Who We Are
toolcache ("we", "us", "our") operates the website toolcache.ai. We are committed to protecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
What We Collect
When you make a purchase, our payment processor Stripe collects your name, email address, and payment details on our behalf. We do not store your payment card information on our servers.
We use localStorage in your browser to record your access entitlements (which categories or prompts you have unlocked). This data never leaves your device and is not transmitted to us.
If you contact us via our contact form, we collect your name, email address, and message content solely to respond to your enquiry.
How We Use Your Data
Purchase data is processed solely to fulfil your order and provide access to prompt content you have paid for. Contact form data is used only to respond to your enquiry. We do not sell, rent, or share your personal data with third parties for marketing purposes.
Cookies & Local Storage
We use essential browser localStorage to manage your prompt access and preferences. We do not use advertising cookies or third-party tracking cookies. No analytics data is shared with advertisers.
Your Rights Under UK GDPR
You have the right to:
- Access — request a copy of the personal data we hold about you
- Rectification — request correction of inaccurate data
- Erasure — request deletion of your personal data
- Restrict processing — request we limit how we use your data
- Data portability — receive your data in a machine-readable format
- Object — object to our processing of your data
To exercise any of these rights, please contact us via our contact page.
Data Retention
Purchase records are retained for as long as necessary to provide your service and comply with legal obligations (e.g. tax records are retained for 6 years as required by HMRC). You may request deletion of your personal data at any time, subject to our legal obligations.
Lawful Basis for Processing
We process purchase data under contractual necessity (Article 6(1)(b) UK GDPR) — processing is necessary to fulfil your purchase. We also process data under legal obligation (Article 6(1)(c) UK GDPR) for tax compliance purposes.
Third-Party Processors
Stripe processes payments on our behalf. Stripe's privacy policy is available at stripe.com/gb/privacy. We do not share your data with any other third parties.
Data Security
All payment transactions are processed via Stripe's PCI DSS-compliant infrastructure. Our website is served over HTTPS. We take appropriate technical and organisational measures to protect your data against unauthorised access, loss, or misuse.
Changes to This Notice
We may update this privacy notice from time to time. Any changes will be posted on this page with the updated date. Last updated: March 2026.
Contact & Complaints
If you have any questions about this privacy notice or wish to exercise your data rights, please visit our contact page.
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.