Dignity Labs — Base Privacy Policy
This is the base privacy policy for all Dignity Labs apps. Each app has its own privacy addendum that details what data that specific app collects and how it is handled.
Suracode App Privacy Addendum · Suracode Web Privacy Addendum · Pocket Proof Privacy Addendum
Dignity Labs Ltd
Company Number: 16954194
Registered in England and Wales
Email: [email protected]
Website: https://dignitylabs.co.uk
For data protection enquiries, contact us at the email address above.
These principles apply across all Dignity Labs apps:
Each Dignity Labs app collects different data depending on what it does. The specific data collected by each app is detailed in the relevant privacy addendum.
| App | Privacy Addendum | Data Model |
|---|---|---|
| Suracode | Suracode App Privacy Addendum | Cloud-synced with Supabase. Anonymous UUIDs. End-to-end encrypted content. Authentication via Google/Apple Sign-In. |
| Suracode Web | Suracode Web Privacy Addendum | Browser-based scam checker. Free tier: zero data transmitted. Pro tier: PII-redacted text to Anthropic API, user-approved items to threat intelligence services, via Supabase Edge Functions. Optional web accounts with Supabase Auth and Stripe payments. |
| Pocket Proof | Pocket Proof Privacy Addendum | 100% local. No accounts. No cloud. All data on your device only. RevenueCat SDK validates subscriptions. |
Across all apps, we use information for the following purposes and legal bases:
| Purpose | Legal Basis (UK GDPR) |
|---|---|
| Provide the core service | Performance of contract (Article 6(1)(b)) |
| Maintain and improve our Apps | Legitimate interests (Article 6(1)(f)) |
| Provide customer support | Legitimate interests (Article 6(1)(f)) |
| Ensure security and prevent abuse | Legitimate interests (Article 6(1)(f)) |
| Comply with legal obligations | Legal obligation (Article 6(1)(c)) |
App-specific purposes are set out in the relevant privacy addendum.
We do not use your data for advertising, profiling, automated decision-making that produces legal effects, selling to third parties, or training AI models.
We share data only as necessary to operate each app. Where an app uses third-party services, these are listed in the relevant privacy addendum.
We do NOT share data with advertisers, data brokers, marketing companies, social media platforms, or AI training providers.
We may disclose information if required by law, court order, or government request. Where an app collects no personal data or uses end-to-end encryption, the practical value of such disclosure may be limited. We will notify you of such requests unless legally prohibited.
We take security seriously across all apps. Common security measures include:
App-specific security measures are detailed in the relevant privacy addendum.
If a personal data breach occurs that is likely to affect your rights and freedoms, we will notify the Information Commissioner's Office within 72 hours and, where the risk is high, notify affected users without undue delay, in accordance with UK GDPR Articles 33 and 34.
Where an app stores no personal data on our servers (such as Pocket Proof), a server-side breach would not affect your app data.
Under the UK GDPR, you have the following rights. These apply regardless of which Dignity Labs app you use:
You can request a copy of all data we hold about you. Contact us at [email protected].
You can request correction of inaccurate data we hold about you.
You can request deletion of your data. App-specific deletion methods are set out in each privacy addendum.
You can request we limit how we use your data in certain circumstances.
You can request your data in a machine-readable format.
You can object to processing based on legitimate interests.
Where we rely on consent, you can withdraw it at any time.
You have the right to complain to the Information Commissioner's Office (ICO):
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days. We may need to verify your identity before processing your request.
Our Apps are not directed at children under 13. Some apps (such as Suracode) use anonymous UUIDs and authentication via Google or Apple Sign-In — see the relevant app addendum for details. Pocket Proof collects no personal information and has no accounts.
If a child under 13 has used a Google or Apple account to sign in to any Dignity Labs app, we will delete their authentication record upon request. Contact us at [email protected].
Where an app uses cloud services, data is processed and stored within the European Economic Area (EEA). Specific hosting details are provided in each app's privacy addendum.
Authentication services (Google Sign-In, Apple Sign-In) and subscription management (RevenueCat) may process data in the United States using approved data transfer safeguards (standard contractual clauses) maintained by those providers.
Our Apps do not use cookies or tracking pixels. We do not use analytics services. We do not track your behaviour across other apps or websites.
Our website (dignitylabs.co.uk) uses only cookies necessary for site functionality. We do not use advertising or tracking cookies on our website.
We retain your data for as long as you have an active account or as necessary to provide the service. When you delete your account, we will delete your application data within 30 days, subject to any legal obligations that require us to retain certain records for longer.
If you contact us by email, we retain that correspondence for up to 2 years from the date of last contact.
Your rights are set out in Section 7. The Information Commissioner's Office (ICO) is your supervisory authority.
Your rights under the EU GDPR are equivalent to those in Section 7. You may also lodge a complaint with your local Data Protection Authority. In accordance with the Digital Services Act (Regulation (EU) 2022/2065), Dignity Labs Ltd does not engage in targeted advertising, does not deploy recommender systems, and does not process personal data for profiling purposes. You have a 14-day right to withdraw from any paid subscription. You may use the EU Online Dispute Resolution platform: ec.europa.eu/consumers/odr.
Residents of California (CCPA/CPRA), Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), and any other US state with applicable consumer privacy legislation have the right to know what personal information we collect, request deletion, and opt out of sale of personal information. We do not sell personal information. We do not share personal information for cross-context behavioural advertising. To exercise any US state privacy right, contact [email protected]. We will respond within 45 days.
Your rights are protected under the Australian Privacy Principles (APPs) under the Privacy Act 1988. You may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
Your rights are protected under PIPEDA and applicable provincial privacy legislation. You have the right to access, correct, and request deletion of your personal information. You may lodge a complaint with the Office of the Privacy Commissioner of Canada at priv.gc.ca.
We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date. For significant changes, we will notify you via the relevant App. Continued use after changes constitutes acceptance.
Dignity Labs Ltd
Company Number: 16954194
Registered in England and Wales
[email protected]
We aim to respond to all enquiries within 30 days.