School Runs Tracker

This GDPR Policy ("Policy") outlines how we collect, use, disclose, and protect your personal information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. By using our services, you consent to the practices described in this Policy.

Information We Collect

We collect personal information that you provide directly to us, including but not limited to information provided during registration, service usage, and communication with our support team.

We use your personal information to provide, maintain, and improve our services, including processing transactions, authenticating users, and providing customer support. We use your information to communicate with you about our services, including sending service-related announcements, security alerts, and support messages. We use your information for legal and regulatory compliance purposes, including fraud prevention, risk assessment, and investigation of potential violations of our terms. We may use your information for research and analytical purposes to understand how our services are used and to develop new features and functionality. We may use your information for marketing purposes, subject to your marketing preferences and applicable law.

We process your personal information when we have a legal basis to do so. The legal bases we rely on include: Your consent, which you may withdraw at any time; The necessity of processing for the performance of a contract with you; Compliance with our legal obligations; The necessity of processing for our legitimate interests, which are not overridden by your rights and interests; The necessity of processing to protect your vital interests or those of another person.

We may share your personal information with third-party service providers who perform services on our behalf, such as hosting providers, payment processors, and analytics providers. We may disclose your information if required to do so by law or in response to valid requests by public authorities. We may share your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company. We may share aggregated or de-identified information that cannot reasonably be used to identify you. We may share your information with your consent or at your direction.

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements. In some circumstances, we may anonymize your personal information so that it can no longer be associated with you, in which case we may use such information without further notice to you.

Your personal information may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country. We ensure that appropriate safeguards are in place to protect your personal information when it is transferred internationally, including through the use of standard contractual clauses approved by the relevant authorities.