Townly

Privacy Policy

Effective date: 3 May 2026

Website: townly.uk

1. Who We Are

Townly (“we”, “us”, “our”) is a hyperlocal offers discovery platform operated by Tayyab (sole trader / operator), accessible at townly.uk. We connect consumers with offers from local businesses across Hertfordshire and surrounding areas.

This Privacy Policy explains how we collect, use, share, and protect personal data when you use townly.uk and any related services (the “Platform”).

We are the data controller for personal data processed through the Platform. For any privacy-related enquiries, please contact us at:

Email: hello@townly.uk

2. What Personal Data We Collect

2.1 Consumers (people browsing offers)

  • Name and email address (if you register for an account)
  • Password (stored in hashed/encrypted form — we never store passwords in plain text)
  • Location data — postcode or town, used to show you nearby offers
  • Usage data — pages visited, offers viewed, upvotes, and saves
  • Device and browser information (collected automatically via cookies and logs)
  • IP address
  • Any information you voluntarily provide when contacting us

2.2 Business Users

  • Business name, address, and contact details
  • Name and email of the account holder
  • Offer content you submit (descriptions, images, expiry dates)
  • Membership tier and billing information (where applicable — processed via third-party payment providers)
  • Login activity and offer performance metrics

2.3 Data We Do Not Collect

We do not process on-platform financial transactions between consumers and businesses. Townly is a discovery and directory platform only. We do not collect payment card details directly.

3. How We Use Your Personal Data

3.1 To provide and operate the Platform

  • Create and manage your account
  • Display relevant local offers based on your location
  • Enable businesses to list and manage their offers
  • Process membership registrations and access controls

Legal basis: Performance of a contract (Article 6(1)(b) UK GDPR).

3.2 To improve the Platform

  • Analyse usage patterns to improve features and performance
  • Generate aggregated, anonymised analytics

Legal basis: Legitimate interests (Article 6(1)(f) UK GDPR) — improving a free or paid service users have chosen to use.

3.3 To communicate with you

  • Send account-related emails (e.g. password resets, membership confirmations)
  • Send marketing emails about Townly features or local offers (only with your consent, and you can unsubscribe at any time)

Legal basis: Consent for marketing (Article 6(1)(a) UK GDPR); legitimate interests for transactional communications.

3.4 To protect the Platform and comply with law

  • Prevent fraud, spam, and abuse
  • Comply with legal obligations, including requests from law enforcement where required

Legal basis: Legal obligation (Article 6(1)(c) UK GDPR) and legitimate interests (Article 6(1)(f) UK GDPR).

4. Cookies and Tracking Technologies

We use cookies and similar technologies on townly.uk. These include:

  • Essential cookies — required for the Platform to function (e.g. login sessions, security tokens)
  • Analytics cookies — help us understand how the Platform is used (e.g. page views, bounce rates)
  • Preference cookies — remember your settings and location preferences

We use Cloudflare Turnstile for spam protection, which may set its own cookies. Cloudflare’s privacy policy is available at cloudflare.com/privacypolicy.

You can manage cookie preferences in your browser settings. Disabling essential cookies may affect Platform functionality.

5. Who We Share Your Data With

We do not sell your personal data. We may share data with:

  • Hosting and infrastructure providers — our Platform is hosted on servers in the UK/EEA
  • Email service providers — we use Microsoft 365 (Outlook) and FluentSMTP for transactional email delivery
  • CRM and marketing tools — we use FluentCRM to manage email lists (data stored within our WordPress installation)
  • Payment processors — if you purchase a paid membership, payment is handled by a third-party processor. We do not store card details
  • Analytics providers — aggregated, anonymised usage data may be processed by analytics tools
  • Law enforcement or regulators — where required by law or court order

All third-party processors are required to handle your data securely and in accordance with applicable data protection law.

6. How Long We Keep Your Data

  • Account data — retained for as long as your account is active, plus up to 2 years after account closure
  • Offer data seeded from public sources — retained indefinitely for platform integrity; no personal data is stored in relation to seeded offers
  • Email marketing lists — until you unsubscribe or request deletion
  • Server logs and analytics — typically retained for up to 12 months
  • Legal or compliance records — as required by applicable law (typically up to 6 years)

7. Your Rights Under UK GDPR

As a UK resident, you have the following rights in relation to your personal data:

  • Right of access — request a copy of the personal data we hold about you
  • Right to rectification — ask us to correct inaccurate or incomplete data
  • Right to erasure (“right to be forgotten”) — request deletion of your data where there is no lawful reason to continue processing it
  • Right to restriction — ask us to limit how we process your data in certain circumstances
  • Right to data portability — receive your data in a structured, commonly used format
  • Right to object — object to processing based on legitimate interests, including direct marketing
  • Rights related to automated decision-making — we do not use solely automated decision-making that produces legal or similarly significant effects

To exercise any of these rights, please contact us at hello@townly.uk. We will respond within one calendar month.

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection:

  • Website: ico.org.uk
  • Phone: 0303 123 1113

8. Security

We take reasonable technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure. These include:

  • Encrypted connections (HTTPS via Cloudflare) across all pages
  • Hashed password storage — passwords are never stored in plain text
  • Access controls limiting who within our operation can access personal data
  • Spam and bot protection via Cloudflare Turnstile on all forms

No method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we take our obligations seriously and review our security practices regularly.

9. Children’s Privacy

Townly is not directed at children under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us at hello@townly.uk and we will take steps to delete it promptly.

10. Third-Party Links

Townly may display links to external business websites or social media profiles as part of offer listings. We are not responsible for the privacy practices of those third-party sites. We encourage you to read the privacy policy of any website you visit.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the effective date at the top of this page and, where appropriate, notify registered users by email.

Your continued use of the Platform after changes are posted constitutes acceptance of the updated policy.

12. Contact Us

For any questions, requests, or complaints relating to this Privacy Policy or your personal data, please contact:

Townly

Email: hello@townly.uk

Website: townly.uk

© 2026 Townly. All rights reserved. townly.uk