Skip to main content

Privacy Policy

Last updated: February 2026

This privacy policy explains how Sproggo ("we", "us", "our") collects and uses your personal data when you use our website at sproggo.co.uk. We are committed to protecting your privacy and handling your data in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who We Are

Sproggo is the data controller for the personal data we collect through this website. This means we decide how and why your data is processed.

What Personal Data We Collect

When you sign up for our pre-launch mailing list, we collect the following:

  • Email address — so we can let you know when Sproggo launches
  • City preference — so we can tell you when we launch in your area
  • Signup type (parent or activity provider) — so we can send you the right information

When you sign up, we send a confirmation email to verify your address. Your signup is only completed once you click the confirmation link. We do not add unconfirmed email addresses to our mailing list.

We also collect standard technical data through our hosting provider (such as IP addresses and browser information in server logs). This is standard for any website and is used to keep the site running and secure.

Why We Process Your Data (Legal Basis)

Under UK GDPR, we need a lawful basis to process your personal data. Here is the basis for each purpose:

PurposeLegal basis
Sending you launch updates and marketing emailsConsent — you gave this when you signed up
Operating and securing the websiteLegitimate interest — we need to keep the site running and safe
Storing your city and signup type to personalise communicationsConsent — provided at signup

You can withdraw your consent at any time by emailing privacy@sproggo.co.uk or clicking the unsubscribe link in any email we send you. Withdrawing consent does not affect the lawfulness of processing that happened before you withdrew it.

How We Store Your Data

Your data is stored in a secure, encrypted database hosted in the EU/EEA. The connection to our database is encrypted in transit using TLS/SSL.

Your data may be processed in the EU/EEA, which is covered by a UK adequacy decision, meaning it is considered to provide an adequate level of data protection.

We take reasonable steps to protect your personal data from unauthorised access, loss, or misuse. However, no method of transmission or storage is 100% secure.

How Long We Keep Your Data

We keep your personal data until one of the following happens:

  • You ask us to delete it
  • 2 years pass since your last interaction with us (for example, signing up, opening an email, or updating your preferences)

After that, we will securely delete your personal data from our systems.

Who We Share Your Data With

We do not sell your personal data to anyone. We share it only with the following service providers who help us run the site:

ProviderPurposeLocation
VercelWebsite hostingGlobal (with EU regions)
ResendTransactional email delivery (confirmation emails)US/EU
GoogleAnalytics (only with your consent)Global
MetaAd measurement (only with your consent)Global

In the future, we may use additional service providers such as Stripe for payment processing. If we do, we will update this policy. These providers only process your data on our behalf and under our instructions.

Your Rights

Under UK GDPR, you have the following rights:

  • Right of access — you can ask for a copy of the personal data we hold about you
  • Right to rectification — you can ask us to correct any data that is wrong or incomplete
  • Right to erasure — you can ask us to delete your personal data
  • Right to restrict processing — you can ask us to limit how we use your data
  • Right to data portability — you can ask for your data in a structured, machine-readable format
  • Right to object — you can object to us processing your data, including for direct marketing
  • Right to withdraw consent — where we rely on your consent, you can withdraw it at any time

To exercise any of these rights, email us at privacy@sproggo.co.uk. We will respond within one month.

Making a Data Subject Access Request

If you want to know what personal data we hold about you, you can make a data subject access request (DSAR). Send your request to privacy@sproggo.co.uk. Please include enough information for us to verify your identity (for example, the email address you signed up with).

We will respond within one month of receiving your request. If your request is particularly complex, we may extend this by up to two further months, but we will let you know.

Right to Complain

If you are unhappy with how we have handled your personal data, you have the right to complain to the Information Commissioner's Office (ICO), the UK's data protection regulator.

We would appreciate the chance to address your concerns first, so please contact us at privacy@sproggo.co.uk before raising a complaint with the ICO.

Children's Privacy

Sproggo is a service for parents and activity providers. We do not knowingly collect personal data from anyone under the age of 16. Our signup form is intended for adults only.

If you believe a child under 16 has given us their personal data, please contact us at privacy@sproggo.co.uk and we will delete it promptly.

Changes to This Policy

We may update this privacy policy from time to time. If we make significant changes, we will let you know by email (if we have your email address) or by placing a notice on the website. The "Last updated" date at the top of this page shows when the policy was last changed.

Contact Us

If you have any questions about this privacy policy or how we handle your data, get in touch:

See also: Cookie Policy | Terms of Use