LEGAL // PRIVACY

Privacy Policy

How StandEasy Finance collects, uses, and protects your personal data.

Last updated: 30 June 2026

Who We Are

StandEasy Finance is operated by [Leo Johnson], a UK sole trader (the "operator", "we", "us"). For data protection purposes the operator is the data controller for personal data collected through this website.

Contact: contact@standeasy.uk

UK sole traders who process personal data may be required to register with the Information Commissioner's Office (ICO) and pay the data protection fee. Check your current obligations at ico.org.uk/registration before going live. Insert your full legal name as data controller in this section.

Data We Collect

Google Sign-In (OAuth 2.0)

When you create an account using Google Sign-In, Google provides us with your display name, email address, and a unique Google account identifier. We do not receive or store your Google password.

Firebase / Firestore

Your name, email address, Google account ID, and verification status are stored in Google Firebase Firestore. Firebase Authentication manages your login session via a secure token stored in your browser.

Military Verification (SheerID)

If you verify your military status, you are redirected to SheerID, a third-party verification service. SheerID may ask for a MOD or forces-connected email address or supporting documentation. StandEasy Finance does not receive or retain that email address or any documents. We receive and store only the verification outcome: approved, pending, or rejected.

SheerID's own privacy policy governs the data they process. Review it before submitting information to them.

Usage and Technical Data

Google Firebase may automatically collect standard technical data such as IP addresses, device/browser type, and pages visited, as part of providing and securing the service. See Google's privacy policy for details of what Firebase collects at the infrastructure level.

How We Use Your Data

  • To create and manage your account
  • To authenticate you when you sign in
  • To store and apply your military verification status
  • To gate access to verified-only content
  • To respond to messages sent to contact@standeasy.uk

The specific legal bases under UK GDPR relied upon for each processing activity (e.g. performance of a contract, legitimate interests, consent) should be confirmed by a qualified person before this policy is published. The uses are stated factually above; the corresponding legal bases are intentionally omitted here to avoid stating incorrect information.

Cookies

We use cookies and similar technologies. You can manage your preferences at any time via the Cookie Settings link in the footer.

Essential

Required for the site to work. Includes Firebase Authentication session tokens that keep you logged in. Cannot be disabled.

Analytics (consent required)

Google Analytics cookies that help us understand how visitors use the site. Only set with your explicit consent.

Advertising (consent required)

Google AdSense cookies that allow Google to serve personalised ads. Only set with your consent.

Affiliate Tracking (consent required)

Cookies placed by affiliate networks to attribute clicks on partner links for commission purposes. Only set with your consent.

Cookie requirements under UK PECR (Privacy and Electronic Communications Regulations 2003) and UK GDPR should be verified against current ICO guidance before this policy is finalised.

Third-Party Services

  • Google LLC

    Provides Firebase (authentication and database), Google Sign-In, and optionally Google Analytics and Google AdSense. Google LLC is headquartered in the United States. Data is transferred to Google's servers, including in the US. Google states it relies on Standard Contractual Clauses (SCCs) for UK GDPR-compliant international transfers. Verify this against Google's current data processing terms before going live.

  • SheerID Inc.

    Military status verification service, headquartered in the US. Data submitted during verification is governed by SheerID's own privacy policy and terms.

  • Affiliate Networks

    We may use third-party affiliate networks to track commission-eligible link clicks. Tracking cookies from these networks are only placed with your explicit consent. Details of specific network partners will be updated here once arrangements are in place.

Data processing agreements (DPAs) with each third-party processor should be confirmed to be in place before this site goes live.

Your Rights Under UK GDPR

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request erasure of your data
  • Request restriction of processing in certain circumstances
  • Receive a portable copy of data you have provided to us
  • Object to processing based on legitimate interests
  • Withdraw consent at any time where processing relies on consent

To exercise any right, contact contact@standeasy.uk. We will respond within one calendar month.

If you are not satisfied with our response, you may complain to the Information Commissioner's Office at ico.org.uk.

Data Retention

We retain your account data for as long as your account is active or as necessary to provide the service. You may request deletion at any time by contacting us. Some data may be retained for longer where required by law.

Specific retention periods for each category of personal data should be documented before this policy is finalised.

Changes to This Policy

We may update this policy from time to time. Material changes will be indicated by an updated date at the top of this page. Continued use of the site after a change constitutes acceptance of the revised policy.