Last updated: February 2026
Tradeaze Ltd ("Tradeaze", "we", "us", "our") is the data controller responsible for your personal data.
We are not required to appoint a statutory Data Protection Officer under Article 37 of the UK GDPR. Questions about how we handle your personal data, or requests to exercise your rights, should be sent to our privacy team at privacy@tradeaze.uk.
This privacy policy applies to the Tradeaze driver application used by delivery drivers and riders. A separate privacy policy applies to the Tradeaze booking application.
Identity and account data — name, date of birth, email address, phone number, username, home address, and profile photo.
Identity documents — driving licence, right to work documentation (including share codes), CBT certificate, goods in transit insurance, hire and reward insurance, and proof of address. These documents are uploaded by you and stored securely.
Financial data — bank account details (account holder name, account number, sort code, account type), National Insurance number (for personal accounts), and VAT number (for business accounts). Financial data has additional application-level encryption beyond our standard storage encryption.
Vehicle data — vehicle make, model, year, registration number, fuel type, and capacity specifications (weight, length, height, width).
Location data — real-time geographic coordinates (latitude, longitude, speed, heading, altitude, and accuracy) collected while you are clocked in and on duty. Location tracking stops when you clock out.
Delivery data — delivery assignments, completion status, proof of delivery photographs, and recipient signatures captured during deliveries.
Work and shift data — clock-in and clock-out times, shift schedules, work type (shift or gig), and team assignments.
Technical data — device identifiers, operating system, app version, push notification tokens, and IP address, collected automatically.
Support data — records of your interactions with our customer support team.
Providing your identity, right-to-work, financial, vehicle and location data is a requirement for working with us. Without it we cannot onboard you or assign you deliveries.
Where we provide you with delivery addresses and recipient contact details from customers who book deliveries, this constitutes data received from a third party under Article 14 of the UK GDPR. We share this data with you solely to enable delivery fulfilment.
We collect personal data directly from you (when you register, upload documents, enter bank details, or contact support), automatically through the application (location data while on duty, device information), and from customers who book deliveries through our platform (delivery addresses and recipient details).
| Purpose | Legal basis |
|---|---|
| Creating and managing your driver account | Contract |
| Verifying your identity and right to work | Legal obligation |
| Processing deliveries and assigning jobs | Contract |
| Tracking your location while on duty for delivery management and safety | Legitimate interest |
| Processing payments and managing your financial details | Contract |
| Capturing proof of delivery (photos and signatures) | Contract |
| Managing shifts, schedules, and team assignments | Contract |
| Sending push notifications about deliveries, assignments, and account updates | Contract |
| Providing customer support | Contract |
| Monitoring application errors and performance | Legitimate interest |
| Detecting and preventing fraud | Legitimate interest |
| Processing National Insurance numbers for tax reporting | Legal obligation (Income Tax (Earnings and Pensions) Act 2003) |
| Complying with legal obligations (e.g. right to work checks, financial record keeping) | Legal obligation |
Where we rely on legitimate interest, we balance our legitimate interests against your rights and freedoms before processing.
We share personal data with the following categories of service providers, who act as data processors on our behalf under appropriate data processing agreements:
We also share data with the following parties who act as independent data controllers:
We may also disclose your personal data where required by law, regulation, or court order.
Our primary infrastructure is hosted in the UK and EU. Some of our service providers may process data in the United States. Where data is transferred outside the UK, we ensure appropriate safeguards are in place through UK adequacy decisions, the UK International Data Transfer Agreement (IDTA), or the UK Addendum to the EU Standard Contractual Clauses.
For details of the safeguards in place for any specific transfer, contact privacy@tradeaze.uk.
Under the UK GDPR, you have the following rights in relation to your personal data:
You have the right to object at any time to our processing of your personal data where we rely on legitimate interests. This includes our processing of your location data while you are on duty and our use of data to detect fraud or monitor application performance. If you object, we will stop processing unless we can demonstrate compelling legitimate grounds that override your interests, rights and freedoms. To object, contact privacy@tradeaze.uk.
We use automated systems to match deliveries with available drivers based on factors such as location, vehicle type and availability. These matching decisions do not produce legal or similarly significant effects. If you believe a delivery assignment decision has been made unfairly, you can request human review by contacting privacy@tradeaze.uk.
To exercise any of these rights, contact privacy@tradeaze.uk. We will respond within one month. For complex or numerous requests, we may extend this by a further two months, but we will let you know within the first month if this is necessary.
You also have the right to lodge a complaint with the Information Commissioner's Office — see section 14 below.
We retain personal data only as long as necessary for the purposes it was collected. Account and financial data is retained for up to 6 years after account closure to meet legal and regulatory obligations. Location history is retained for 90 days. Identity and right-to-work documents are retained for the duration of your engagement and for 2 years after it ends, as required by the Immigration, Asylum and Nationality Act 2006. Proof of delivery images are retained for 90 days after delivery completion. When data is no longer required, it is securely deleted or anonymised.
The application tracks your location while you are clocked in and on duty. This is necessary to assign deliveries, calculate routes, provide real-time delivery updates to customers and recipients, and ensure driver safety. Location tracking stops when you clock out and is not used to evaluate your performance outside of delivery operations. You can manage location permissions through your device settings, though disabling location access will prevent you from receiving and completing delivery assignments.
The application uses strictly necessary technologies to keep you signed in and authenticated. We use functional technologies for customer support. You can manage preferences through your device settings.
We take appropriate technical and organisational measures to protect your personal data, including encryption at rest and in transit, additional application-level encryption for sensitive financial data, secure storage of identity documents, access controls, and regular security reviews. No method of transmission or storage is completely secure — if you become aware of a vulnerability, please contact privacy@tradeaze.uk.
Our service is not directed at children. You must be at least 18 years old to use the application.
We may update this policy from time to time. When we make material changes, we will notify you by email or through the application. The "Last updated" date at the top indicates when it was most recently revised.
If you are unhappy with how we have handled your data, please contact us at privacy@tradeaze.uk. We will acknowledge your complaint without undue delay and aim to respond within one month.
If you are not satisfied with our response, you can complain to the Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.