SPOT .Back to Home

Privacy Policy

Last updated: 31 December 2024

1. Introduction

SPOT Rewards ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and website (collectively, the "Service").

Please read this privacy policy carefully. By using the Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

We may collect personally identifiable information that you voluntarily provide when using our Service, including:

  • Name and contact information (email address, phone number)
  • Account credentials (username, password)
  • Payment information (processed securely through our payment providers)
  • Profile information (profile photo, preferences)
  • Location data (with your consent)
  • Business information (for business account holders)

2.2 Automatically Collected Information

When you access our Service, we may automatically collect:

  • Device information (device type, operating system, unique device identifiers)
  • Log information (access times, pages viewed, IP address)
  • Usage data (features used, actions taken within the app)
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Service
  • Process transactions and manage your rewards account
  • Send you notifications about your account, rewards, and offers
  • Personalise your experience and provide relevant recommendations
  • Respond to your comments, questions, and customer service requests
  • Detect, prevent, and address fraud and security issues
  • Comply with legal obligations
  • Analyse usage patterns to improve our Service

4. Sharing Your Information

We may share your information in the following circumstances:

  • With Partner Businesses: To process rewards and transactions at participating businesses
  • With Service Providers: Third parties who perform services on our behalf (payment processing, analytics, customer support)
  • For Legal Reasons: When required by law or to protect our rights and safety
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you have given us permission to share your information

We do not sell your personal information to third parties.

5. Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, secure servers, and regular security assessments. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

6. Your Rights

Under the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018, you have the following rights:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Request limitation of how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing of your data for certain purposes
  • Rights Related to Automated Decision-Making: Not be subject to decisions based solely on automated processing

To exercise these rights, please contact us using the details provided below. We will respond to your request within 30 days.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information. You can control cookies through your browser settings and our cookie consent tool. The types of cookies we use include:

  • Necessary Cookies: Required for the Service to function properly
  • Analytics Cookies: Help us understand how visitors use our Service
  • Marketing Cookies: Used to deliver relevant advertisements
  • Preference Cookies: Remember your settings and preferences

8. Data Retention

We retain your personal information for as long as necessary to provide our Service and fulfil the purposes outlined in this policy. When you close your account, we will delete or anonymise your data within 90 days, unless we are required to retain it for legal, regulatory, or legitimate business purposes.

9. Children's Privacy

Our Service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we discover that we have collected personal information from a child under 16, we will delete it promptly. If you believe we have collected information from a child under 16, please contact us.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. When we transfer data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the UK Information Commissioner's Office.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

[email protected]
SPOT Rewards Ltd, London, United Kingdom

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data protection rights have been violated. Visit ico.org.uk for more information.

View Terms of Service →