Privacy Policy

Breedbase (“we”, “our”, “us”) operates the Breedbase platform at app.breedbase.com. This policy explains how we collect, use, and protect your personal data.

1. Who We Are

Breedbase is a business management platform for professional dog trainers. We provide scheduling, client management, session notes, and invoicing to help trainers run their businesses.

Data controller: Breedbase, United Kingdom
Contact: privacy@breedbase.com

2. What Data We Collect

Data you provide directly

• Account information: name, email address, password
• Business information: business name, phone number
• Client records: your clients’ names, contact details, emergency contacts, and notes you add about their dogs (breed, health, temperament, vaccination status)
• Session data: scheduled appointments, session notes, training plans, and progress records
• Payment information: processed securely by Stripe; we do not store card numbers

Data collected automatically

• Usage data: pages visited, features used, device type, browser type
• Log data: IP address, access times, error logs for debugging

3. How We Use Your Data

We use your data to:

• Provide the Breedbase platform and its features
• Manage your account and authenticate your sessions
• Send transactional emails (session reminders, invoices, password resets)
• Improve our platform based on aggregate, anonymised usage patterns
• Respond to support requests

We do not:

• Sell your personal data to third parties
• Use your data for advertising
• Share your client records with anyone other than you

4. Legal Basis for Processing (GDPR)

5. Data Storage and Security

• Your data is stored on servers in the EU/UK provided by Supabase (database) and Vercel (application hosting)
• All data is encrypted in transit (TLS) and at rest
• Authentication tokens for third-party services are encrypted at rest
• We use Supabase Row Level Security to ensure trainers can only access their own data
• We conduct regular security reviews of our infrastructure

6. Data Retention

• Account data: retained while your account is active, deleted within 30 days of account deletion
• Client records and session data: retained while your account is active; deleted when you delete them or close your account
• Usage logs: retained for 90 days for debugging, then deleted

7. Your Rights

Under UK GDPR, you have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your data (“right to be forgotten”)
• Export your data in a portable format
• Withdraw consent for optional processing
• Object to processing based on legitimate interest
• Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise any of these rights, contact privacy@breedbase.com. We will respond within 30 days.

8. Third-Party Services

We use the following third-party services to operate Breedbase:

Each service has its own privacy policy and processes data in accordance with GDPR.

9. Cookies

Breedbase uses only essential cookies required for authentication and session management. We do not use tracking cookies, advertising cookies, or analytics cookies that identify individual users.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes via email or an in-app notice. The “last updated” date at the top of this page reflects the most recent revision.

11. Contact

For any questions about this privacy policy or your data:

Email: privacy@breedbase.com

For complaints, you may also contact the UK Information Commissioner’s Office at ico.org.uk.