← Closerr

Privacy Policy

Last updated: 18 April 2026

This Privacy Policy explains how Closerr ("we", "us", "our") collects, uses, stores and protects your personal data when you use the Closerr mobile and web application available at closerr.co.uk and via the Apple App Store (the "Service").

We are the data controller for the personal data we hold about you. Closerr operates in the United Kingdom and complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who we are

Closerr is a customer relationship management application designed for UK payment consultants, field sales representatives and commercial teams. If you have any questions about this policy or your personal data, contact us at support@closerr.co.uk.

2. Data we collect

We collect the following categories of personal data:

Account information

Name, username, email address, password (hashed)
Profile photo (optional)
Phone number (optional)
Organisation, role and team membership

Data you enter into the Service

Lead, deal, merchant and contact records you create (including names, business names, phone numbers, email addresses, addresses and notes)
Tasks, calendar events, call logs, messages and uploaded documents
Photos and files you attach to records
Survey responses, quotes and pricing data

Usage and device data

Device type, operating system version, app version
IP address and approximate location (derived from IP)
Login timestamps, feature usage and crash diagnostics
Notification tokens (so we can send you push notifications)

Optional location data

If you grant location permission, we use your device's GPS to tag visit locations and show nearby leads on the map. Location data is only collected when you actively use these features. You can revoke this permission at any time in your device settings.

Optional camera and photo data

If you grant camera or photo library permission, we use these only to let you attach photos to records or scan business cards. We do not access your camera or library otherwise.

3. How we use your data

Purpose	Lawful basis (UK GDPR)
Providing the CRM service to you and your organisation	Contract
Authenticating you and securing your account	Contract / Legitimate interest
Sending transactional emails (password resets, invitations, receipts)	Contract
Processing subscription payments	Contract
Improving the product, fixing bugs, monitoring abuse	Legitimate interest
Sending product updates or marketing emails	Consent (you can opt out at any time)
Complying with legal obligations	Legal obligation

4. Third parties we share data with

We use the following processors. Each is bound by a data processing agreement and only processes your data on our instructions.

Provider	Purpose	Data shared
Stripe	Payment processing	Name, email, billing address, card token (we never see your card number)
RevenueCat	In-app subscription management	Subscription identifier, user ID
Resend	Transactional email delivery	Email address, name, message content
OpenAI	AI-powered features (summaries, suggestions)	Only the specific text you submit to an AI feature; never your full database
Google (Sign in, Maps)	Authentication and map display	Email, name, profile photo (sign in); coarse location (maps)
Apple (Sign in with Apple)	Authentication	Apple ID, email (or relay address), name
Replit	Application hosting and database	All Service data (encrypted in transit and at rest)

We do not sell your personal data. We do not share your data with advertisers.

5. International transfers

Some of our processors (notably Stripe, OpenAI and Google) are based in the United States. Where data is transferred outside the UK or EEA, we rely on the UK International Data Transfer Addendum, EU Standard Contractual Clauses, or an adequacy decision, ensuring your data receives equivalent protection.

6. How long we keep your data

Account data — for as long as your account is active. When you delete your account in-app, your personal data is removed immediately.
CRM records — for as long as your organisation's account is active. When the organisation is closed, data is deleted within 90 days.
Billing records — retained for 7 years to comply with HMRC requirements.
Diagnostic logs — retained for 30 days, then automatically purged.

7. Your rights

Under UK GDPR you have the right to:

Access — request a copy of the personal data we hold about you
Rectification — ask us to correct inaccurate data
Erasure — ask us to delete your data ("right to be forgotten")
Restriction — limit how we use your data
Portability — receive your data in a machine-readable format
Object — object to processing based on legitimate interest
Withdraw consent — at any time, where processing is based on consent

To exercise any of these rights, email support@closerr.co.uk. We will respond within 30 days.

Account deletion. You can delete your account and all associated personal data at any time from inside the app: go to the More tab and tap Delete account at the bottom. Deletion is immediate and permanent.

8. Security

We protect your data using industry-standard security measures including TLS encryption in transit, encryption at rest, hashed passwords, role-based access controls, and regular security audits. No system is perfectly secure — if we become aware of a breach affecting your data we will notify you and the Information Commissioner's Office (ICO) as required by law.

9. Children

The Service is not intended for, and not directed to, anyone under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will delete it.

10. Cookies and similar technologies

The web version of the Service uses essential cookies to keep you logged in and remember your preferences. We do not use advertising or tracking cookies. The mobile app uses local storage (AsyncStorage and SecureStore) to keep you signed in and cache offline data.

11. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the latest version. If we make material changes we will notify you in-app or by email before the changes take effect.

12. Complaints

If you believe we have mishandled your personal data, you have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113. We would, however, appreciate the chance to address your concerns first — please contact us at support@closerr.co.uk.