← Back to Home

Privacy Policy

Last Updated: 12 May 2026

1. Introduction

Welcome to RenoTrack ("we," "our," or "us"). We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our renovation tracking application.

RenoTrack is operated from the United Kingdom and complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

2.1 Information You Provide

When you use RenoTrack, we collect information that you voluntarily provide:

  • Account Information: Email address, name, and password (encrypted)
  • Project Data: Renovation project details, tasks, budgets, suppliers, and notes
  • Files: Photos, receipts, quotes, and other documents you upload
  • Payment Information: Processed securely through Stripe (we don't store card details)

2.2 Automatically Collected Information

  • Usage Data: How you interact with the application, features used, and session duration
  • Device Information: Browser type, device type, operating system, and IP address
  • Cookies: Authentication tokens and essential cookies for app functionality

3. How We Use Your Information

We use your personal data for the following purposes:

  • Service Delivery: To provide and maintain your renovation tracking service
  • Account Management: To manage your account, authentication, and subscription
  • Communication: To send important updates, security alerts, and subscription notifications
  • Improvement: To analyze usage patterns and improve our service
  • Support: To respond to your questions and provide customer support
  • Security: To detect and prevent fraud, abuse, and security issues

4. Legal Basis for Processing (UK GDPR)

We process your personal data under the following legal bases:

  • Contract: Processing necessary to provide our services (Article 6(1)(b))
  • Consent: You have given clear consent for specific purposes (Article 6(1)(a))
  • Legitimate Interests: For analytics and service improvement (Article 6(1)(f))
  • Legal Obligation: To comply with legal requirements (Article 6(1)(c))

5. Data Storage and Security

5.1 Where We Store Your Data

Your data is stored on secure servers provided by Supabase (database) and Vercel (application hosting). These servers are located in Europe and the United States, with data centers that comply with international security standards.

5.2 How We Protect Your Data

  • Industry-standard encryption for data in transit (HTTPS/TLS)
  • Encryption for sensitive data at rest
  • Secure password hashing using bcrypt
  • Row-level security policies in our database
  • Regular security audits and updates

5.3 Data Retention

We retain your personal data only as long as necessary to provide our services and comply with legal obligations. When you delete your account, we permanently delete your data within 30 days, except where we must retain it for legal reasons.

6. Third-Party Services

We use the following trusted third-party services:

Supabase (Database & Authentication)

Stores your project data and manages authentication

Privacy Policy: supabase.com/privacy

Stripe (Payment Processing)

Processes subscription payments securely

Privacy Policy: stripe.com/privacy

Vercel (Hosting & Analytics)

Hosts the application and provides basic analytics

Privacy Policy: vercel.com/legal/privacy-policy

7. Your Rights (UK GDPR)

Under UK GDPR, you have the following rights:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a machine-readable format
  • Right to Object: Object to certain types of processing
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise any of these rights, please contact us at privacy@renotrack.co. We will respond within one month.

8. Cookies and Tracking

8.1 Essential Cookies

We use essential cookies that are necessary for the application to function:

  • Authentication Token: Keeps you logged in securely
  • Session Management: Maintains your session state

8.2 Analytics

We use Vercel Analytics for basic usage statistics (page views, session duration). This data is anonymized and aggregated.

8.3 Your Cookie Choices

You can control cookies through your browser settings. However, disabling essential cookies will prevent you from using RenoTrack.

9. Children's Privacy

RenoTrack is not intended for use by individuals under 18 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

10. International Data Transfers

Your data may be transferred to and processed in countries outside the UK/EEA. When we transfer data internationally, we ensure adequate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the UK Information Commissioner's Office
  • Adequacy decisions for certain countries
  • Service providers with appropriate security measures

11. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes by email or through a prominent notice in the application. The "Last Updated" date at the top indicates when the policy was last revised.

12. Contact Us

If you have questions about this privacy policy or our data practices, please contact us:

Email: privacy@renotrack.co

Data Protection Officer: dpo@renotrack.co

You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) if you believe we have not handled your data appropriately:

ICO Website: ico.org.uk

ICO Helpline: 0303 123 1113