🛡️ TakeFivv Privacy Policy
Last updated: 01/07/2025
UK Data Controller: This service is operated from the United Kingdom and complies with UK GDPR and Data Protection Act 2018.
🔒 Introduction
TakeFivv ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how
we collect, use, disclose, and safeguard your information when you use our AI-powered mockup
generation service and Shopify app.
By using TakeFivv, you agree to the collection and use of information in accordance with this policy.
📥 1. Information We Collect
1.1 Account Information
- Email address (for account creation and authentication)
- Business name and website URL (optional)
- Industry and brand preferences (optional)
- Password (stored encrypted using bcrypt hashing)
1.2 Shopify Integration Data
- Shop domain and basic store information
- Product data (titles, descriptions, images, prices)
- Collection and category information
- OAuth access tokens (encrypted and stored securely)
1.3 Usage Data
- IP address and device information
- Browser type and version
- Pages visited and features used
- Mockup generation history and preferences
- Error logs and performance metrics
⏰ 2. How We Use Your Information
- Service Delivery: Generate mockups, sync products, and provide core functionality
- Account Management: Authenticate users and manage access
- Communication: Send important updates, security notifications, and support responses
- Security: Monitor for unauthorised access and protect against fraud
- Improvement: Analyse usage patterns to enhance our service
- Legal Compliance: Meet legal obligations including UK GDPR requirements
🔐 3. Data Security
We implement industry-standard security measures to protect your data:
Encryption
All data transmitted over HTTPS with TLS encryption
Access Control
JWT authentication and role-based permissions
Password Security
Passwords hashed using bcrypt algorithm
Infrastructure
Hosted on AWS with security monitoring
🤝 4. Data Sharing and Disclosure
We do NOT sell your personal data to third parties.
We may share your information only in these limited circumstances:
- Shopify Integration: Data necessary for app functionality is shared with Shopify per their API terms
- Service Providers: AWS for hosting, email service providers for notifications
- Legal Requirements: When required by UK law or to protect our rights
- Business Transfer: In case of merger or acquisition (with notice)
🗂️ 5. Data Retention
Account Data
Until account deletion
Product Data
30 days after deletion
Backups are retained for 30 days and then permanently deleted.
⚖️ 6. Your Rights (UK GDPR Compliance)
Under UK GDPR and the Data Protection Act 2018, you have the following rights:
Right to Access
Request a copy of your personal data
Right to Rectification
Correct inaccurate personal data
Right to Erasure
Request deletion of your data
Right to Portability
Export your data in a structured format
To exercise these rights: Contact us at daniel@dalston606.co.uk or use the data export feature in your account dashboard.
🍪 7. Cookies and Tracking
We use essential cookies and similar technologies to:
- Maintain your login session
- Remember your preferences
- Ensure security and prevent fraud
- Analyse usage patterns (anonymised)
Note: We do not use third-party advertising cookies or track users across other websites.
🌍 8. International Data Transfers
Our services are hosted on AWS infrastructure, which may involve data processing in various locations.
All transfers are protected by:
- AWS's compliance with UK data protection standards
- Appropriate technical and organisational measures
- Standard contractual clauses where applicable
📝 9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by:
- Posting the new Privacy Policy on this page
- Updating the "Last updated" date
- Sending an email notification for material changes