2634450_ensign_flag_kingdom_nation_icon 020 7729 3260  
2634316_ensign_flag_ireland_nation_icon (1) (+ 353) 1 592 0850
See the software
See the software
Solutions

By industry

By organisation

By business need

By current software

Age Scotland cover

Age Scotland’s move to iplicit was justified ‘within a couple of months’ after big time savings

Case study
See the software
Partners
Partner login
About iplicit
About Iplicit
Resources
Solutions
Contact
Contact

Effective as of 05/08/2025

1. Introduction

Welcome to iplicit. Your privacy is critically important to us. This Privacy Policy explains how iplicit Limited ("we", "us", "our") collects, uses, stores, and shares your personal data. It also explains your rights in relation to your personal data and how to exercise them. 

We are committed to protecting your information and being transparent about the data we hold and what we do with it. This policy has been written to be clear and accessible. We are dedicated to complying with our obligations under the UK General Data Protection Regulation (UK GDPR) and the Google API Services User Data Policy. 

2. Who we are (the data controller)

For the purposes of the UK GDPR, the data controller is: 

  • iplicit Limited 
  • Company Number: 07194134 
  • Registered Address: 124 City Road, London, England, EC1V 2NX 

iplicit Limited determines the purposes and means of processing your personal data. 

3. Our Data Protection Officer 

We have appointed a Data Protection Officer (DPO) to oversee our compliance with data protection law. If you have any questions about this privacy policy or wish to exercise your legal rights, please contact our DPO: 

  • Email: datacompliance@iplicit.com 
  • Postal Address: 124 City Road, London, England, EC1V 2NX 

4. The personal data we collect 

We collect and process various types of personal data to provide and improve our services. We have grouped this data into the following categories: 

  • Identity Data: Includes first name, last name, username, or similar identifier. 
  • Contact Data: Includes billing address, email address, and telephone numbers. 
  • Financial Data: Includes bank account and payment card details, which are processed securely by our payment partners. 
  • Transaction Data: Includes details about payments and the products and services you have purchased from us. 
  • Technical Data: Includes your Internet Protocol (IP) address, login data, browser type and version, time zone setting, and device information when you use our website. 
  • Profile Data: Includes your username and password, purchase history, preferences, and feedback. 
  • Usage Data: Includes information about how you use our website, products, and services. 
  • Marketing and Communications Data: Includes your preferences for receiving marketing from us. 
  • Google User Data: If you choose to connect your Google Account, we will access specific data from Google APIs as detailed in Section 6 of this policy.
 

5. How we use your data and our lawful basis for processing 

We will only use your personal data when the law allows us to. The table below details our processing activities, the data categories used, and the lawful basis we rely on for each activity. 

Processing Activity/Feature 

Personal Data Categories Processed 

Purpose of Processing 

Lawful Basis (UK GDPR) 

User Account Registration & Management 

Identity Data, Contact Data, Profile Data 

To create, secure, and manage your user account and provide our core services. 

Performance of a Contract 

Processing Customer Subscriptions 

Identity Data, Contact Data, Financial Data, Transaction Data 

To process payments for your subscription to the iplicit service. 

Performance of a Contract 

Website & Service Analytics 

Technical Data, Usage Data 

To measure website traffic, monitor service performance, and improve user experience. 

Legitimate Interest (to improve and secure our service) 

Marketing Communications 

Identity Data, Contact Data, Marketing and Communications Data 

To send you information about our products, services, and offers that may interest you. 

Consent 

Sending Invoices via Gmail Integration 

Google User Data (Recipient email address, email subject/body, invoice attachment), Identity Data 

To enable you to send financial documents to your contacts directly from the iplicit platform using your own Google account credentials. 

Consent 

Responding to Support Queries 

Identity Data, Contact Data, and any data you voluntarily provide. 

To provide you with technical support and resolve issues with your account or our service. 

Performance of a Contract 

 

6. Integration with Google Services & adherence to Google API Services User Data Policy 

To enhance your productivity, iplicit offers features that allow you to connect your Google Account. 

iplicit's use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. 

