Skip to content
We use cookies

We use cookies across areacodes to keep you signed in, remember your preferences, and understand how you use our services.

This applies to all Areacodes apps including our map, business dashboard, and admin tools.

Learn more

Privacy Policy

Last updated: February 2026

Introduction

This Privacy Policy explains how Areacodes ("we", "us", or "our") collects, uses, stores, and protects your personal data when you use our website, applications, and services (collectively, the "Service"). We are committed to protecting your privacy and processing your personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 (DPA 2018), and the Privacy and Electronic Communications Regulations (PECR).

Data controller

Areacodes is the data controller responsible for your personal data. If you have any questions about how we handle your data, please contact us via our Contact page or email us at ten@acbrighton.com.

What data we collect

Data you provide directly

  • Account information: name, email address, and password when you create an account
  • Contact form submissions: name, email address, and message content when you contact us
  • Business listing information: business name, address, description, and other details provided by business owners

Data collected automatically

  • Device and browser information: device type, operating system, browser type and version
  • Usage data: pages visited, features used, and interactions with the Service
  • IP address: collected automatically when you access the Service
  • Location data: approximate location based on IP address, or precise location if you grant permission through your device settings

Cookies and similar technologies

We use cookies and similar technologies as described in our Cookie Policy. Please refer to that policy for detailed information about the cookies we use and how to manage your preferences.

How we use your data

We use your personal data to:

  • Provide, maintain, and improve the Service
  • Create and manage your user account
  • Process and display business listings
  • Deliver vouchers and offers
  • Respond to your enquiries and support requests
  • Send service-related communications (e.g. account updates, security alerts)
  • Analyse usage patterns to improve user experience
  • Detect, prevent, and address technical issues or fraudulent activity
  • Comply with legal obligations

Legal basis for processing

We process your personal data on the following legal bases under UK GDPR:

  • Contract (Article 6(1)(b)): processing necessary to provide you with the Service and fulfil our contractual obligations
  • Legitimate interests (Article 6(1)(f)): processing necessary for our legitimate business interests, such as improving the Service, preventing fraud, and ensuring security, where these interests are not overridden by your rights
  • Consent (Article 6(1)(a)): where you have given clear consent for us to process your data for a specific purpose, such as non-essential cookies or marketing communications
  • Legal obligation (Article 6(1)(c)): processing necessary to comply with a legal obligation to which we are subject

Data sharing

We do not sell your personal data. We may share your data with:

  • Participating businesses: limited data necessary for voucher redemption (e.g. voucher code verification)
  • Service providers: third-party providers who help us operate the Service (see Third-party services below)
  • Legal requirements: when required by law, regulation, legal process, or governmental request
  • Business transfers: in connection with any merger, acquisition, or sale of assets, your data may be transferred as part of that transaction

Third-party services

We use the following third-party services to operate the Service:

Each of these providers processes data in accordance with their own privacy policies. We encourage you to review them.

Data retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. Specifically:

  • Account data: retained for the duration of your account and deleted upon request or account closure
  • Contact form submissions: retained for up to 12 months to ensure we can follow up on enquiries
  • Usage and analytics data: retained in aggregated or anonymised form
  • Business listing data: retained for the duration of the business's participation in the Service

International transfers

Some of our third-party service providers are based outside the UK. Where your data is transferred internationally, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the UK Information Commissioner's Office (ICO), or transfers to countries deemed to have adequate data protection by the UK government.

Your rights

Under UK GDPR, you have the following rights regarding your personal data:

  • Right of access: you can request a copy of the personal data we hold about you
  • Right to rectification: you can request that we correct inaccurate or incomplete data
  • Right to erasure: you can request that we delete your personal data in certain circumstances
  • Right to restrict processing: you can request that we limit how we use your data
  • Right to data portability: you can request a copy of your data in a structured, commonly used, machine-readable format
  • Right to object: you can object to our processing of your data based on legitimate interests
  • Rights related to automated decision-making: you have the right not to be subject to decisions based solely on automated processing that produce legal or similarly significant effects

To exercise any of these rights, please contact us via our Contact page or email ten@acbrighton.com. We will respond to your request within one month.

Data security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption in transit (TLS), secure authentication, access controls, and regular security reviews. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

Children's privacy

The Service is not directed at children under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without appropriate consent, we will take steps to delete that data promptly. If you believe we may have collected data from a child under 16, please contact us immediately.

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically.

Complaints

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO):

We would appreciate the opportunity to address your concerns before you contact the ICO, so please reach out to us first.

Contact

If you have any questions about this Privacy Policy or our data practices, please contact us via our Contact page or email us at ten@acbrighton.com.