PawPal Privacy Policy

How we collect, use, and protect your personal information

Last Updated: 17-11-2025 

PawPal (“we”, “us”, “our”) provides pet-care business management software to professional service providers. This Privacy Policy explains how we collect, use, store, and protect personal data when businesses use our website and services (“Services”). 

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018

If anything, here is unclear, contact us at info@pawpal.uk

1. Who We Are

Data Controller: PawPal 
Email: info@pawpal.uk 
Website: https://pawpal.uk 

We act as a Data Controller when you create an account, log into the system, or use our Services. 
You, as a business user, may act as a Data Controller for data about your own customers and staff. 

2. Personal Data We Collect

We collect the following categories of data: 

2.1 Account & Business Information 

  • Full name
  • Work email address
  • Business name
  • Business address
  • Phone number
  • User login details
  • Subscription & billing information (if applicable) 

2.2 Pet-Care Operational Data (User Content) 

Uploaded by you to run your business operations: 

  • Pet profiles
  • Photos, inspection notes, attachments
  • Booking information
  • Activity logs
  • Internal notes and checklists 

You remain the owner of all User Content. 

2.3 Usage & Technical Data 

Collected automatically when using the platform: 

  • IP address
  • Browser type
  • Device information
  • Log files
  • Cookie data
  • System performance events 

2.4 Payment Data 

Processed securely by our external payment provider. 
We do not store your full card details. 

3. How We Use Your Personal Data

We use your data for the following purposes: 

Service Provision 

  • Creating and managing user accounts
  • Enabling bookings, pet records, and operational functions
  • Communicating service updates and support 

Security 

  • Verifying accounts
  • Monitoring abuse, fraud, and unauthorised access 

Business Administration 

  • Subscription management
  • Invoicing
  • Internal reporting
  • Performance monitoring 

Platform Improvement 

  • Analytics and feature optimisation
  • Fixing bugs and outages
  • Maintaining system stability 

We do not sell or share your data for advertising purposes. 

4. Lawful Bases for Processing

We process data under these UK GDPR lawful bases: 

  • Contract – to deliver the Services
  • Legitimate Interests – platform security, analytics, service improvement
  • Legal Obligation – invoicing, tax compliance, preventing fraud
  • Consent – where applicable (e.g., non-essential cookies) 

5. How We Store & Protect Your Data

We use industry-standard security measures to protect your information, including: 

  • Encryption in transit (HTTPS/TLS)
  • Encrypted data storage
  • Role-based access control
  • Regular backups
  • Audit logs
  • Access monitoring 

No system is completely secure, but we take reasonable and proportionate steps required by UK GDPR. 

6. How Long We Keep Data

We retain data only as long as necessary: 

  • Account & business data: as long as your subscription is active
  • User Content: until deleted by you
  • Logs & security data: up to 12 months
  • Billing & financial records: 6 years (legal requirement) 

You can request deletion at any time. 

7. Sharing & Transfers of Data

We may share your data with: 

7.1 Service Providers (Processors) 

  • Hosting providers
  • Payment processors
  • Analytics tools
  • Email delivery tools
  • Security monitoring services 

All third parties are bound by data processing agreements. 

7.2 Legal Obligations 

We may disclose data if required by regulators, law enforcement, or court orders. 

7.3 International Transfers 

If data is transferred outside the UK, we use: 

  • UK-approved Standard Contractual Clauses, or
  • Adequacy regulations 

8. Your Rights Under UK GDPR

You have the following rights: 

  • Access your data
  • Correct inaccurate data
  • Erase your data (“right to be forgotten”)
  • Restrict processing
  • Object to processing
  • Data portability
  • Withdraw consent (where applicable) 

To exercise these rights, contact: info@pawpal.uk

We respond within one month as required by law. 

9. Cookies

We use cookies for: 

  • Login functionality
  • Session management
  • Analytics
  • Performance optimisation 

Essential cookies run by default. 
non-essential cookies require consent. 

A full Cookies Policy can be provided separately upon request. 

10. Children’s Data

PawPal is a B2B service and is not intended for children under 16. 
We do not knowingly collect children’s personal data. 

11. Third-Party Links

Our website may contain links to third-party websites. 
We are not responsible for their content or privacy practices. 

12. Updates to This Privacy Policy

We may update this policy when needed for operational or legal reasons. 
Material changes will be notified via email or in-app message. 

13. Complaints

If you believe your data has been mishandled, you can contact: 

You can contact us directly at info@pawpal.uk and we will respond promptly. 

14. Contact Us

For any questions about this Privacy Policy: 

Email: info@pawpal.uk 
Website: https://pawpal.uk