Privacy Policy

1. Introduction

zettle.tech ("we", "us", "our") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store and protect information when you use our website and services at bizsuite.management.

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

Information you provide directly:

• Account information: Name, email address, password, business name and contact details when you register.
• Business data: Invoices, quotes, customer records, supplier details, products, receipts and other business information you enter into the platform.
• Payment information: Processed securely through Stripe. We do not store your full card details on our servers.
• Communications: Messages sent through our contact form, support system or in-app messaging.

Information collected automatically:

• Usage data: Pages visited, features used, time spent, actions taken within the platform.
• Device information: Browser type, operating system, screen resolution, IP address.
• Cookies: Session cookies for login, preference cookies for settings. See our cookie policy below.

3. How We Use Your Information

We use your information to:

• Provide and maintain our services
• Process your transactions and subscriptions
• Send important service notifications (e.g. password resets, subscription renewals)
• Improve our platform based on usage patterns
• Respond to your enquiries and provide customer support
• Prevent fraud and ensure security
• Comply with legal obligations

We will never sell your personal data to third parties.

4. Legal Basis for Processing

Under GDPR, we process your data based on:

• Contract: Processing necessary to provide the services you signed up for.
• Legitimate interest: Improving our services, preventing fraud, ensuring security.
• Consent: Where you opt in to marketing communications or optional features.
• Legal obligation: Where we are required by law to retain or share data.

5. Data Sharing

We may share your data with:

• Payment processors: Stripe processes payments on our behalf under their own privacy policy.
• Hosting providers: Our servers are hosted securely with industry-standard data centres.
• Legal authorities: If required by law, court order, or to protect our legal rights.

We do not share your business data (invoices, customers, etc.) with any third party. Your business data is yours.

6. Data Retention

We retain your data for as long as your account is active. If you close your account, we will delete your personal data within 30 days, except where we are legally required to retain it (e.g. financial records for HMRC compliance, typically 6 years).

7. Your Rights

Under GDPR, you have the right to:

• Access: Request a copy of your personal data.
• Rectification: Ask us to correct inaccurate data.
• Erasure: Request deletion of your data ("right to be forgotten").
• Portability: Receive your data in a machine-readable format.
• Object: Object to processing based on legitimate interest.
• Restrict: Request we limit how we use your data.
• Withdraw consent: Where processing is based on consent, withdraw at any time.

To exercise any of these rights, contact us at support@bizsuite.management. We will respond within 30 days.

8. Data Security

We protect your data with:

• 256-bit SSL/TLS encryption for all data in transit
• Encrypted password storage using industry-standard hashing (bcrypt)
• Regular security updates and vulnerability patching
• Access controls limiting who can view your data
• Regular backups to prevent data loss

9. Cookies

We use the following types of cookies:

• Essential cookies: Required for login and core functionality. Cannot be disabled.
• Preference cookies: Remember your settings (e.g. currency, timezone).
• Analytics cookies: Help us understand how you use the platform so we can improve it.

You can manage cookies through your browser settings. Disabling essential cookies may prevent you from using the platform.

10. Children's Privacy

Our services are not intended for children under 16. We do not knowingly collect data from children under 16. If you believe a child has provided us with personal data, please contact us.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or an in-app notification. The "Last updated" date at the top of this page indicates when it was last revised.

12. Contact Us

For privacy-related enquiries or to exercise your data rights, contact us at:

Email: support@bizsuite.management
Or use our contact form.