Legal
How we handle your information — and why we keep it simple.
Prezz.io is operated by ADEXO Ltd, a company registered in England and Wales. We are the data controller for the personal information we process in connection with the Prezz.io app and website.
Our service is hosted on infrastructure located in the Republic of Ireland (EU). As a UK-registered company processing data on EU infrastructure, we comply with both UK GDPR and EU GDPR.
If you have any questions about how we handle your data, contact us at privacy@prezz.io.
We collect information in two ways: what you give us directly, and what we gather automatically when you use our service.
Information you provide:
Information collected automatically:
We process your personal data on the following lawful bases under UK/EU GDPR:
We do not use your data to serve you advertising. We do not build profiles for sale to third parties. We do not send you marketing without your explicit consent.
Prezz.io is designed to protect the privacy of both parties in a gift transaction. You can send a gift without knowing the recipient's address — they provide it themselves when they claim the gift.
Code-based sends: When you purchase a gift and share a redemption code, we do not know who the recipient is until they claim it. At the point of claim, the recipient provides their delivery address directly to us. That address is passed to our fulfilment partner and is not shared with you as the sender.
Handle-based sends: When you send a gift directly to a Prezz.io user by their handle, we link the gift to their account. The recipient's real name and address are never shown to you. Only their public handle is visible on your sent gifts.
The sender's name may appear on a gift card message if you include one. No other personal information is shared between sender and recipient beyond what is necessary to fulfil the order.
Prezz.io includes a private address book feature. When you send a gift to someone via their handle, they are automatically added to your contacts. You can also add contacts manually.
Your contacts are entirely private to you — they are never visible to the people you have saved, and they are never used for any purpose other than helping you send gifts. Specifically:
Contact data is stored securely and protected by row-level security — only you can access your own contacts.
Birthday information on Prezz.io exists in two forms:
Your profile birthday: You may optionally add your date of birth to your profile. This is used to send you birthday reminders and is not shared with anyone by default. You can enable a setting — "Share my birthday with people who gift me" — which allows people who have sent you gifts to see your birthday and receive a reminder around that time. You can turn this off at any time.
Contact birthdays: You may add a birthday for people in your contacts. This is your own private record, like a phone address book. It is never shared with the contact or anyone else. If the contact has enabled birthday sharing on their profile, their birthday may automatically appear in your contact record for them.
We never share your date of birth with third parties. The lawful basis for processing birthday data is consent — you provide it voluntarily and can remove it at any time.
With your permission, we send push notifications to your device. These include:
To send notifications, we store a push token associated with your device and account. This token is deleted when you sign out. You can disable individual notification types within the app at any time, or revoke permission entirely through your device settings.
The lawful basis for sending notifications is consent. We do not send notifications for marketing purposes without your explicit opt-in.
We share your information only with the third-party partners required to operate our service, and only the minimum necessary to do so. These include:
All partners are contractually required to use your data only for the purpose of providing their service to us. We do not sell your personal data. Ever.
We may also disclose information if required by law, or to protect the safety and security of our users or service.
Our primary data storage is in Ireland (EU). However, some of our service partners are based outside the UK and EU, which means your data may be transferred internationally:
Where data is transferred outside the UK or EEA, we ensure appropriate safeguards are in place in accordance with UK GDPR and EU GDPR, including standard contractual clauses where required.
Our website uses a small number of cookies to keep the service working. The Prezz.io mobile app does not use cookies.
We do not use advertising cookies or third-party tracking pixels. You can control analytics cookies via your browser settings or by contacting us.
We keep your data only as long as we need it for the purpose it was collected, or as required by law.
Under UK GDPR and EU GDPR, you have the following rights regarding your personal data. We honour these for all users regardless of location:
To exercise any of these rights, contact us at privacy@prezz.io. We respond within 30 days.
You also have the right to lodge a complaint with a supervisory authority. In the UK, this is the Information Commissioner's Office (ICO) at ico.org.uk. In Ireland and the EU, this is the Data Protection Commission (DPC) at dataprotection.ie.
You can request deletion of your account and personal data at any time. To do so:
In-app account deletion will be available in a future update.
We take reasonable technical and organisational measures to protect your information. These include encrypted connections (HTTPS/TLS), row-level security on our database (meaning each user can only access their own data), access controls limiting who within our team can access personal data, and the use of reputable, security-audited third-party services.
No system is completely secure. If you believe your data has been compromised, please contact us immediately at privacy@prezz.io.
Prezz.io is not intended for use by anyone under the age of 18. We do not knowingly collect personal data from minors. If you believe a minor has submitted information to us, please contact us and we will delete it promptly.
If you have questions about this policy, want to exercise your rights, or want to request account deletion — contact us. We aim to respond to all privacy enquiries within 30 days.
ADEXO Ltd, trading as Prezz.io
privacy@prezz.io