1. Introduction
At Loggworks ("we," "us," or "our"), we are committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, share, and protect your personal data when you use our automated operation management platform (the “Platform”), including our website (www.loggworks.co.uk), mobile application (“App”), and related services. This policy complies with the UK General Data Protection Regulation (UK GDPR) and other applicable laws.
By using our Platform, you agree to the practices described in this Privacy Policy. If you have any questions, please contact us at privacy@loggworks.co.uk.
Last Updated: May 3, 2025
2. Who We Are
Loggworks is a UK-based company providing an automated operation management platform for service businesses, such as scheduling, invoicing, and customer management tools. We are the data controller responsible for your personal data.
3. What Data We Collect
We collect and process the following personal data to provide and improve our Platform:
Data You Provide:
- Account Information: Name, email address, phone number, business name, and payment details when you create an account or subscribe to our services.
- Content Data: Information you input into the Platform, such as customer names, appointment schedules, or invoice details.
- Communication Data: Messages or inquiries sent to us via email, in-app chat, or support forms.
Data Collected Automatically:
- Usage Data: Information about how you interact with the Platform, such as pages visited, features used, and session duration.
- Device Data: Unique device identifiers.
- Location Data: Approximate location (e.g., city-level) based on your IP address, only if you enable location services (optional).
- Analytics Data: Aggregated data on Platform performance, collected via cookies or similar technologies (see Section 8).
Data from Third Parties:
- Payment Processors: Payment confirmation data from providers like Stripe and RevenueCat.
- Analytics Providers: Anonymized usage insights from tools like Google Analytics.
We adhere to the data minimization principle, collecting only the data necessary for the purposes outlined above.
4. How We Use Your Data
We process your personal data for the following purposes, based on lawful grounds under UK GDPR:
Purpose | Data Used | Lawful Basis |
---|
Create and manage your account | Account Information | Contract |
Process payments and subscriptions | Payment Details | Contract |
Deliver core Platform services (scheduling, invoicing) | Content Data | Contract |
Provide customer support | Communication Data, Account Information | Contract, Legitimate Interest |
Improve and personalize our Platform | Usage Data, Analytics Data | Legitimate Interest |
Send notifications and updates | Account Information | Contract |
Comply with legal obligations | Account Information, Payment Details | Legal Obligation |
Detect and prevent fraud or misuse | Usage Data, Device Data | Legitimate Interest |
5. How We Share Your Data
We share your personal data only when necessary and with the following recipients:
- Third-Party Service Providers:
- Cloud Hosting: AWS (UK-based servers)
- Payment Processing: Stripe
- Analytics: Google Analytics
- Customer Support: Zendesk
- Legal Authorities: When required to comply with legal obligations (e.g., HMRC, court orders)
- Business Transfers: In the event of a merger, acquisition, or sale of assets, with equivalent data protection safeguards
We do not sell your personal data or share it with third parties for their own marketing purposes.
6. International Data Transfers
Where we transfer personal data outside the UK—for example, to our AWS infrastructure in the EU or US—we ensure compliance with UK GDPR by relying on:
- Adequacy Decisions: Transfers to territories with adequacy determinations by the UK government
- Standard Contractual Clauses: Legally binding contracts approved by the UK Information Commissioner’s Office
- Encryption: TLS in transit and AES‑256 at rest
- Audits: Regular security and compliance reviews by independent assessors
7. How We Protect Your Data
We implement robust technical and organisational measures to safeguard your personal data, including:
- Secure Transmission: HTTPS/TLS for all data in transit
- Encryption at Rest: AES‑256 on all databases and backups
- Access Controls: Role-based permissions and least-privilege principles
- Security Standards: ISO 27001-aligned policies and periodic third‑party audits
- Privacy by Design: Data minimisation and pseudonymisation in our development lifecycle
- Incident Response: Internal protocols with breach notification to the ICO and affected individuals within 72 hours
8. Your Data Protection Rights
Under UK GDPR, you have the right to:
- Access your personal data
- Rectify inaccurate or incomplete data
- Erase your data (‘right to be forgotten’)
- Restrict or object to processing
- Data portability
- Withdraw consent at any time
To exercise your rights, contact us at privacy@loggworks.co.uk or use the in-app “Manage Data” feature. You may also lodge a complaint with the ICO at www.ico.org.uk.
9. Cookies and Tracking Technologies
Our Platform uses cookies and similar technologies (e.g., pixels, SDKs) to enhance functionality and analyze performance. Cookies are categorized as:
- Strictly Necessary: Essential for Platform operation (e.g., session management). No consent required.
- Functional: Enable features like preferences (e.g., language settings). Requires consent.
- Analytical: Collect anonymized usage data (e.g., Google Analytics). Requires consent.
- Advertising: Not currently used, but may be introduced with your consent.
Cookie Management:
- On our website, a cookie banner allows you to accept or customize cookie preferences.
- In our App, tracking is managed via Apple’s App Tracking Transparency (ATT) prompt (iOS) or in-app settings (Android).
- You can withdraw consent or manage preferences at any time via the “Cookie Settings” link on our website or in-app settings.
For details on cookies used, see our Cookie Policy at www.loggworks.co.uk/cookies.
10. Data Retention
We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy and for legal, tax, or accounting requirements. Specifically:
- Account Data: While your account is active plus 6 years thereafter for compliance with UK tax and legal obligations.
- Content Data: Until you close your account or delete the content.
- Anonymized Analytics: Aggregated and pseudonymized data retained for up to 12 months to improve our services.
- Communication Data: Emails, chat logs, and support tickets retained for 2 years for reference and dispute resolution.
After these retention periods, we securely delete or anonymize your data. Some residual copies may remain in backup systems for a limited period.
11. Third-Party Links
Our Platform may contain links to third-party sites. We are not responsible for their privacy practices. Please review their policies before providing personal data.
12. Children’s Privacy
Not intended for users under 16. If we learn we have collected data from children, it will be deleted immediately.
13. App Store Privacy Disclosures
For users accessing our App via the Apple App Store, we provide the following disclosures per Apple’s Privacy Nutrition Labels:
- Data Linked to You: Name, email, payment details, content data (e.g., schedules), usage data, and device data.
- Data Not Linked to You: Anonymized analytics data.
- Tracking: We do not track you across third-party apps or websites unless you provide consent via Apple’s App Tracking Transparency (ATT) prompt.
- Purpose of Data Collection: Account management, service delivery, analytics, and customer support.
See our full Privacy Nutrition Label in the App Store listing for additional details.
14. Changes to This Privacy Policy
We will notify you of significant changes via email or in-app notifications at least 30 days before they take effect. The latest version is always available at www.loggworks.co.uk/privacy.