Privacy Policy
Last updated: 21 February 2026
Trackori is a relationship intelligence platform. We are committed to protecting your privacy and handling your data responsibly. This Privacy Policy explains what we collect, how we use it, and the rights you have under UK GDPR and the Data Protection Act 2018.
For any privacy question, or to exercise any of the rights described below, contact us at hello@trackori.com.
1. Information we collect
- Account information — your name and email.
- Relationship data — contacts, notes and interactions you record inside Trackori.
- Usage data — how you interact with the app (screens viewed, features used, aggregate counts).
- Device and browser data — standard technical information such as device type, browser, and approximate location (from IP).
- Billing data — handled securely by Stripe. We do not store your card details.
2. How we use your data
We use your data to:
- operate Trackori and deliver the service you’ve signed up for;
- generate relationship insights and suggested next actions;
- improve performance, reliability, and product features;
- manage your subscription and billing;
- send essential service emails (welcome, trial status, password reset, payment confirmations).
3. AI processing
Trackori uses automated systems to analyse your data to generate relationship insights, suggested next actions, reminders, and signals.
- Outputs are generated from the data you provide inside Trackori.
- We do not use your data to train third-party AI models in a way that identifies you.
- AI is used strictly to power Trackori features — never for profiling beyond the product, advertising, or resale.
AI outputs are informational only. You remain responsible for the relationship decisions you take.
4. Legal basis (UK GDPR)
We process your data under the following lawful bases:
- Contract — to provide the Trackori service you’ve signed up for.
- Legitimate interests — to improve Trackori, prevent abuse, and operate the business efficiently.
5. Data sharing
We may share limited data with carefully chosen service providers:
- Stripe — payment processing.
- SendGrid (or an equivalent email provider) — transactional email delivery.
- Infrastructure providers — hosting and database (e.g. cloud compute and managed MongoDB).
These providers act as data processors under written agreements. We do not sell personal data.
6. Data retention
We retain your data:
- for as long as your account is active;
- or for as long as required for legal, tax, or compliance reasons.
You can request deletion of your account and data at any time by emailing hello@trackori.com.
7. Data transfers
Your data may be transferred in connection with a merger, acquisition, reorganisation, or sale of all or part of Trackori’s assets. In those cases the new owner will be bound by terms at least as protective as those in this Privacy Policy, and you will be notified.
Where data is transferred outside the UK or EEA, we rely on Standard Contractual Clauses or equivalent safeguards.
8. Your rights
Under UK GDPR you have the right to:
- access the personal data we hold about you;
- correct inaccurate or incomplete data;
- request deletion of your data (“right to erasure”);
- object to, or restrict, certain processing;
- request a portable copy of your data;
- lodge a complaint with the UK Information Commissioner’s Office (ICO).
To exercise any of these rights, email hello@trackori.com. We’ll respond within 30 days.
9. Security
We implement reasonable technical and organisational measures to protect your data, including encryption in transit (HTTPS), hashed passwords, access controls, and audited sub-processors. No system is perfectly secure — if you believe your account has been compromised, contact us immediately.
10. Cookies
We use a small number of cookies and similar technologies for:
- authentication (keeping you signed in);
- basic analytics (understanding feature usage in aggregate).
We do not use advertising or cross-site tracking cookies.
11. QR campaign analytics
We use privacy-friendly QR analytics to understand campaign performance, such as scan counts, broad location, device type, and sign-up conversion. We do not show personal scanner identities or precise location data. Scan events are logged with a random session identifier so we can attribute later sign-ups to the originating campaign within 90 days; we do not store IP addresses, raw user agents, browser fingerprints, or precise GPS.
12. Updates
We may update this policy from time to time. Material changes will be flagged prominently or notified by email. Continued use of Trackori after an update means you accept the revised policy.
13. Contact
For any privacy matter, contact us at hello@trackori.com.