Jobello
Draft — not legal advice. This notice is a template; have a UK solicitor or DPO review before launch, and replace every [PLACEHOLDER].
Privacy Policy
Last updated: [DATE] · Effective: [DATE]
1. Who we are
This privacy notice applies to the Jobello website, mobile apps, and related services (together, the "Service"), operated by [LEGAL COMPANY NAME], a company registered in England & Wales (company number [COMPANY NUMBER]) with its registered office at [REGISTERED ADDRESS] ("we", "us", "our").
For the purposes of the UK General Data Protection Regulation ("UK GDPR") and the Data Protection Act 2018, we are the data controller of the personal data we collect about you through the Service.
If you have any questions about this notice or your personal data, contact us at privacy@jobello.co.uk.
2. What data we collect
2.1 Data you provide directly
- Waitlist signup: name, email address, city, whether you are a customer or tradesperson, and (for tradespeople) the trades you cover and how you currently find work.
- Account: name, email, phone number, role (customer or contractor), profile photo, and for contractors — skillsets, service radius, and business details.
- Projects (customers): project description, photos, address, budget, and preferred completion date.
- Quotes & messages (contractors): price, duration, notes, and any progress updates or photos you post.
- Ratings & reviews: star rating and free-text feedback after a project completes.
2.2 Data collected automatically
- Device & usage data: device model, OS version, app version, IP address, approximate location (from IP or, with permission, GPS), and in-app events for debugging and product analytics.
- Cookies & similar technologies on the website — see Section 8.
2.3 Data from third parties
- Firebase Authentication (Google) — when you sign in via Apple or Google, we receive your email and name from the identity provider.
- Geocoding / mapping providers — to convert addresses you enter into coordinates for matching.
3. How and why we use your data
We only use your personal data where we have a lawful basis to do so under UK GDPR Article 6.
- To provide the Service (Art. 6(1)(b) — performance of a contract): creating your account, matching projects to contractors, delivering quotes, processing ratings.
- To send you transactional notifications (Art. 6(1)(b) / (f)): quote received, quote accepted, project updates, completion reminders — by email and push.
- To send waitlist and marketing emails (Art. 6(1)(a) — consent): you can unsubscribe at any time.
- To protect the Service (Art. 6(1)(f) — legitimate interests): fraud prevention, rate limiting, moderation.
- To comply with legal obligations (Art. 6(1)(c)): tax, accounting, and responding to lawful requests.
4. Who we share data with
We do not sell your personal data. We share it only with:
- Other Jobello users — customers and contractors can see each other's name, profile photo, city, and the content of projects / quotes / messages that relate to them. Your full address is only visible to a contractor after you accept their quote.
- Sub-processors acting on our behalf, including:
- Google Firebase (authentication, database, storage, push notifications, hosting) — processed in the EU/UK where possible.
- SendGrid / Twilio (transactional and marketing email).
- Google Analytics 4 (Google Ireland Ltd) — anonymised website usage statistics. Data is processed in the EU/UK; onward transfers to Google LLC (US) are covered by the UK International Data Transfer Addendum and EU Standard Contractual Clauses.
- Authorities or advisers, where required by law or to protect our rights.
5. International transfers
Some of our sub-processors (e.g. Google) are headquartered in the United States. Where data is transferred outside the UK, we rely on the UK International Data Transfer Addendum, EU Standard Contractual Clauses, or an adequacy decision, and we apply additional safeguards where required.
6. How long we keep your data
- Waitlist: until you unsubscribe or we launch in your area, plus 24 months.
- Active accounts: for as long as your account is active.
- Closed accounts: up to [X] months after closure for dispute handling and legal obligations, then deleted or anonymised.
- Transaction and tax records: 6 years, as required by HMRC.
7. Your rights
Under UK GDPR you have the right to:
- access a copy of your personal data;
- correct data that is inaccurate or incomplete;
- ask us to delete your data ("right to erasure");
- restrict or object to processing;
- request your data in a portable format;
- withdraw consent at any time (without affecting lawful processing up to that point);
- complain to the Information Commissioner's Office (ico.org.uk).
To exercise any of these rights, email privacy@jobello.co.uk. We'll respond within one month.
8. Cookies
Our website uses strictly necessary cookies and, with your consent, a Google Analytics cookie (_ga / _ga_*) that helps us understand how visitors use the site. IP addresses are anonymised before storage. You can change your choice at any time via cookie settings. Our apps use equivalent device identifiers for the same purposes.
9. Children
The Service is not directed at anyone under 18. We do not knowingly collect personal data from under-18s; if you believe we have, email us and we'll delete it.
10. Security
We use encryption in transit (TLS 1.2+) and at rest, authenticated access, role-based permissions, and logging. No system is perfectly secure — if you spot a vulnerability, report it to security@jobello.co.uk.
11. Changes to this notice
We'll post any changes on this page and, for material changes, email you or show an in-app notice before they take effect.
← Back to homepage