Privacy Policy
Dentifier · Version 1.0 · Effective: Beta Version
1. Who We Are
| Trading name | Dentifier |
| Legal entity | Steven Tinkler, sole trader |
| Contact email | hello@dentifierpro.com |
| Website | dentifierpro.com |
| Supervisory authority | Information Commissioner’s Office (ICO) — ico.org.uk |
2. Our Data Protection Roles
We play different roles depending on whose data is involved:
Data Controller
When we collect data about you (the technician using the Service) — such as your name, email, and payment information — we are the data controller and are directly responsible to you under UK GDPR.
Data Processor
When you use the Service to store your customers’ data, we act as a data processor on your behalf. You remain the data controller for your customers’ data. Our obligations are set out in our Data Processing Agreement.
This means your customers’ rights requests should, in the first instance, be directed to you. We will assist you in responding as required by our Data Processing Agreement.
3. Data We Collect About You
We collect the following personal data about you when you use the Service:
| Category | Examples |
|---|---|
| Registration data | Name, email address, telephone number, business name |
| Payment information | Billing address, subscription tier. Note: we do not store card numbers — these are processed directly by Stripe, Inc. |
| Usage data | Features used, actions taken, session durations, Service performance data |
| Technical data | IP address, browser type, device type, operating system |
| Communications | Records of support requests sent to hello@dentifierpro.com |
We do not knowingly collect sensitive personal data (special category data) about you.
4. Data You Submit About Others
When you use the Service to create quotes and assessments, you may submit personal data about your customers. This may include:
- Customer names, email addresses, and telephone numbers
- Vehicle registration numbers
- Vehicle data retrieved from the DVLA API (make, model, year, MOT status)
- Photographs of vehicles (which may incidentally contain other personal data, such as visible number plates)
- Quote and invoice content
We process this data on your behalf as a data processor. You are responsible for ensuring you have a lawful basis under UK GDPR for collecting and submitting your customers’ data, and that your customers have been informed about how their data is used.
5. How We Use Your Personal Data
- To create and manage your Account and Subscription
- To provide, operate, and maintain the Service
- To process your payments and send billing communications
- To provide customer support
- To send important notices about the Service, including updates to our Terms or this Policy
- To monitor and improve the Service’s security and functionality
- To detect and prevent fraudulent or abusive use
- To comply with our legal and regulatory obligations
We do not use your personal data for unsolicited direct marketing, and we do not sell your personal data to third parties.
6. Legal Basis for Processing
Contract performance (Article 6(1)(b)): Most processing is necessary to provide the Service and fulfil our contractual obligations to you.
Legitimate interests (Article 6(1)(f)): We rely on legitimate interests for security monitoring, fraud prevention, and improving the Service. We have assessed that our interests are proportionate and do not override your rights.
Legal obligation (Article 6(1)(c)): We retain certain financial records as required by HMRC and other applicable laws.
For your customers’ data processed on your behalf: we rely on Article 6(1)(b) and our obligations as data processor under Article 28 UK GDPR.
7. International Data Transfers
The Service is hosted by Base44, Inc., a company based in the United States. When you use the Service, your personal data and your customers’ data are stored and processed on servers in the United States.
The United States is not subject to a UK adequacy decision. Transfers of personal data from the UK to our US-based service providers are made under appropriate safeguards in compliance with UK GDPR.
Base44’s Data Processing Agreement (available at base44.com/dpa) sets out the transfer mechanisms and sub-processor obligations applicable to their processing activities, including AI processing carried out by Anthropic, Inc. and OpenAI, Inc.
You can obtain further information about the transfer safeguards applicable to your data by contacting us at hello@dentifierpro.com.
8. Our Sub-Processors
We share personal data with the following sub-processors in order to provide the Service:
| Sub-Processor | Location | Purpose |
|---|---|---|
| Base44, Inc. | United States | Platform infrastructure, hosting, and application runtime |
| Anthropic, Inc. | United States | AI language model processing for damage assessment features |
| OpenAI, Inc. | United States | AI language model processing for damage assessment features |
| Stripe, Inc. | United States | Payment processing and subscription management |
| DVLA (data source) | United Kingdom | Vehicle data API — acts as a data source, not a processor on our behalf |
We will notify you of any material changes to our sub-processor list in accordance with our Data Processing Agreement.
9. How Long We Keep Your Data
| Data Type | Retention Period | Reason |
|---|---|---|
| Account and registration data | Active account + 30 days after deletion | Contract performance |
| Customer data you submit | Active account; deleted within 30 days of account termination | Processing on your behalf as controller |
| Payment and billing records | 7 years from transaction date | HMRC legal requirement |
| Application logs / IP addresses | 90 days | Security monitoring (legitimate interests) |
| Support correspondence | 3 years from last contact | Handling complaints or disputes |
10. Your Rights Under UK GDPR
You have the following rights regarding your personal data. To exercise any right, contact us at hello@dentifierpro.com. We will respond within one calendar month.
| Right | What it means |
|---|---|
| Access | Request a copy of the personal data we hold about you |
| Rectification | Ask us to correct inaccurate or incomplete data |
| Erasure | Request deletion of your data in certain circumstances |
| Restriction | Ask us to restrict processing in certain circumstances |
| Portability | Receive your data in a machine-readable format |
| Object | Object to processing based on legitimate interests |
| No automated decisions | Not be subject to decisions made solely by automated means |
You also have the right to complain to the ICO at ico.org.uk or on 0303 123 1113.
11. Cookies
The Service uses essential cookies required for it to function correctly, such as session authentication cookies. These are placed automatically and do not require your consent. We do not currently use non-essential cookies (such as advertising or analytics cookies) without your consent.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Where changes are material, we will notify you by email at least thirty (30) days before the changes take effect. The current version will always be available at dentifierpro.com/privacy.
13. Contact Us
| hello@dentifierpro.com | |
| Subject line | Data Protection Request |
| ICO (complaints) | ico.org.uk | 0303 123 1113 |