Last updated: 04/08/2025

At Safe2Serve, your privacy matters. We are committed to protecting your personal data and handling it with transparency and integrity. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website, mobile app, and related products or services, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Safe2Serve is a UK-based company providing food hygiene compliance solutions, including a mobile app, consultancy services, and an online store.

Company Name: Safe2Serve

Website: www.safe2serve.co.uk

Email: info@safe2serve.co.uk

We are the “data controller” for the personal information we collect.

We collect the following types of data depending on how you interact with us:

• Name, email, phone number (via contact forms or newsletters)
   
• IP address, browser type, device type
   
• Page visit history, interaction data (via cookies & analytics)
   

• Name and contact details (business owner or staff)
   
• Business name, food premises address
   
• User roles (e.g. Manager, Staff)
   
• Compliance logs (temperature checks, cleaning records, EHO visit notes, etc.)
   
• Photos uploaded for cleaning proof or inspections
   
• Login credentials (encrypted)
   

• Full name, phone number, email, business address
   
• Preferred date/time of visit
   
• Service history (e.g. monthly audits, site visits)
   

• Billing and shipping information
   
• Order history
   
• Payment details (processed securely via Stripe or similar provider)
   

We use your data for the following purposes:

• To provide and manage access to our app and services
   
• To process orders, payments, and deliver products
   
• To schedule and manage consultancy appointments
   
• To maintain accurate food compliance records (as entered by you)
   
• To send service updates, reminders, and notifications
   
• To personalise your experience and improve our platform
   
• To comply with legal or regulatory requirements
   

We do not sell or share your personal data with unauthorised third parties.

Under the UK GDPR, our lawful bases for collecting and processing your data include:

• Consent – for optional communications (e.g. newsletter)
   
• Contract – to deliver our services, app access, or product orders
   
• Legal obligation – e.g. maintaining accurate records for compliance
   
• Legitimate interest – improving user experience and platform security
   

We may share limited data with trusted third parties, only as necessary:

• Payment Processors – e.g. Stripe (for secure payment processing)
   
• Shipping Providers – e.g. Royal Mail, DPD (for delivering goods)
   
• IT Service Providers – hosting, cloud storage, CRM tools
   
• Regulatory Bodies – where required by law (e.g. for audits)
   

All third parties are required to comply with strict data protection standards.

We retain your data for as long as necessary for its purpose:

• Account and compliance data: up to 6 years (for audit and legal purposes)
   
• Order and transaction data: 6 years (for tax and accounting)
   
• App activity logs: 2–3 years (for internal analysis)
   
• Marketing preferences: until you unsubscribe or withdraw consent
   

You can request deletion of your data at any time (see section 9).

You have the right to:

• Access the data we hold about you
   
• Rectify inaccurate or incomplete data
   
• Delete your personal data (“right to be forgotten”)
   
• Restrict or object to certain processing activities
   
• Withdraw consent at any time (for marketing or optional data)
   
• Data portability – request your data in a usable format
   
• Complain to the ICO if you feel your data is mishandled
  (www.ico.org.uk)
   

To exercise these rights, email: info@safe2serve.co.uk

Our website uses cookies and similar technologies to:

• Track user behaviour (e.g. Google Analytics)
   
• Improve functionality and performance
   
• Understand visitor trends
   

You can control cookie settings via your browser or device.

For more, please review our [Cookie Policy].

We use industry-standard security measures to protect your data, including:

• SSL encryption
   
• Secure password hashing
   
• Role-based access control
   
• Regular software updates and security audits
   

However, no system is 100% secure, and we recommend keeping your login credentials confidential.

Our website and app are intended for businesses and adults. We do not knowingly collect data from children under 16. If this occurs, we will delete the data immediately.

Your data is stored primarily in the UK. However, some third-party providers (e.g. analytics or cloud services) may process data outside the UK. In such cases, we ensure appropriate safeguards are in place (e.g. Standard Contractual Clauses).

We may update this Privacy Policy from time to time. Changes will be posted on this page and, where appropriate, notified via email or app update.

Last reviewed: 04/08/2025

Next review due: 05/08/2026

If you have questions or concerns about this Privacy Policy, or if you wish to exercise your data rights, contact:

📧 Email: info@safe2serve.co.uk