Last updated: [DATE]
This Privacy Policy explains how [COMPANY LEGAL NAME] ("we", "us", "our"), which operates FutureDay ("the Service"), collects, uses and protects your personal data. By using the Service you agree to this policy.
The data controller is [COMPANY LEGAL NAME], [REGISTERED ADDRESS][, COMPANY NUMBER]. For any privacy questions, contact us at [PRIVACY EMAIL].
[If you have appointed a Data Protection Officer, name them and give contact details here. Delete if not applicable.]
We collect the following categories of personal data:
[State whether AI features send user content to a third-party AI provider (e.g. Anthropic) and link to their terms. Be specific — this matters for transparency.]
We rely on the following lawful bases: performance of a contract (to deliver the Service), legitimate interests (to improve and secure the Service), consent (for optional cookies and marketing), and legal obligation (e.g. tax records). [Adjust to match your actual processing.]
We do not sell your personal data. We share it only with service providers who help us run the Service, under contract. These include:
| Processor | Purpose | Location |
|---|---|---|
| [Hosting provider] | Hosting & infrastructure | [Region] |
| [Auth provider] | Authentication / sign-in | [Region] |
| [Payment processor] | Billing | [Region] |
| [AI provider] | AI features | [Region] |
| [Analytics / email tool] | Analytics & comms | [Region] |
We use cookies and similar technologies as described in our Cookie Policy.
We keep your personal data for as long as your account is active, and afterwards only as long as needed for the purposes set out here or to meet legal obligations. [State your retention periods, e.g. account data deleted X days after closure.]
Where we transfer data outside the UK/EEA, we rely on appropriate safeguards such as Standard Contractual Clauses or an adequacy decision. [Confirm and list, based on your processors above.]
We use appropriate technical and organisational measures to protect your data, including [encryption in transit, hashed passwords, access controls, etc.]. No method of transmission or storage is 100% secure.
Under UK/EU GDPR you have the right to access, rectify, erase, restrict or object to processing, and to data portability. You can withdraw consent at any time and lodge a complaint with the [ICO / your supervisory authority]. To exercise any right, contact [PRIVACY EMAIL].
The Service is not directed to children under [16 / applicable age] and we do not knowingly collect their data.
We may update this policy from time to time. We will post the new version here and update the "Last updated" date. [State how you notify users of material changes.]
[COMPANY LEGAL NAME]
[REGISTERED ADDRESS]
Email: [PRIVACY EMAIL]