Agile Cookies
See all apps

Privacy policy

Effective 1 April 2026

This privacy policy explains how Agile Cookies Ltd ("we", "us", "our") collects, uses, discloses and protects your personal data when you use our websites, mobile applications and related services (the "Services"). It applies to all apps published by Agile Cookies Ltd unless a specific app provides its own dedicated privacy policy.

1. Who we are

Agile Cookies Ltd is a private limited company registered in England and Wales, based in London, United Kingdom. For any privacy enquiries you can contact us at privacy@agilecookies.com.

For the purposes of the UK GDPR and the Data Protection Act 2018, we are the data controller of personal data we collect through our Services.

2. What data we collect

We may collect the following categories of personal data:

  • Account data — email address, display name and authentication identifiers when you create an account.
  • Usage data — anonymous events about how you use our apps, app version, device type, operating system version, language and approximate region.
  • Subscription data — purchase receipts, subscription status and entitlements (handled by RevenueCat and the relevant app store).
  • Content you create — entries, lists, drafts or other content you save inside our apps. Where possible this is stored on your device and only synced to our servers when you opt in.
  • Diagnostics — crash logs, performance metrics and error traces used to keep our apps stable.

We never collect special-category data (such as biometric, health or political data) unless an individual app explicitly states this and you actively choose to provide it.

3. How we use your data

  • To operate, maintain and improve the Services.
  • To authenticate users and protect against abuse.
  • To provide customer support and respond to enquiries.
  • To process subscriptions and prevent fraudulent purchases.
  • To understand how features are used (in aggregate, anonymised form).
  • To meet our legal, regulatory and tax obligations.

4. Lawful bases

We rely on the following lawful bases under UK GDPR Article 6: contract (to provide the Services you have requested), legitimate interests (to improve and secure our Services), consent (for optional analytics, marketing or notifications) and legal obligation (for tax and compliance records).

5. Third-party services

We use a small number of carefully chosen processors. Each is contractually bound to handle your data only on our instructions:

  • Apple App Store / Google Play — for distribution and in-app purchases.
  • RevenueCat — for managing subscription receipts and entitlements.
  • Firebase (Google) — for analytics, crash reporting, push notifications and (where applicable) authentication.
  • Cloudflare / Netlify — for hosting and content delivery of our marketing site.
  • Email providers — for transactional emails such as OTP codes, receipts and customer support.

6. International transfers

Some of our processors are located outside the UK, primarily in the United States and the European Economic Area. Where personal data is transferred outside the UK, we rely on adequacy decisions, the UK International Data Transfer Addendum or Standard Contractual Clauses.

7. Data retention

We keep personal data for as long as your account is active and for a limited period afterwards as required for legal, accounting or operational reasons. You can request deletion of your account at any time by emailing privacy@agilecookies.com.

8. Your rights

Under UK GDPR you have the right to access, rectify, erase, restrict or object to the processing of your personal data, and the right to data portability. You can exercise these rights by emailing us at privacy@agilecookies.com. You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

9. Children

Our Services are not directed at children under 13 and we do not knowingly collect personal data from children under 13. If you believe a child has provided us personal data, please contact us and we will delete it.

10. Security

We use industry-standard technical and organisational measures to protect your data, including encryption in transit, scoped access controls and regular review of our processors. No system is perfectly secure, so we cannot guarantee absolute security.

11. Changes to this policy

We may update this policy from time to time. When we make material changes we will update the effective date above and, where appropriate, notify you via the app or by email.

12. Contact

Privacy enquiries: privacy@agilecookies.com
General enquiries: hi@agilecookies.com
Postal address: Agile Cookies Ltd, London, United Kingdom.