The data controller for your personal data is:
Jamie Wadhams trading as PlanSafe
Registered office: 2 Charles Court, Lympstone, EX8 5EL
Contact: privacy@plan-safe.com
Until incorporation, the controller is Jamie Wadhams, sole trader.
PlanSafe is for adults aged 18 and over living in the United Kingdom. Parents and carers may enter information about dependants (including children) inside their account; we treat that data with additional care as described in section 7.
| Purpose | Lawful basis |
|---|---|
| Create and run your account, deliver features, provide support | Performance of a contract (Article 6(1)(b)) |
| Process special category data (medical, disability, religious, child SEND) | Your explicit consent (Articles 6(1)(a) and 9(2)(a)) — separate tick at point of entry |
| Transactional messages (billing, security, subscribed alerts) | Performance of a contract (Article 6(1)(b)) |
| Optional marketing communications | Your consent (Article 6(1)(a) and PECR) |
| Security, fraud prevention, crash diagnostics | Legitimate interests (Article 6(1)(f)) |
| Tax and accounting obligations | Legal obligation (Article 6(1)(c)) |
| Anonymised aggregated statistics | Legitimate interests (Article 6(1)(f)) — note: genuinely anonymised data is no longer personal data |
We use your data to: create your account and sign-in; build, store, and display your emergency plan; alert you to local emergencies (if you opt in); process your subscription payments; send transactional emails and push notifications; respond to support requests; investigate misuse and security incidents; fix bugs and improve the app; and comply with law.
We do not use your data to make automated decisions with legal or similarly significant effects on you.
| Processor | Purpose | Data shared |
|---|---|---|
| Apple Inc. | App Store, Sign in with Apple, push notifications, in-app subscriptions | Apple ID identifier, push token, subscription receipt |
| Google LLC | Play Store, Sign in with Google, push notifications, subscriptions | Google account identifier, push token, subscription receipt |
| Stripe Payments UK Ltd | Subscription billing (where Apple/Google billing is not used) | Name, email, billing country, payment-method token |
| [Cloud hosting provider] | Hosting the database and backend | All app data, encrypted at rest |
We may produce statistics from app data that cannot identify any individual — for example: "62% of UK households in PlanSafe store fewer than three days of drinking water." Once genuinely anonymised, data falls outside UK GDPR. We may share or sell such statistics to insurers, councils, or research bodies. We never sell data linked to you, your household, your contacts, or your dependants.
We may disclose data to law enforcement or courts where legally required; to a buyer if PlanSafe is sold (with prior notice to you); or to professional advisers under duties of confidentiality. We do not share your personal data for advertising or marketing by third parties.
We treat children's medical and SEND data as the highest-sensitivity category. It is encrypted at rest, restricted to staff who need it, never used for analytics, and deleted immediately when you remove the dependant from your plan or close your account. Anyone listed as a dependant or emergency contact may email privacy@plan-safe.com to request removal of their data.
| Data | Retention period |
|---|---|
| Account data, plan content, emergency contacts, dependants | While account is active, plus 30 days after deletion |
| Special category data (medical / disability / religious / SEND) | Same as above; deleted in full at the end of the 30-day grace period |
| Subscription and billing records | 7 years (UK accounting law) |
| Support correspondence | 2 years from last message |
| Crash logs and diagnostics | 90 days |
| Marketing consents and withdrawals | 3 years from withdrawal |
Under UK GDPR you have the following rights, free of charge, exercisable by emailing privacy@plan-safe.com. We will respond within one calendar month.
Some processors (Apple, Google, Stripe) operate servers outside the UK, including in the US. Where this happens we rely on the UK Extension to the EU–US Data Privacy Framework or Standard Contractual Clauses together with the ICO's International Data Transfer Addendum. Copies of safeguards are available on request.
We protect your data using TLS 1.2+ in transit, AES-256 encryption at rest, role-based access control with least privilege, multi-factor authentication for production access, and regular penetration testing. We will notify the ICO within 72 hours of any breach that risks your rights or freedoms, and notify you directly if the risk to you is high.
The mobile app does not use web cookies. It includes SDKs from Apple and Google for sign-in, push notifications, billing, and crash diagnostics. None is used for cross-app advertising. We do not use Apple's IDFA or Google's Advertising ID. The first time you open the app we ask separately for consent to crash diagnostics and marketing notifications.
If we make material changes we will notify you by email and require acknowledgement in-app before you continue using PlanSafe. Minor changes will be reflected here with an updated date.
Data protection: privacy@plan-safe.com
Post: 2 Charles Court, Lympstone, EX8 5EL — marked "FAO Data Protection"
Support: support@plan-safe.com
This policy is a template tailored to PlanSafe's data model. It is not a substitute for review by a UK-qualified solicitor, particularly given the special category data (medical, disability, SEND) and children's data PlanSafe processes.