Privacy Policy

FLOWEDGE AI LTD ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how your personal information is collected, used, and disclosed by The Paws Society.

This policy specifically addresses our obligations under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Data Controller

The data controller responsible for your personal data is:

2. Information We Collect

We collect information to facilitate the dog grooming marketplace service:

• Identity Data: First name, last name, username.
• Contact Data: Billing address, email address, telephone numbers.
• Pet Data: Dog name, breed, age, medical conditions, grooming notes, and photos.
• Transaction Data: Details about payments to and from you and details of services you have purchased.
• Technical Data: IP address, login data, browser type and version, time zone setting, operating system and platform.
• Profile Data: Your username, purchases or orders made by you, interests, preferences, and feedback.

3. How We Use Your Information

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

• Performance of Contract: To register you as a new customer, process grooming bookings, and manage payments.
• Legitimate Interests: To manage our relationship with you, improve our website/app, and prevent fraud.
• Legal Obligation: To comply with legal or regulatory requirements (e.g., tax reporting).

4. Data Sharing and Third Parties

We may share your data with:

• Service Providers: IT and system administration services (e.g., Google Firebase, Cloudflare).
• Payment Processors: Stripe, for secure payment processing. We do not store your full card details.
• Groomers: If you are a pet owner, we share your pet's details and booking information with the groomer you select.
• Professional Advisers: Lawyers, bankers, auditors, and insurers.

5. International Transfers

Some of our external third parties (like Google Firebase) are based outside the UK. Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

• We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data.
• Where we use certain service providers, we may use specific contracts approved for use in the UK which give personal data the same protection it has in the UK (Standard Contractual Clauses).

6. Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. Access to your personal data is limited to those employees, agents, contractors, and other third parties who have a business need to know.

7. Data Retention

We will only retain your personal data for as long as reasonably necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements.

8. Your Legal Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data, including the right to:

• Request access to your personal data (Subject Access Request).
• Request correction of your personal data.
• Request erasure of your personal data.
• Object to processing of your personal data.
• Request restriction of processing your personal data.
• Request transfer of your personal data.
• Right to withdraw consent.

If you wish to exercise any of the rights set out above, please contact us at support@flowedgeai.com.

9. Complaints

You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.