Privacy Policy

PRIVACY POLICY

Last updated: 12/01/2026

Company: Waseetna Ltd
Registered in: England & Wales
Data Controller: Waseetna Ltd
Contact Email: info@waseetna.co.uk

  1. Introduction

This Privacy Policy explains how Waseetna Ltd (“Waseetna”, “we”, “us”, “our”) collects, uses, processes, and protects personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By accessing or using our platform (“Platform”), you acknowledge that you have read and understood this Privacy Policy.

  1. Data Controller

Waseetna Ltd is the Data Controller responsible for determining the purposes and means of processing your personal data.

For any data-related inquiries, you may contact us at:
📧 info@waseetna.co.uk

  1. Categories of Personal Data We Collect

We may collect and process the following categories of personal data:

3.1. Information You Provide Directly

  1. Full name
  2. Email address
  3. Phone number
  4. Account login credentials
  5. Profile details
  6. Listing information (descriptions, photos, pricing, location)
  7. Messages exchanged with other users
  8. Reports or complaints submitted to us

3.2. Automatically Collected Data

  1. IP address
  2. Device identifiers
  3. Browser and operating system details
  4. Access logs
  5. Usage activity (pages visited, actions taken)
  6. Approximate location derived from IP

3.3. Special Category Data

We do not intentionally collect or require special category data under Article 9 UK GDPR such as:

  1. Religion
  2. Ethnicity
  3. Political opinions

Any such data voluntarily disclosed by users (e.g., in descriptions) is not processed for analytical or profiling purposes and is immediately subject to minimisation and security restrictions.

  1. Legal Bases for Processing

We process personal data under the following UK GDPR legal bases:

4.1. Contractual Necessity (Article 6(1)(b))

To:

  1. Create and manage your account
  2. Facilitate posting and managing listings
  3. Enable communication between users
  4. Provide core Platform features

4.2. Legitimate Interests (Article 6(1)(f))

For:

  1. Fraud detection and prevention
  2. Network and information security
  3. Moderation and content review
  4. Service optimisation and analytics
  5. Prevention of misuse
    Our legitimate interests are balanced against your rights and expectations.

4.3. Consent (Article 6(1)(a))

Where required, for:

  1. Cookies and tracking technologies
  2. Marketing communications (if introduced in future)

You may withdraw consent at any time.

4.4. Legal Obligations (Article 6(1)(c))

For:

– Compliance with law enforcement requests

– Record-keeping under UK law

– Regulatory reporting

  1. How We Use Personal Data

We process data for the following purposes:

  • Providing and maintaining the Platform
  • Verifying user identity (where applicable)
  • Publishing user listings
  • Facilitating communication between users
  • Ensuring safety and preventing misuse
  • Responding to support requests
  • Investigating reports, disputes, or violations
  • Improving Platform performance
  • Complying with legal requirements
  1. Sharing of Personal Data

We may share personal data with:

6.1. Service Providers (Processors)

Such as:

  1. Hosting and cloud infrastructure providers
  2. Analytics providers
  3. Moderation and anti-fraud services
  4. Customer support tools
    These providers may only process data according to our documented instructions.

6.2. Law Enforcement and Regulatory Authorities

When required by law or necessary to:

  1. Prevent fraud
  2. Protect user safety
  3. Comply with legal obligations

6.3. Other Users

Information you choose to include in listings or messages becomes visible to other users.

We do not sell personal data to third parties.

  1. International Data Transfers

Where service providers store or process data outside the UK, we ensure appropriate safeguards, including:

  1. UK GDPR–approved International Data Transfer Agreements (IDTAs)
  2. UK Addendum to EU Standard Contractual Clauses
  3. Adequacy decisions (where applicable)

We require all third parties to provide equivalent levels of data protection.

  1. Data Retention

We retain personal data only as long as necessary for the purposes set out in this policy.

Approximate retention periods:

  1. Account information: retained until account deletion
  2. Listings: retained for audit and safety purposes for up to 3 years after removal
  3. Messages: retained for up to 12 months, unless required for investigations
  4. Logs and metadata: 12–24 months for security and fraud prevention
  5. Reports or complaints: up to 6 years for legal compliance

We may retain data for longer where required by law.

  1. Your Rights Under UK GDPR

You have the following rights:

9.1. Right of Access

Request a copy of your personal data.

9.2. Right to Rectification

Request correction of inaccurate data.

9.3. Right to Erasure (“Right to Be Forgotten”)

Request deletion of personal data where legally permissible.

9.4. Right to Restrict Processing

Request limited processing in specific situations.

9.5. Right to Data Portability

Receive your data in a structured, machine-readable format.

9.6. Right to Object

Object to processing based on legitimate interests or direct marketing.

9.7. Right to Withdraw Consent

Where processing is based on consent.

To exercise any rights, contact:
📧 info@waseetna.co.uk

  1. Complaints

You have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

Website: ico.org.uk
Telephone (UK): 0303 123 1113

We encourage contacting us first to resolve concerns.

  1. Cookies and Tracking Technologies

We use cookies and similar technologies for:

  1. Authentication
  2. Security
  3. Performance optimisation
  4. Analytics
  5. User experience improvements

Non-essential cookies (e.g., analytics) require explicit consent.
A separate cookie policy may be published with further details on:

  • Types of cookies
  • Duration
  • Third-party services (e.g., Google Analytics)
  • How to opt out
  1. Automated Decision-Making

Waseetna Ltd does not engage in automated decision-making that produces legal or significant effects on users.

Limited automated moderation may be applied to detect:

  1. Spam
  2. Fraud
  3. Prohibited content

Manual review is used where necessary.

  1. Data Security

We implement appropriate technical and organisational measures, including:

  1. Encryption in transit and at rest
  2. Access controls and authentication
  3. Regular security audits
  4. Data minimisation practices
  5. Segregation of environments
  6. Incident response procedures

No system is completely secure, but we take industry-standard precautions to protect user data.

  1. Children

The Platform is not intended for individuals under 18.
We do not knowingly collect personal data from minors.

  1. Changes to This Privacy Policy

We may update this policy periodically.
Changes take effect once published on the Platform.
Continued use constitutes acceptance of the updated policy.