BRIGHTCHECKER PRIVACY POLICY

Effective Date: 16 June 2026

This Privacy Policy explains how Housecheckr Services Limited (Company Number 11554446), trading as Brightchecker (“Brightchecker”, “we”, “us”, “our”), collects, uses, and protects personal data when you use our Services.

1. Data Controller

Brightchecker is the data controller responsible for your personal data.

If you have any questions about this Privacy Policy, you may contact us using the details provided at the end of this document.

2. Scope

This Privacy Policy applies to:

    • our website;
    • our web and mobile applications;
    • the Brightchecker Platform and Services;
    • all related communications and support interactions.

Our Services are intended exclusively for business users. We do not knowingly provide Services to consumers acting in a personal, domestic, or household capacity.

3. Information We Collect

We may collect and process the following categories of personal data:

3.1 Account Data
    • name
    • email address
    • telephone number
    • organisation or business details
3.2 Transaction and Payment Data
    • payment and billing information (processed via third-party providers)
    • subscription and transaction history
3.3 User Content and Property Data
    • property-related information entered into the Platform
    • reports, notes, and structured data
    • photographs, video, and audio files
    • AI-generated and user-generated content
3.4 Technical Data
    • IP address
    • device and browser information
    • usage logs
    • analytics and performance data
3.5 Communication Data
    • customer support requests
    • correspondence with Brightchecker

4. How We Use Your Data

We process personal data for the following purposes:

4.1 Service Delivery
    • providing and operating the Platform
    • generating Reports and outputs
    • enabling AI Features
    • managing user accounts
4.2 Contract Performance
    • fulfilling our obligations under the Terms
    • delivering requested Services
4.3 Platform Operation and Improvement
    • debugging and system maintenance
    • improving performance and functionality
    • developing new features
4.4 Security and Fraud Prevention
    • preventing unauthorised access
    • detecting misuse or abuse
4.5 Legal Compliance
    • compliance with applicable laws
    • responding to lawful requests
4.6 Marketing (optional)
    • where permitted, sending marketing communications
    • users may opt out at any time

5. AI Processing

The Platform includes AI Features that process User Data to generate outputs such as reports, summaries, templates, and structured content.

You acknowledge that:

    • AI processing is automated and probabilistic in nature;
    • outputs may be inaccurate, incomplete, or misleading;
    • AI outputs are provided for assistive purposes only;
    • we do not guarantee the accuracy or reliability of AI-generated content.

Personal data may be processed using third-party AI infrastructure providers as part of service delivery.

6. Legal Basis for Processing (UK GDPR)

We process personal data under the following lawful bases:

    • Contract – to provide the Services you have requested
    • Legitimate Interests – to operate, improve, and secure the Platform
    • Legal Obligation – where required by law
    • Consent – for marketing communications (where applicable)

7. Sharing Your Data

We may share personal data with trusted third-party service providers where necessary to operate the Services, including:

    • cloud hosting and infrastructure providers
    • AI processing providers
    • payment processors
    • analytics and monitoring services
    • communication service providers

These providers may process data in the United Kingdom, European Union, United States, and other jurisdictions.

We do not sell personal data.

8. International Data Transfers

Your personal data may be transferred to and processed in countries outside the United Kingdom, including the United States and European Union.

Where such transfers occur, we implement appropriate safeguards in accordance with applicable data protection laws.

9. Data Retention

We retain personal data, including User Data and media (photographs, video, and related content), for up to approximately two (2) years from the date of upload or creation.

Retention periods are operational targets only and are not guaranteed.

Data may be deleted, anonymised, aggregated, or become inaccessible earlier or later where reasonably necessary for operational, technical, security, legal, dispute resolution, fraud prevention, or business continuity reasons, including in the event of insolvency or business cessation.

10. Media and Content Storage

Photographs, videos, and other media uploaded to the Platform may be:

    • stored in compressed or optimised formats
    • processed for performance and storage efficiency
    • included in generated Reports

Reports may include thumbnails or derived representations of media.

Where Reports contain links to media, those links may become inactive over time in line with retention limits.

We do not guarantee permanent availability of media or linked content.

11. Data Security

We implement appropriate technical and organisational measures to protect personal data against:

    • unauthorised access
    • loss
    • alteration
    • disclosure
    • destruction

However, no system can be guaranteed as completely secure.

12. Your Data Protection Rights

You have the following rights under UK GDPR:

    • right of access
    • right to rectification
    • right to erasure
    • right to restrict processing
    • right to data portability
    • right to object to processing
    • right to withdraw consent (where applicable)

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO).

13. Cookies

We use cookies and similar technologies to:

    • operate the Platform
    • analyse usage
    • improve performance

You can control cookies through your browser settings. Some features may not function if cookies are disabled.

14. Third-Party Services and Infrastructure

We use third-party service providers to operate the Platform, including cloud hosting, AI systems, analytics, payment processing, and internal development tools.

These include development, hosting, AI, and infrastructure platforms used solely for the operation and delivery of the Services.

All third-party providers are subject to contractual and technical safeguards and do not obtain independent rights to use your data.

15. Automated Decision-Making

We do not carry out solely automated decision-making that produces legal or similarly significant effects on individuals.

AI Features are assistive only and require user oversight.

16. Data Accuracy

You are responsible for ensuring that all personal data you provide is accurate and up to date.

We do not independently verify User Data.

17. Business Users Only

Our Services are intended exclusively for business users.

We do not knowingly collect or process personal data from consumers using the Services for personal, domestic, or household purposes.

18. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

Any updates will be posted on this page with a revised effective date.

19. Contact Us

If you have any questions about this Privacy Policy or your personal data, you can contact:

Data Protection Contact
Housecheckr Services Limited (trading as Brightchecker)
The Enterprise Centre
University of East Anglia
University Drive
Norwich NR4 7TJ
United Kingdom