UK GDPR

Privacy Policy

This policy explains how we collect, use, store, and protect your personal data.

Last updated: 2026-01-04
Applies to: ontheday.co.uk waitlist and platform

1. Who we are (data controller)

On The Day Ltd ("On The Day", "we", "us") is the data controller for personal data collected via our website and early access forms. If you have questions or want to exercise your rights, contact: support@ontheday.co.uk.

2. What data we collect

When you join the early access list we may collect:

  • Email address (required for invites)
  • Role (worker or employer)
  • Name, phone number, city/region (optional)
  • Industry or hiring needs (optional)
  • Marketing preference (optional)
  • Technical data such as IP address and basic device/browser information (via standard logs)
  • Campaign data (UTM parameters) if you arrive from a tracked link

3. Why we collect it (purposes)

  • To register your interest and send you an early access invite link
  • To prioritise early access rollout by region and user type
  • To respond to messages sent through our contact forms
  • To improve site reliability, security, and performance
  • To send launch updates and product news only if you opt in

4. Legal basis for processing

  • Legitimate interests: to run the waitlist, send invite links, and plan launch rollout
  • Consent: for marketing emails (only if you opt in)
  • Legal obligation: where required for compliance or lawful requests

5. Marketing

Marketing emails are optional. If you opt in, we will send you launch updates and news. You can opt out at any time by using the unsubscribe link in our emails or by contacting support@ontheday.co.uk.

6. Who we share data with (processors)

We use trusted service providers to operate the site and deliver invites. This can include:

  • Hosting and content delivery (Netlify)
  • Database and authentication services (Supabase)
  • Email delivery services used by our backend (via Supabase Edge Functions)

These providers process data on our instructions under appropriate contracts.

7. International transfers

Some service providers may process data outside the UK. Where that happens, we use appropriate safeguards such as the UK International Data Transfer Agreement and/or standard contractual clauses.

8. Data retention

We retain waitlist data for as long as needed to operate early access and launch communications. If you ask us to remove you from the list, we will delete or anonymise your waitlist record, unless we must keep a minimal record to comply with legal requirements.

9. Your rights

You have rights under UK GDPR, including access, correction, deletion, and objection. Contact support@ontheday.co.uk.

10. Security

We use technical and organisational measures designed to protect personal data, including encryption in transit, access controls, and least-privilege access to systems.

11. Cookies

We use essential cookies required for site functionality and security. Optional analytics cookies are used only if you accept them.

12. Complaints

You can lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.