Last updated: February 2026
Tradeaze Ltd ("Tradeaze", "we", "us", "our") is the data controller responsible for your personal data.
We are not required to appoint a statutory Data Protection Officer under Article 37 of the UK GDPR. Questions about how we handle your personal data, or requests to exercise your rights, should be sent to our privacy team at privacy@tradeaze.uk.
This privacy policy applies to the Tradeaze booking application used to book and manage deliveries. A separate privacy policy applies to the Tradeaze driver application.
Account and identity data — name, email address, phone number, username, company or organisation name (where applicable), and invoicing details.
Delivery and address data — pickup and delivery addresses, postcodes, delivery instructions, recipient names, and recipient phone numbers. Where you provide personal data about delivery recipients, you are responsible for ensuring you have an appropriate basis to share that information with us.
Transaction and order data — order references, item descriptions, package dimensions, delivery time windows, order status, and pricing.
Technical data — IP address, browser type, device identifiers, operating system, and login timestamps, collected automatically when you use the application.
Usage data — pseudonymised information about how you interact with the application, such as pages visited and features used.
Support data — records of your interactions with our customer support team.
Providing your account, contact, delivery and payment information is necessary to enter into and perform our booking contract with you. Without it we cannot create your account or fulfil deliveries. All other categories above (technical, usage and support data) are collected automatically or as a by-product of using the service.
We collect personal data directly from you (when you register, book deliveries, or contact support), automatically through your use of the application, and from third-party services that help us validate delivery addresses.
Where you provide us with personal data about delivery recipients (such as a recipient's name, address, and phone number), this constitutes data received from a third party under Article 14 of the UK GDPR. We receive this data from our business customers when they book a delivery, and process it solely to fulfil that delivery. We aim to provide recipients with a privacy notice when we send them delivery tracking information. Where a delivery does not include a tracking link, you are responsible for informing the recipient that their data will be shared with us for delivery purposes.
| Purpose | Legal basis |
|---|---|
| Providing and managing your account | Contract |
| Processing and fulfilling deliveries | Contract |
| Calculating routes, ETAs, and pricing | Contract |
| Sending transactional notifications (order updates, delivery status) | Contract |
| Providing customer support | Contract |
| Monitoring application errors and performance | Legitimate interest |
| Analysing usage to improve the application (pseudonymised) | Legitimate interest |
| Detecting and preventing fraud | Legitimate interest |
| Complying with legal obligations (e.g. financial record keeping) | Legal obligation |
| Marketing communications (only with your consent) | Consent |
Our legitimate interests are keeping the application secure and reliable, preventing fraudulent use, and improving the service based on pseudonymised usage patterns. Where we rely on legitimate interest, we balance our legitimate interests against your rights and freedoms before processing.
Marketing consent is captured at the point you sign up or update your communication preferences. You can withdraw consent at any time by using the unsubscribe link in any marketing email we send you, by adjusting your communication preferences in the application, or by contacting privacy@tradeaze.uk. Withdrawing consent does not affect the lawfulness of any processing carried out before withdrawal.
We share personal data with the following categories of service providers, who act as data processors on our behalf under appropriate data processing agreements:
We also share data with the following parties who act as independent data controllers:
We may also disclose your personal data where required by law, regulation, or court order.
Our primary infrastructure is hosted in the UK and EU. Some of our service providers may process data in the United States. Where data is transferred outside the UK, we ensure appropriate safeguards are in place through UK adequacy decisions, the UK International Data Transfer Agreement (IDTA), or the UK Addendum to the EU Standard Contractual Clauses.
For details of the safeguards in place for any specific transfer, contact privacy@tradeaze.uk.
Under the UK GDPR, you have the following rights in relation to your personal data:
You have the right to object at any time to our processing of your personal data where we rely on legitimate interests. This includes our use of data for analytics, fraud prevention, and application monitoring. If you object, we will stop processing unless we can demonstrate compelling legitimate grounds that override your interests, rights and freedoms. To object, contact privacy@tradeaze.uk.
We do not carry out automated decision-making that produces legal or similarly significant effects.
To exercise any of these rights, contact privacy@tradeaze.uk. We will respond within one month. For complex or numerous requests, we may extend this by a further two months, but we will let you know within the first month if this is necessary.
You also have the right to lodge a complaint with the Information Commissioner's Office — see section 13 below.
We retain personal data only as long as necessary for the purposes it was collected. Account and transaction data is retained for up to 6 years after account closure to meet legal and regulatory obligations. Recipient data provided for deliveries is retained for 90 days after delivery completion. Technical and usage data is retained for up to 24 months. When data is no longer required, it is securely deleted or anonymised.
The application uses cookies and similar technologies. For full details of which cookies we use, their purpose, and how to manage them, please see our cookie policy.
We take appropriate technical and organisational measures to protect your personal data, including encryption in transit and, where appropriate, encryption at rest, access controls, and periodic security reviews. No method of transmission or storage is completely secure — if you become aware of a vulnerability, please contact privacy@tradeaze.uk.
Our service is not directed at children. You must be at least 18 years old to use the application.
We may update this policy from time to time. When we make material changes, we will notify you by email or through the application. The "Last updated" date at the top indicates when it was most recently revised.
If you are unhappy with how we have handled your data, please contact us at privacy@tradeaze.uk. We will acknowledge your complaint without undue delay and aim to respond within one month.
If you are not satisfied with our response, you can complain to the Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.