Privacy Policy

Effective date: 1 May 2026

This Privacy Policy explains how AFSD Ltd ("we", "us", "our") collects, uses, and protects your personal data when you use btnZoo (the "Service"). We are the data controller for the purposes of UK data protection law.

If you have any questions about this policy, please contact us at privacy@btnzoo.com.

1. Data we collect

We collect only what is necessary to provide the Service:

  • Account data — your name and email address, provided when you register.
  • Authentication data — your password, stored as a one-way hash. We cannot read your password.
  • Subscription data — your subscription status (free or paid). Payment card details are handled entirely by Stripe and are never stored on our servers.
  • Content data — the documents, button groups, and templates you create within the Service. This data belongs to you.
  • Technical data — server-side logs (IP address, request path, timestamp) retained for security and debugging purposes.

We do not use analytics services, advertising trackers, or third-party cookies.

2. How we use your data

  • To create and manage your account.
  • To provide, maintain, and improve the Service.
  • To process subscription payments via Stripe.
  • To send transactional emails (account verification, password reset, billing alerts). We do not send marketing emails without your explicit consent.
  • To detect and prevent abuse, fraud, and security incidents.

3. Legal basis for processing

  • Contract — processing your account and subscription data is necessary to provide the Service you signed up for.
  • Legitimate interests — security logging and abuse prevention, where our interests do not override your rights.
  • Legal obligation — retaining billing records as required by law.

4. Third-party processors

We use Stripe to process subscription payments. Stripe acts as a data processor on our behalf and is bound by its own privacy policy and UK GDPR obligations. Your payment card details are sent directly to Stripe and never pass through our servers.

We do not sell or share your personal data with any other third party.

5. Data retention

We retain your account and content data for as long as your account is active. If you delete your account, your personal data and content will be permanently deleted within 30 days. Billing records may be retained for up to 7 years as required by financial regulations.

6. Cookies

We use a single session cookie to keep you logged in. This cookie is strictly necessary for the Service to function and does not track you across other websites. No analytics or advertising cookies are used.

7. Your rights under UK GDPR

You have the right to:

  • Access — request a copy of the personal data we hold about you.
  • Rectification — ask us to correct inaccurate data.
  • Erasure — ask us to delete your personal data (subject to legal obligations).
  • Portability — receive your data in a structured, machine-readable format.
  • Objection — object to processing based on legitimate interests.
  • Restriction — ask us to limit how we use your data while a dispute is resolved.

To exercise any of these rights, email us at privacy@btnzoo.com. We will respond within 30 days.

If you are unhappy with how we have handled your data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) .

8. Security

We take reasonable technical and organisational measures to protect your data, including encrypted passwords, HTTPS-only access, and CSRF protection on all authenticated requests. No system is perfectly secure; if you become aware of a security issue please contact us immediately.

9. Changes to this policy

We may update this policy from time to time. Material changes will be notified by email or by a prominent notice within the Service at least 14 days before they take effect. The effective date at the top of this page always reflects the current version.

10. Contact

AFSD Ltd
privacy@btnzoo.com