Privacy Policy

Last updated: 27 March 2026

Who we are

Grocode Ltd (company number 17109978) is the data controller for the personal data processed through our website (grocode.net) and our applications, including Waitez and Eleven.

You can contact us at contact@grocode.net.

What data we collect

We may collect the following personal data:

• Account information: email address and display name when you create an account in one of our apps
• Usage data: app usage patterns, feature interactions, and performance data to improve our products
• Device information: device type, operating system, and app version for compatibility and debugging
• Payment information: processed securely by our payment providers (Apple App Store, Google Play Store). We do not store card details.

How we use your data

We use your personal data to:

• Provide and maintain our services
• Process your subscription and payments
• Sync your data across devices (where applicable)
• Improve and develop our products
• Send service-related communications

Legal basis for processing

We process your data on the following legal bases under UK GDPR:

• Contract: to provide the services you've signed up for
• Legitimate interests: to improve our products and maintain security
• Consent: for optional analytics and marketing communications

Data storage and security

Your data is stored securely using industry-standard encryption. We use Supabase (hosted in the EU) for cloud storage and authentication. Local data on your device is stored using on-device databases.

Data retention

We retain your data for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where we are required to retain it by law.

Your rights

Under UK GDPR, you have the right to:

• Access the personal data we hold about you
• Rectify inaccurate data
• Erase your data (right to be forgotten)
• Restrict or object to processing
• Data portability — receive your data in a structured format
• Withdraw consent at any time

To exercise any of these rights, contact us at contact@grocode.net.

Children's data

Our Eleven app is designed for use by children aged 7–11 under parental supervision. We comply with the UK Age Appropriate Design Code (Children's Code). We do not serve advertising to children, do not use their data for profiling, and collect only the minimum data necessary to provide the service. Parental consent is required for account creation.

Third-party services

We use the following third-party services that may process your data:

• Supabase: authentication and cloud storage (EU-hosted)
• RevenueCat: subscription management
• Apple / Google: app distribution and payment processing

Cookies

Our website uses only essential cookies required for the site to function. We do not use tracking cookies or third-party advertising cookies.

Changes to this policy

We may update this privacy policy from time to time. We will notify you of significant changes through our apps or by email.

Complaints

If you are unhappy with how we handle your data, you have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk.