Privacy Policy
Last updated: October 19, 2025
This Privacy Policy explains how Grey Garn Limited (“we”) processes personal data when you use Golf 28 (golf28.com).
Controller & Contact
Controller: Grey Garn Limited, 66 Church Street, Rugby, CV21 3PT, United Kingdom
Email: info@golf28.com
Data We Process
- Account & profile: name, email, password (hashed), subscription plan.
- Transactional: billing details (handled by our payment processor), subscription status, invoices.
- Service data: preferences (e.g., courses/days), offers saved or clicked.
- Technical: IP, device, browser, logs (for security and debugging).
Purposes & Legal Bases
- Provide the Service (contract performance).
- Billing & fraud prevention (contract; legitimate interests; legal obligation).
- Communications about your account/subscription (contract; legitimate interests).
- Marketing emails (consent; you can opt out anytime).
- Security & debugging (legitimate interests).
Processors & Transfers
We use trusted processors to operate Golf 28, including hosting (Google Cloud / Firebase), payments (Stripe), and email delivery (Email service provider (e.g., Mailchimp/MailerLite)). Data may be processed outside your country. Where required, we rely on appropriate safeguards (e.g., Standard Contractual Clauses).
Retention
We retain personal data while your account is active and as needed to comply with legal obligations or resolve disputes. We delete or anonymize data when no longer necessary.
Your Rights
- Access, rectification, erasure, restriction, portability, objection.
- Withdraw consent at any time (does not affect prior processing).
- Lodge a complaint with your local supervisory authority (e.g., ICO in the UK or your EU authority).
Marketing & Newsletters
You can unsubscribe via the link in our emails or by contacting us at info@golf28.com.
Children
The Service is not intended for individuals under 18.
Changes to This Policy
We may update this Policy and will post the new version here. Significant changes will be notified where appropriate.