Privacy Policy
Last updated: 23 March 2026
1. Data Controller
The data controller for personal data collected through the Audeasy platform (hereinafter "the Platform") is:
Resolution Pro Ltd
Company Number: 12348574
Registered Office: 981 Great West Road, Brentford, UK, TW8 9DN
Privacy enquiries: [email protected]
This Privacy Policy describes how we collect, use, store and protect the personal data of Platform users, in compliance with the UK General Data Protection Regulation (UK GDPR), Regulation (EU) 2016/679 (EU GDPR) and the California Consumer Privacy Act (CCPA/CPRA), where applicable.
2. Scope
This notice applies to all users who access the Audeasy Platform, regardless of their country of residence, and covers data collected through:
- The website audeasy.com and related web applications
- Account registration and creation
- The purchase and consumption of audiobooks and/or ebooks
- Email communications through our newsletter service
3. Personal Data Collected
3.1 Data provided directly by the user
- Email address and password (during registration)
- Any additional data voluntarily provided through email communications
3.2 Data collected automatically
- IP address and browsing data (server logs)
- Device type, operating system and browser used
- Platform usage data (content viewed, purchases made, access timestamps)
3.3 Data collected through third parties
We do not directly collect payment data (credit card numbers, bank details). Such data is managed exclusively by our payment processor Stripe, Inc., acting as an independent data controller. Please refer to Stripe's Privacy Policy for further details.
4. Purposes and Legal Basis for Processing
| Purpose | Data processed | Legal basis |
|---|---|---|
| Registration and account management | Email, password | Performance of contract (Art. 6(1)(b) GDPR) |
| Service delivery (purchase and access to digital content) | Email, purchase data, usage data | Performance of contract (Art. 6(1)(b) GDPR) |
| Payment processing | Payment data (managed by Stripe) | Performance of contract (Art. 6(1)(b) GDPR) |
| Service communications (purchase confirmations, account updates) | Performance of contract (Art. 6(1)(b) GDPR) | |
| Newsletter and marketing communications | Consent (Art. 6(1)(a) GDPR) | |
| Platform security and fraud prevention | IP, browsing data, logs | Legitimate interest (Art. 6(1)(f) GDPR) |
| Tax and accounting compliance | Purchase data | Legal obligation (Art. 6(1)(c) GDPR) |
5. Data Processors and Third Parties
We use the following service providers who act as data processors or independent data controllers:
| Provider | Service | Data processed | Location |
|---|---|---|---|
| Stripe, Inc. | Payment processing | Payment data, email, IP | USA (with appropriate safeguards) |
| Cloudflare, Inc. | CDN, audio/ebook content storage | IP, content access data | Globally distributed / USA |
| DigitalOcean, LLC | Web platform hosting | All Platform data | USA |
| Brevo (Sendinblue) | Transactional and marketing emails | Email, name (if provided) | France (EU) |
We do not sell, rent or share your personal data with third parties for marketing purposes other than those indicated above.
6. International Data Transfers
Some of our service providers are based in the United States or other countries outside the United Kingdom and the European Economic Area (EEA). In such cases, we ensure that transfers take place on the basis of:
- Adequacy decisions by the UK Secretary of State or the European Commission, where available
- Standard Contractual Clauses (SCCs) approved by the European Commission and/or the UK Information Commissioner's Office (ICO)
- The EU-US Data Privacy Framework, where the provider is certified
- Other appropriate safeguards provided for by applicable legislation
7. Data Retention Period
We retain your personal data for the time strictly necessary for the purposes for which it was collected:
- Account data: for the duration of the account and for 30 days following deletion (to allow recovery in case of accidental deletion)
- Purchase and transaction data: for 7 years from the date of the transaction (UK tax and accounting obligations)
- Browsing data and logs: for a maximum of 12 months
- Marketing data (newsletter): until consent is withdrawn or the subscription is cancelled
8. Your Rights (UK and EU/EEA Users)
As data subjects under the UK GDPR and/or the EU GDPR, you have the right to:
- Access: obtain confirmation that your data is being processed and receive a copy
- Rectification: request correction of inaccurate or incomplete data
- Erasure ("right to be forgotten"): request deletion of your data, within the limits provided by law
- Restriction of processing: request temporary suspension of processing
- Data portability: receive your data in a structured, commonly used and machine-readable format
- Objection: object to processing based on legitimate interest
- Withdrawal of consent: withdraw consent to marketing at any time, without affecting the lawfulness of prior processing
To exercise your rights, send a request to [email protected]. We will respond within 30 days (one month) of receiving your request.
Right to complain: You have the right to lodge a complaint with:
- UK: Information Commissioner's Office (ICO) — ico.org.uk
- Italy: Garante per la Protezione dei Dati Personali — garanteprivacy.it
- Other EU/EEA country: the supervisory authority in your country of residence
9. Notice for California Residents (CCPA/CPRA)
If you are a resident of the State of California (USA), under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), you have the following additional rights:
- Right to know: You may request which categories and specific personal data we have collected about you, the sources, purposes and categories of third parties with whom we share it.
- Right to deletion: You may request the deletion of your personal data, subject to certain exceptions provided by law.
- Right to correction: You may request the correction of inaccurate personal data.
- Right to non-discrimination: We will not discriminate against you for exercising your rights under the CCPA.
We do not sell your personal data as defined by the CCPA. We do not share your personal data for cross-context behavioural advertising purposes.
To exercise your CCPA rights, contact [email protected]. We will verify your identity before processing your request.
10. Cookies and Similar Technologies
The Platform uses strictly necessary technical cookies for the operation of the service. We currently do not use third-party profiling or analytics cookies.
For more details, please see our Cookie Policy.
Should non-essential cookies be introduced in the future (e.g. analytics), we will update this notice and the Cookie Policy, and request your consent where required.
11. Data Security
We adopt appropriate technical and organisational measures to protect your personal data, including:
- Encryption of data in transit (HTTPS/TLS)
- Password hashing (passwords are never stored in plain text)
- Data access restricted to authorised personnel
- Use of service providers compliant with industry security standards
No system is 100% secure. In the event of a data breach that poses a risk to your rights and freedoms, we will notify you without undue delay and inform the competent authorities as required by law.
12. Children
The Platform is not intended for children under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected data from a child without parental or guardian consent, we will promptly delete it.
If you are a parent or guardian and believe your child has provided personal data on the Platform, contact [email protected].
13. Changes to this Privacy Policy
We reserve the right to update this Privacy Policy at any time. In the event of material changes, we will inform you by email and/or notice on the Platform. The date of the last update is shown at the top of this document.
We encourage you to review this page periodically to stay informed.
14. Contact
For any questions, requests or complaints regarding this Privacy Policy or the processing of your personal data, you may contact us at:
Resolution Pro Ltd
981 Great West Road, Brentford, UK, TW8 9DN
Email: [email protected]
Website: audeasy.com