Privacy Policy
Privacy Policy
Last updated: May 2026 · UK GDPR compliant
This Privacy Policy explains how NE1 Electrical Ltd collects, uses, and protects your personal data when you use iZapp.app. We are the data controller and are committed to handling your data in accordance with the UK GDPR and the Data Protection Act 2018.
1. What data we collect Account data: name (optional), email address, password (bcrypt hash — never stored in plain text), account type, creation date.
Activity data: quiz scores, flashcard history, assignment submissions, progress, last login, IP address.
Content you upload: assignment evidence, photos, and documents submitted through the Service.
Billing data: payments are processed by Stripe. We store only your Stripe customer ID — card details are held by Stripe under their own privacy policy.
Technical data: browser type, device type, and usage patterns used to improve the Service.
2. How we use your data
Create and manage your account
Deliver course content, quizzes, flashcards, and learning tools
Allow lecturers to assign and mark work for subscribed students
Send notifications about assignments, feedback, and account activity
Process subscription payments
Improve and maintain the Service
Comply with legal obligations
3. Legal basis for processing
Contract — delivering the Service you signed up for. Legitimate interests — improving the Service and preventing fraud. Legal obligation — where required by law. Consent — for optional communications.
4. Who we share your data with
We do not sell your data. We share it only where necessary:
Your lecturer — if you subscribe via their invite code, they can see your name, email, submissions, and progress
IONOS (hosting) — data stored on UK/EU servers
Stripe (payments) — processes subscriptions
OpenAI (AI features) — prompts sent to OpenAI when you use AI tools within the app
Legal requirements — where required by law or court order
5. Data retention
We retain your data for as long as your account is active. On account deletion, personal data is removed within 30 days except where required for legal or accounting purposes (typically 7 years for financial records).
6. Your rights
Under UK GDPR you have the right to access, correct, delete, restrict, and port your data, and to object to processing. Email hello@izapp.app to exercise any right — we will respond within 30 days. You may also complain to the ICO at ico.org.uk.
7. Cookies
We use a single essential session cookie to keep you logged in. We do not use advertising or analytics cookies.
8. Children's data
The Service is available to users aged 13 and over. We do not knowingly collect data from children under 13. Users aged 13–17 should have parental consent. Contact hello@izapp.app to report an underage account.
9. Security
Passwords are bcrypt-hashed. Sessions use secure HTTP-only cookies. All data is transmitted over HTTPS. If you discover a vulnerability, please report it to hello@izapp.app.
10. Contact
NE1 Electrical Ltd · 20 Hartside, Newcastle Upon Tyne, NE15 8BY · hello@izapp.app
This Privacy Policy explains how NE1 Electrical Ltd collects, uses, and protects your personal data when you use iZapp.app. We are the data controller and are committed to handling your data in accordance with the UK GDPR and the Data Protection Act 2018.
1. What data we collect Account data: name (optional), email address, password (bcrypt hash — never stored in plain text), account type, creation date.
Activity data: quiz scores, flashcard history, assignment submissions, progress, last login, IP address.
Content you upload: assignment evidence, photos, and documents submitted through the Service.
Billing data: payments are processed by Stripe. We store only your Stripe customer ID — card details are held by Stripe under their own privacy policy.
Technical data: browser type, device type, and usage patterns used to improve the Service.
2. How we use your data
3. Legal basis for processing
4. Who we share your data with
5. Data retention
6. Your rights
7. Cookies
8. Children's data
9. Security
10. Contact