Here’s what this means for you in practice: 

  • Purpose limitation: When you connect a Google service, we will only access and use your Google user data to provide the specific, prominent, user-facing features described to you at the time of connection. We will not use this data for any other purpose. 
  • Sending emails via the Gmail API: If you connect your Gmail account, our application will request permission to use the Gmail API solely to send emails on your behalf (e.g., sending an invoice you created in iplicit). To do this, our application accesses the recipient's email address, the subject line, the body content, and any attachments you include. 
  • No data storage: iplicit does not store a copy of the emails you send via this integration. The data is transmitted securely to the Gmail API, and the sent email will be visible only within your own Google Account's 'Sent Items' folder. 
  • No advertising or data sale: We will never use any data obtained from your Google Account for advertising purposes, nor will we sell this data. 
  • Limited data transfer: We will not transfer your Google user data to any other third party, except where necessary for security purposes, to comply with applicable law, or as part of a merger or sale of assets, for which we would seek your explicit prior consent. 
  • No human reading: iplicit personnel are forbidden from reading your Google user data (including email content). The only exceptions are when: 
    • We have your explicit, affirmative consent for specific messages (e.g., to resolve a support issue you have reported). 
    • It is necessary for security purposes (e.g., investigating abuse). 
    • It is necessary to comply with applicable law. 
    • The data is aggregated and fully anonymised for internal operations (e.g., calculating service usage metrics). 

7. Sharing your information 

We do not sell your personal data. We may share your data with trusted third-party service providers (known as 'data processors') who help us deliver our services. These include: 

  • Cloud hosting providers: Such as Microsoft Azure, who host our application and data securely. 
  • Payment processors: To securely handle credit card payments. 
  • Analytics and CRM providers: To help us understand service usage and manage customer relationships. 
  • API service providers: Such as Google LLC, when you choose to integrate your account with their services. 

8. International data transfers 

Some of our external third parties are based outside the United Kingdom (UK), so their processing of your personal data will involve a transfer of data outside the UK. 

Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it by using specific contracts or safeguards approved by UK authorities, such as the International Data Transfer Agreement (IDTA), or by transferring to countries deemed to provide an adequate level of protection. 

 9. Data retention 

We will only retain your personal data for as long as is reasonably necessary to fulfil the purposes we collected it for, including for satisfying any legal, regulatory, tax, accounting, or reporting requirements. 

  • Account Data: Retained for the duration your account is active and for 12 months after closure. 
  • Transaction Data: Retained for 7 years to comply with tax and accounting laws. 
  • Marketing Data: Retained until you withdraw your consent (unsubscribe).
 

10. Data security 

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way. This includes measures like encryption, access controls, and offering Two-Factor Authentication for your account. 

11. Your data protection rights 

Under UK data protection law, you have the following rights over your personal data: 

  • The right of access: You can ask for copies of your personal information. 
  • The right to rectification: You can ask us to rectify inaccurate information or complete information that is incomplete. 
  • The right to erasure: You can ask us to erase your personal information in certain circumstances. 
  • The right to restriction of processing: You can ask us to restrict the processing of your information in certain circumstances. 
  • The right to object to processing: You can object to the processing of your personal data in certain circumstances. 
  • The right to data portability: You can ask that we transfer the information you gave us to another organisation, or to you, in certain circumstances. 
  • The right to withdraw consent: Where we are relying on consent to process your data, you can withdraw your consent at any time. 

To exercise any of these rights, please contact our DPO. You will not have to pay a fee to exercise your rights. We have one month to respond to your request. 

12. How to lodge a complaint 

If you have any concerns about our use of your personal information, you can make a complaint to us via our DPO. 

You also have the right to lodge a complaint with the UK's supervisory authority, the Information Commissioner’s Office (ICO). 

  • The ICO’s address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF 
  • Helpline number: 0303 123 1113 
  • ICO website: https://www.ico.org.uk 

 

13. Our Cookie Policy 

Our website uses cookies to distinguish you from other users. This helps us to provide you with a good experience and also allows us to improve our site. For detailed information on the cookies we use and the purposes for which we use them, please see our Cookie Policy. 

14. Changes to this Privacy Policy 

We keep our privacy policy under regular review. Any changes will be posted on this page, and where appropriate, you will be notified. We recommend that you check this page periodically to ensure you are aware of the latest version.