, see our Cookie Policy.

12. Changes to this policy

We may update this policy from time to time. Any changes will be posted on this page and, where appropriate, notified to you by email or through the App. Please review this page periodically.

13. Contact

If you have questions, concerns, or requests regarding this policy or how we handle your data, email This email address is being protected from spambots. You need JavaScript enabled to view it. or write to us at the address above.

© 2025 Keep Loyalty App Ltd. All rights reserved.