1. Who we are (Data Controller)
SOR7ED LIMITED
Company number: 16398701
Registered in England and Wales — London, United Kingdom
Email: hello@sor7ed.com
Website: sor7ed.com
SOR7ED LIMITED is the data controller for the personal data described in this policy.
2. What data we collect
We collect the following categories of personal data when you sign up or use the service:
| Service | Purpose |
|---|---|
| Name | To personalise your experience |
| Email address | Account access and service messages |
| Usage data | Improving the service |
We do not intentionally collect special category data (e.g. health data). If you include sensitive information in messages or form submissions, we use it only to respond to your request.
3. How we use your data
We use personal data to:
- ▸Provide account access, manage credits, and administer subscriptions
- ▸Deliver interactive tools and templates through our web platform
- ▸Send service messages (e.g. low credit alerts, payment confirmations)
- ▸Maintain and improve the performance, security, and reliability of our service
- ▸Comply with legal and regulatory obligations
- ▸Re-engage inactive members (you can opt out at any time)
We do not sell your data, share it with advertisers, or use it for automated decision-making that produces legal or significant effects.
4. Third-party processors
We use trusted service providers contractually required to process personal data only on our instructions:
| Service | Purpose |
|---|---|
| Supabase | Database and authentication |
| Stripe | Payment processing |
| Vercel | Website hosting |
| Notion | Internal data and content management |
5. International transfers
Some of our processors may store or process data outside the UK. When personal data is transferred internationally, we use appropriate safeguards such as UK adequacy regulations and/or the UK International Data Transfer Agreement.
6. Data retention
- ▸Active members: data retained for the duration of your membership
- ▸Inactive members: deleted after 2 years of inactivity unless you request earlier deletion
- ▸Payment records: retained for 7 years (UK tax obligations)
You can request deletion at any time, subject to legal obligations to retain certain records.
7. Security
We implement appropriate technical and organisational measures to protect personal data. No system is completely secure. If we become aware of a breach posing a risk to your rights and freedoms, we will notify the relevant authority within 72 hours.
8. Your rights
Under UK GDPR, you may have the right to:
- ▸Access the data we hold about you
- ▸Correct inaccurate data
- ▸Delete your data (right to erasure)
- ▸Restrict processing
- ▸Object to processing based on legitimate interests
- ▸Data portability (receive your data in a machine-readable format)
- ▸Withdraw consent at any time
To exercise your rights, email hello@sor7ed.com. We aim to respond within 30 days.
9. Complaints
If you are unhappy with how we handle your data, you can lodge a complaint with the ICO:
- ▸Website: ico.org.uk
- ▸Phone: 0303 123 1113
We would appreciate the chance to address concerns first — hello@sor7ed.com.
10. Changes to this policy
We may update this policy from time to time. We will notify active members of material changes by email.