Legal

Privacy Policy

This policy explains how AppInsights.uk collects and uses your personal data, and what rights you have under UK GDPR and the Data Protection Act 2018.

Last updated: April 2026

Who we are

AppInsights.uk is a SaaS compliance intelligence directory for UK IT teams, operated as a sole trader trading under the name AppInsights.uk.

For data protection purposes, AppInsights.uk is the data controller for personal data collected through this website. You can contact us about privacy matters at privacy@appinsights.uk.

What data we collect

Account data

When you sign up, we collect your email address. This is used to create and manage your account, send you service-related communications (e.g. billing receipts, important notices), and allow you to log in.

Payment data

Subscription payments are processed by Stripe. We do not store your card details — Stripe handles all payment card data directly. We receive and store a Stripe customer ID and subscription status so we can manage your access to the service.

Usage data

We collect basic analytics about how the service is used — such as which pages are visited and which features are used. This data is used in aggregate to improve the service. It is not used to build individual profiles or for advertising.

Why we collect it

We collect and process your personal data for the following purposes:

—To provide the service — creating and managing your account, verifying your subscription, and giving you access to the AppInsights.uk directory. The lawful basis is performance of a contract.
—To process payments — collecting subscription fees via Stripe and maintaining records of your billing status. The lawful basis is performance of a contract.
—To improve the service — analysing aggregate usage patterns to understand how the directory is used and where to focus improvements. The lawful basis is legitimate interests (improving a service we provide to paying customers).
—To comply with legal obligations — keeping financial records as required by HMRC. The lawful basis is compliance with a legal obligation.

How long we keep your data

We keep your account data for as long as your account is active. If you request deletion of your account, we will delete your personal data within 30 days, except where we are required to retain it by law.

Billing and payment records are retained for 7 years as required by HMRC for financial record-keeping. Usage analytics data is retained in aggregate form and is not linked to individual accounts after 12 months.

Third parties and data processors

We do not sell your personal data or share it with third parties for marketing purposes. We use a small number of data processors to operate the service:

Stripe

Payment processing. Stripe processes payment card data on our behalf. Stripe is certified to PCI DSS Level 1. Stripe's privacy policy is available at stripe.com/gb/privacy.

Hosting provider

Our database and application infrastructure is hosted with Supabase and Vercel. Your data is stored on servers located in the European Economic Area (EEA) or the UK. Any transfers to processors outside the UK are covered by appropriate transfer safeguards.

Your rights

Under UK GDPR you have the following rights regarding your personal data:

—Right of access — you can request a copy of the personal data we hold about you.

—Right to erasure — you can ask us to delete your personal data. We will do so within 30 days except where retention is legally required.

—Right to rectification — you can ask us to correct personal data that is inaccurate or incomplete.

—Right to portability — you can request your data in a structured, machine-readable format.

—Right to object — you can object to processing based on legitimate interests.

—Right to restrict processing — you can ask us to limit how we use your data in certain circumstances.

To exercise any of these rights, email us at privacy@appinsights.uk. We will respond within one month.

Cookies

We use a small number of cookies to operate the service:

—Session cookies — strictly necessary to keep you logged in while you use the service.
—Analytics cookies — basic, aggregate analytics to understand how the service is used. No advertising or tracking cookies are used.

We do not use third-party advertising cookies or sell data to advertisers.

How to complain

If you have a concern about how we handle your data, please contact us first at privacy@appinsights.uk and we will do our best to resolve it promptly.

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection. The ICO can be contacted at ico.org.uk/make-a-complaint or by calling 0303 123 1113.

Changes to this policy

We may update this policy from time to time. If we make material changes, we will notify subscribers by email. The "Last updated" date at the top of this page indicates when the policy was last revised. Continued use of the service after changes take effect constitutes acceptance of the revised policy.

Questions about this policy? privacy@appinsights.uk · Terms of Service