Privacy Policy

This policy describes how BotanicalMapper ("we", "us") processes personal data when you use our website and services. You should review it alongside our Terms of Use. This is a template for your legal review - replace placeholders and adapt to your actual practices.

Last updated: 27 March 2026

1. Who we are

BotanicalMapper is operated by [Your limited company name], registered in [England and Wales / Scotland / Northern Ireland], company number [number]. Registered office: [address].

For data protection enquiries, contact: [privacy email address]. You may also contact the ICO (ico.org.uk) if you have concerns.

2. What we collect

Depending on how you use BotanicalMapper, we may process categories such as:

  • Account and identity data (for example name, email address) when you sign up or sign in.
  • Service and content data you add to the product (for example garden records, map data, photos).
  • Technical and usage data (for example IP address, device/browser type, logs) for security and reliability.
  • Payment-related data processed by our payment provider (we do not store full card numbers on our servers).
  • Communications you send us (for example support or contact form messages).

3. How we use data

We use personal data to provide, secure, and improve the service; communicate with you; comply with law; and enforce our terms.

We rely on appropriate lawful bases under UK GDPR (such as performance of a contract, legitimate interests, or consent where required). You should document the basis for each activity in your internal records.

4. Sharing and processors

We use trusted service providers (for example authentication, hosting, payments, email) who process data on our instructions. We may also disclose information if required by law or to protect rights and safety.

5. International transfers

If personal data is transferred outside the UK, we use appropriate safeguards (such as the UK IDTA or approved standard contractual clauses) where required.

6. Retention

We keep personal data only as long as needed for the purposes described, then delete or anonymise it unless we must retain it for legal reasons.

7. Your rights

Under UK data protection law you may have rights including access, rectification, erasure, restriction, objection, and data portability. To exercise these rights, contact us at the email above. You may complain to the ICO.

8. Cookies

We use cookies and similar technologies where necessary to run the service (for example to keep you signed in). See our Cookie information page for more detail.

9. Changes

We may update this policy from time to time. We will post the updated version on this page and adjust the "Last updated" date.