Privacy Policy

1. Who We Are

Paybacker LTD ("Paybacker", "we", "us", "our") is a company registered in the United Kingdom. We operate the website paybacker.co.uk and provide AI-powered bill analysis and savings recommendation services.

For any privacy-related enquiries, you can contact us at hello@paybacker.co.uk.

2. Data We Collect

We collect the following categories of personal data:

3. How We Use Your Data

We use your personal data solely to provide and improve our savings identification service. Specifically, we use your data to:

• Identify bills, subscriptions and recurring payments
• Analyse your current tariffs and contracts against available market deals
• Surface personalised switching recommendations in your dashboard
• Send you alerts when contract end dates are approaching or better deals become available
• Provide customer support and respond to your enquiries

Our legal basis for processing is your consent (for email and banking data) and legitimate interest (for account management and service delivery).

4. Data Storage

Your data is stored securely in Supabase, our database provider, which hosts data on encrypted servers within the UK and EU. All data is encrypted in transit (TLS) and at rest. We follow industry best practices for access control and regularly review our security measures.

5. Data Sharing

We do not sell, rent or trade your personal data to any third party. We may share limited data with the following categories of service providers, solely to operate our platform:

• Supabase — database hosting and authentication
• Stripe — payment processing (we never see or store your full card details)
• Yapily — Open Banking data access (read-only bank transactions)
• Resend — transactional email delivery

6. Affiliate Disclosure

7. Data Retention and Deletion

We retain your personal data for as long as your account is active or as needed to provide our services. If you close your account, we will delete your personal data within 30 days, except where we are legally required to retain it (for example, financial records for tax purposes).

You can request deletion of your data at any time by emailing hello@paybacker.co.uk. We will process your request within 30 days.

8. Cookies

We use cookies and similar technologies on our website. These fall into two categories:

• Essential cookies — required for the website to function (authentication, session management). These cannot be disabled.
• Analytics cookies — we use PostHog and Google Analytics to understand how visitors use our website so we can improve it. These are only set with your consent.

9. Your Rights Under UK GDPR

Under UK GDPR and the Data Protection Act 2018, you have the following rights:

• Right of access — request a copy of the personal data we hold about you
• Right to rectification — ask us to correct any inaccurate or incomplete data
• Right to erasure — request that we delete your personal data
• Right to data portability — receive your data in a structured, commonly used format
• Right to object — object to certain types of processing, including direct marketing
• Right to restrict processing — ask us to limit how we use your data
• Right to withdraw consent — withdraw your consent at any time where processing is based on consent

To exercise any of these rights, email us at hello@paybacker.co.uk. If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

10. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. If we make significant changes, we will notify you by email or by placing a prominent notice on our website. We encourage you to review this policy periodically.