Privacy Policy & Cookie Notice

1. Introduction

app-factory.dev Limited ("DeskHop", "we", "us", "our") is committed to protecting your privacy and ensuring the security of your data. This Privacy Policy explains how we collect, use, process, and protect your information when you use our DeskHop platform.

This policy complies with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable privacy laws.

2. Data Controller

app-factory.dev Limited is the data controller for the personal data we collect through the DeskHop platform.

Contact: hello@app-factory.dev
Registered Office: 12b Otley Street, Skipton, England, BD23 1DZ
Company Number: 16567409

3. Information We Collect

Information You Provide:

• Account Information: Name, email address, phone number, profile photo
• Payment Information: Payment method details (processed securely by our payment providers)
• Identity Verification: Where required for trust and safety purposes
• Host Information: Workspace details, photos, addresses, amenities, pricing
• Booking Information: Dates, times, special requests, communications with Hosts/Guests
• Reviews and Feedback: Ratings and written reviews
• Communications: Messages you send through our platform and to our support team

Automatically Collected Information:

• Usage Data: How you use the platform, pages visited, features used
• Device Information: Device type, operating system, browser type, IP address
• Location Data: General location based on IP address; precise location only with your consent
• Log Data: Access times, error reports, referring URLs

4. How We Use Your Information

We use your information for the following purposes:

To Provide Our Service:

• Create and manage your account
• Process bookings and payments
• Facilitate communication between Hosts and Guests
• Display listings and enable search functionality
• Provide customer support

For Trust and Safety:

• Verify user identities where appropriate
• Detect and prevent fraud and abuse
• Enforce our Terms of Service
• Resolve disputes between users

To Improve Our Platform:

• Analyse usage patterns to improve functionality
• Develop new features and services
• Conduct research and analytics
• Personalise your experience

For Communications:

• Send booking confirmations and updates
• Provide important account notifications
• Send marketing communications (with your consent)

5. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contract Performance: To provide our booking and listing services
• Legitimate Interests: For security, fraud prevention, platform improvement, and analytics
• Consent: For marketing communications, precise location data, and certain cookies
• Legal Obligation: To comply with applicable laws and regulations

6. Information Sharing

We do not sell your personal data. We may share information in the following circumstances:

With Other Users:

• Hosts: Guest name, booking details, and communications
• Guests: Host name, workspace address (upon booking), and communications
• Public Profile: Your name, photo, and reviews are visible to other users

With Service Providers:

• Payment processors (Stripe, PayPal, etc.)
• Cloud hosting providers
• Analytics services
• Customer support tools
• Email and communication services

For Legal Reasons:

• When required by law or legal process
• To protect our rights, privacy, safety, or property
• In connection with business transfers (merger, acquisition, etc.)

7. International Data Transfers

Your data may be processed in countries outside the UK. When we transfer data internationally, we ensure adequate protection through:

• Standard Contractual Clauses approved by the UK ICO
• Transfers to countries with adequate data protection laws
• Other appropriate safeguards as required by law

8. Data Retention

We retain your data for as long as:

• Your account remains active
• Necessary to provide our services
• Required for legal, tax, or regulatory purposes
• Needed to resolve disputes or enforce agreements

Upon account deletion, we will delete or anonymise your data within 30 days, except where longer retention is required by law or legitimate business purposes (e.g., financial records retained for 7 years).

9. Your Rights (UK GDPR)

Under UK GDPR, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data ("right to be forgotten")
• Portability: Receive your data in a machine-readable format
• Restriction: Limit how we process your data
• Object: Object to processing based on legitimate interests
• Withdraw Consent: Where processing is based on consent

To exercise these rights, contact us at hello@app-factory.dev. We will respond within one month.

10. Cookie Policy

What are Cookies?

Cookies are small text files stored on your device when you visit our website. They help us provide a better user experience and understand how our platform is used.

Types of Cookies We Use:

Essential Cookies (Always Active)

Required for basic functionality, authentication, and security. These cannot be disabled as the platform won't function properly without them.

Functional Cookies

Remember your preferences such as language, region, and display settings to enhance your experience.

Analytics Cookies

Help us understand how visitors use our platform so we can improve it. Data is aggregated and anonymised.

Marketing Cookies

Used to show you relevant advertisements and measure the effectiveness of our marketing campaigns. Set only with your consent.

Managing Cookies

You can control cookies through your browser settings or through our cookie consent banner. Note that disabling essential cookies may affect platform functionality.

11. Data Security

We implement comprehensive security measures including:

• Encryption in transit (TLS/SSL) and at rest
• Regular security audits and vulnerability testing
• Access controls and authentication mechanisms
• Regular backups and disaster recovery procedures
• Employee training on data protection
• Incident response procedures

12. Children's Privacy

DeskHop is not intended for children under 18. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

13. How to Complain

If you have concerns about how we handle your personal information, you can:

1. Contact us at hello@app-factory.dev
2. Complain to the Information Commissioner's Office (ICO) if unsatisfied with our response

ICO Contact:
Information Commissioner's Office
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Helpline: 0303 123 1113
Website: https://www.ico.org.uk

14. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes through email or platform notifications. Continued use after changes constitutes acceptance of the updated policy.

15. Contact Information

For questions about this policy or your personal data, please contact us at:

Company: app-factory.dev Limited. Registered in England and Wales | Company Number: 16567409
Registered Office: 12b Otley Street, Skipton, England, BD23 1DZ
Email: hello@app-factory.dev

© 2026 app-factory.dev Limited. All rights reserved.