Privacy Policy

Effective Date: 29/06/2025

This Privacy Policy outlines how Arca Compliance ("we", "us", or "our") collects, uses, stores, and shares your personal data when you use our kitchen diary SaaS platform ("the Service").

1. Who We Are

Arca Compliance is located at:
6 Highfield Road, Kidderminster, DY10 2TL
We are a UK-based software company offering a digital kitchen diary platform for food businesses.

2. What Data We Collect

  • Account information (name, email, phone number, organisation)
  • Login and usage activity (e.g., check completions, timestamps)
  • IP addresses, browser type, and device information
  • Audit logs related to user interactions with the platform

3. How We Use Your Data

  • To provide access to the kitchen diary service
  • To maintain audit trails and support food safety compliance
  • To respond to support requests
  • To monitor performance and security of the platform

4. Legal Basis for Processing

We process your personal data under the following legal bases:

  • Contractual necessity: to provide the Service you or your partner subscribed to.
  • Legitimate interest: to monitor, secure, and improve the platform.
  • Consent: where applicable, for optional features or communication.

5. Who Has Access to Your Data

  • Arca Compliance staff, solely for the purpose of maintaining and supporting the Service.
  • Your appointed partner (e.g., Food Safety Logic) if you signed up through a reseller. They act as your Data Controller.
  • Trusted IT providers involved in secure hosting and delivery of the platform.

6. Data Storage & Security

  • All data is stored in the United Kingdom.
  • We apply industry-standard security practices including encryption, access controls, and regular audits.

7. Data Retention

We retain your data for the duration of your subscription and for up to 90 days after termination for backup and compliance purposes. Data is permanently deleted thereafter unless legally required to retain it.

8. Your Rights

Under the UK GDPR, you have the right to:

  • Access the data we hold about you
  • Correct inaccuracies in your data
  • Request deletion of your data
  • Object to or restrict certain types of processing
  • Request data portability
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

9. Contacting Us

For any privacy-related requests or concerns, please contact:
privacy@arcacompliance.co.uk

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with a revised "Effective Date."