PEAKLY

Legal

Privacy Policy

PEAKLY (“we”, “us”) processes personal data fairly, lawfully, and transparently. This policy explains what we collect, why we use it, who we share it with, and the choices you have.

Last updated: April 2026 · Operated from England, United Kingdom

1. Information we collect

We collect information you give us directly, data created when you use PEAKLY, and limited technical data needed to run the service securely.

Personal data

  • Contact details: email address; name if you include it on our contact form or in correspondence.
  • Business information: company name (optional), public business or profile URLs you provide during checkout or onboarding, and similar details needed to deliver your order.
  • Messages: the content you send through our contact form or support channels.

Technical data

  • IP address and general location derived from it (for security, fraud prevention, and diagnostics).
  • Browser type, device type, operating system, and language preferences where available.
  • Timestamps and request metadata associated with your use of the site.

Usage data

  • Pages and screens you visit on our website, and interactions such as clicks on key actions (where we use analytics).
  • Aggregated or de-identified statistics that do not identify you personally.

Payment data

Card payments are handled by independent payment processors. Card numbers and authentication data are collected and stored by those providers under their terms and PCI requirements—we do not store full card details on PEAKLY systems. We may receive limited payment metadata (such as transaction status, amount, and last four digits where applicable) for accounting, support, and fraud prevention.

2. How we use information

We use personal data only where we have a lawful basis (see section 3) and a clear operational need, including:

  • Order processing: taking payment, fulfilling purchases, and linking services to the business details you provide.
  • Customer support: responding to enquiries, resolving issues, and maintaining service quality.
  • Service improvement: understanding how the product is used in aggregate, fixing bugs, and prioritising features.
  • Communication: transactional emails (receipts, security notices, policy updates where required) and replies when you contact us. We do not send unrelated marketing without a separate lawful basis where one is required.
  • Fraud prevention and security: monitoring for abuse, protecting accounts and infrastructure, and meeting legal obligations.

3. Legal basis (UK / EU)

Where UK GDPR / EU GDPR applies, we rely on one or more of the following, depending on the activity:

  • Contractual necessity: processing needed to perform our contract with you—such as checkout, delivery of paid services, and billing.
  • Legitimate interests: running a secure service, limited analytics, product improvement, and fraud prevention—balanced against your rights.
  • Consent: where we ask for optional cookies or optional marketing, and you agree—withdrawable at any time without affecting lawful processing before withdrawal.
  • Legal obligation: where the law requires us to retain or disclose certain records.

4. Data sharing

We share personal data with a limited set of categories of recipients, under written terms or statutory safeguards where applicable:

  • Payment providers to authorise and settle card transactions.
  • Hosting and infrastructure providers that store or process data on our behalf.
  • Analytics tools that help us understand traffic and product usage (configured to minimise personal data where possible).
  • Professional advisers (such as lawyers or accountants) where required.
  • Authorities when required by law or to protect rights, safety, and integrity.

We do not sell your personal data. We do not share it for third-party marketing unrelated to PEAKLY without an appropriate lawful basis.

5. Data retention

We keep personal data only for as long as needed for the purposes above—typically for the life of your relationship with us, plus a reasonable period for legal, tax, and dispute resolution. Technical logs may be kept for shorter rolling periods unless a longer retention is justified for security.

You may request deletion of your personal data where applicable law allows. Some information must be retained where we have a legal obligation or overriding legitimate ground.

6. Data security

We apply industry-standard technical and organisational measures—including access controls, encryption in transit where appropriate for our stack, and vendor due diligence—to protect personal data against unauthorised access, alteration, or loss.

No method of transmission or storage is completely risk-free. If we become aware of a breach that affects you where we are required to notify you, we will do so in line with applicable law.

7. International transfers

PEAKLY is based in the United Kingdom. Your data may be processed in the UK, the EEA, or other countries where our subprocessors operate. When data leaves the UK/EEA, we use appropriate safeguards—such as the UK International Data Transfer Agreement, EU Standard Contractual Clauses, or adequacy decisions—where required.

8. Your rights

Subject to local law, you may have the right to:

  • Access the personal data we hold about you.
  • Correction of inaccurate or incomplete data.
  • Deletion in certain circumstances (“right to be forgotten”).
  • Restriction or objection to certain processing, including objection to processing based on legitimate interests.
  • Data portability for data you provided, where processing is automated and based on contract or consent.
  • Withdraw consent where processing is consent-based.
  • Lodge a complaint with the UK Information Commissioner’s Office (ICO) or your local supervisory authority.

To exercise rights, contact us using the details in section 12. We may need to verify your identity before responding.

9. Cookies and similar technologies

We use cookies and similar technologies where needed to operate the site (including session integrity, load balancing, or remembering preferences you set).

Where we use non-essential cookies (such as analytics), we will seek consent where required and provide controls in our cookie banner or settings where available. You can also restrict cookies through your browser; some features may not work if essential cookies are blocked.

10. Third-party services

Parts of PEAKLY rely on third-party tools (payments, hosting, analytics). Those providers process data under their own policies and only on our instructions where they act as processors. We encourage you to read their privacy notices for detail on how they handle data.

11. Updates to this policy

We may update this Privacy Policy to reflect product, legal, or regulatory changes. When we make material changes, we will take reasonable steps to notify you—such as posting the revised policy on this page with a new “Last updated” date or emailing you where appropriate.

12. Contact

For privacy requests or questions about this policy:

You may also reach us via our contact page.

Terms of Service · Contact us · Home