LifeTapLifeTap

LEGAL

Privacy Policy

How we collect, use, and protect your personal data.

Last updated: April 2026

Introduction

LifeTap Ltd ("we", "us", "our") is the data controller responsible for your personal data. We're committed to protecting your privacy and handling your data transparently.

This policy explains what data we collect when you use the LifeTap platform and website (https://lifetap.uk), why we collect it, and what rights you have.

Our ICO registration is currently pending. We operate in full compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

What data we collect

Account information

When you create an account, we collect your name, email address, and authentication credentials. If you sign in with Google or Apple, we receive basic profile information from those providers.

Usage data

We collect information about how you interact with the platform, including features used, content viewed, and engagement activity. This helps us improve the product and understand how programmes are performing.

Technical data

We collect device type, operating system, browser type, and IP address for security and troubleshooting purposes.

How we use your data

We use your personal data to:

  • Provide and maintain your LifeTap account
  • Send transactional emails (account verification, password resets)
  • Generate aggregated engagement insights for programme partners
  • Improve the platform based on usage patterns
  • Ensure platform security and prevent misuse

We don't sell your personal data. We don't use it for advertising.

Legal basis for processing

We process your data under the following lawful bases:

  • Contract: Processing needed to provide the service you signed up for.
  • Legitimate interests: Improving the platform, generating aggregated insights, and maintaining security.
  • Consent: Where you've given specific permission, such as for optional communications.
  • Legal obligation: Where we're required to retain or disclose data by law.

Third-party services

We use a small number of third-party services to run the platform:

  • Convex — Database and real-time backend infrastructure. Your account and usage data is stored here.
  • Resend — Transactional email delivery. Used for account verification, password resets, and system notifications.
  • Google / Apple — If you choose social sign-in, authentication data is exchanged with these providers.

Each provider processes data under their own privacy policies. We only share the minimum data needed for each service to function.

Data retention

We keep your personal data for as long as your account is active or as needed to provide the service. If you delete your account, we'll remove your personal data within 30 days, except where we're legally required to retain it.

Aggregated, anonymised data (which can't identify you) may be retained indefinitely for research and platform improvement.

Cookies

We use essential cookies only, for authentication and session management. For full details, see our Cookie Policy.

Your rights

Under UK GDPR, you have the right to:

  • Access — Request a copy of the personal data we hold about you.
  • Rectification — Ask us to correct inaccurate or incomplete data.
  • Erasure — Ask us to delete your personal data.
  • Portability — Receive your data in a structured, machine-readable format.
  • Restriction — Ask us to limit how we process your data.
  • Objection — Object to processing based on legitimate interests.

To exercise any of these rights, email us at info@lifetap.uk. We'll respond within 30 days.

If you're not satisfied with how we handle your request, you have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk.

Contact

LifeTap Ltd
United Kingdom

Questions? Email info@lifetap.uk