Privacy Policy EVENNECT

How we collect, use, and protect your personal data (UK GDPR).

This Privacy Policy explains how EVENNECT (“we”, “us”, “our”) handles personal data for UK users in line with the UK GDPR and the Data Protection Act 2018.

Last Updated: 01 January 2026

1. UK users only

EVENNECT.co.uk is intended for users in the United Kingdom. We design our privacy practices with UK law and guidance in mind (including UK GDPR and the Data Protection Act 2018).

2. Who we are (Data Controller)

EVENNECT (“we”, “us”, “our”) operates the EVENNECT platform and associated community portals and is the Data Controller for the purposes of UK GDPR.

Quick summary
  • We don’t sell your personal data.
  • We use data to run the service, keep it safe, and support users.
  • Analytics cookies are only used if you consent (see Cookie Policy).

3. What personal data we collect

3.1 Account data

  • Name / display name
  • Email address
  • Profile information you choose to provide
  • Password (stored as a secure hash, not plain text)
  • Security and sign-in logs (e.g., timestamps, IP address)

3.2 Content and community activity

  • Posts, listings, photos and descriptions
  • Messages you send through the platform
  • Reports you submit and moderation outcomes
  • Activity logs for safety and security

3.3 Location and local relevance

  • Postcode you provide (for area-based services)
  • Approximate GPS location (only if you grant device permission and use a feature that needs it)
  • IP-based location estimates (for security and fraud prevention, and rough localisation)

3.4 Technical data

  • IP address
  • Device type and operating system
  • Browser information
  • Usage analytics (only if you consent to analytics cookies)

4. How we use your data (purposes)

  • Provide and operate the service (accounts, login, listings, messaging, notifications)
  • Local features (showing nearby results when you choose to use local services)
  • Safety and security (fraud prevention, abuse detection, enforcing rules, moderation)
  • Customer support and handling complaints
  • Service communications (important account/security/service notices)
  • Improve and maintain performance (analytics only if consented)
  • Legal compliance and protecting rights (including responding to lawful requests)

5. Lawful bases for processing (UK GDPR Article 6)

We process your personal data under one or more of the following lawful bases:

  • Contract – to operate your account and provide services you request.
  • Legitimate interests – to keep the platform safe, prevent fraud/abuse, and improve the service (balanced against your rights).
  • Consent – for analytics/marketing cookies, and for optional device location permissions where you choose to enable them.
  • Legal obligation – to comply with UK law and regulatory duties.

6. Location data use

Location data is used to provide local visibility (for example: results within a radius, area-based alerts, and local matching across modules). You can withdraw device location permission at any time via your device settings.

7. Sharing with third parties

We may share personal data with:

  • Service providers (processors) such as hosting, email delivery, databases, mapping/geocoding, and security tooling.
  • Other users where you choose to publish content publicly or to a local community area.
  • Authorities where required by law, or where necessary to prevent harm, fraud, or crime.

All service providers are required to protect personal data and process it lawfully. We do not sell your personal data.

8. International transfers

We aim to keep data within the UK. Where suppliers transfer data outside the UK, we will use appropriate safeguards (for example, UK Addendum / IDTA where applicable).

9. Data retention

We retain personal data only as long as necessary for operational, safety, and legal purposes. For example:

  • Account data: kept while your account is active.
  • Moderation and security logs: kept for a reasonable period to investigate abuse, protect users, and comply with law.
  • Backups: may persist for a limited time after deletion.

10. Your UK GDPR rights

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restrict processing
  • Right to data portability (in certain cases)
  • Right to object (including to direct marketing)
  • Right to withdraw consent (where processing is based on consent)

To exercise your rights, contact us at mail@evennect.co.uk. We may need to verify your identity.

11. Complaints

If you’re unhappy with how we handle your data, contact us first and we’ll try to resolve it. You also have the right to complain to the UK Information Commissioner’s Office (ICO).

12. Security

We implement appropriate technical and organisational measures to protect data, including encryption in transit (HTTPS), access controls and monitoring. No system is 100% secure.

13. Cookies

See our Cookie Policy for details and to manage preferences.

14. Changes to this policy

We may update this policy from time to time. We’ll post the updated version on this page and update the “Last Updated” date.