Hault

Privacy Policy

Last Updated: February 2025

1. Introduction

1.1 About This Policy

This Privacy Policy explains how Hault Limited ("Hault", "we", "us", or "our") collects, uses, shares, and protects your personal data when you use our platform, including our website at hault.co.uk, mobile applications, and related services (collectively, the "Platform").

1.2 Our Commitment

We are committed to protecting your privacy and handling your data transparently and responsibly. We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection legislation.

1.3 Data Controller

Hault Limited is the data controller responsible for your personal data.

Email: privacy@hault.co.uk

Website: https://hault.co.uk

1.4 Data Protection Officer

For data protection enquiries, contact our Data Protection Officer at dpo@hault.co.uk.

2. Information We Collect

2.1 Information You Provide

Account Information:

  • Full name
  • Email address
  • Phone number
  • Password (encrypted)
  • Profile photograph (optional)

Identity Verification (Service Providers):

  • Date of birth
  • Driving licence details
  • Right to work documentation
  • Professional qualifications
  • Insurance certificates
  • Background check consent

Payment Information:

  • Billing name and address
  • Payment card details (processed by Stripe, we do not store full card numbers)
  • Transaction history

Service Information:

  • Vehicle details (make, model, registration)
  • Service addresses
  • Booking history
  • Service preferences

Communications:

  • Messages sent through the Platform
  • Customer support enquiries
  • Feedback and reviews

2.2 Information Collected Automatically

Device Information:

  • Device type and model
  • Operating system and version
  • Unique device identifiers
  • Mobile network information
  • App version

Location Data:

  • Precise GPS location (when you request or provide services)
  • Approximate location based on IP address
  • Location history during active service sessions

Usage Data:

  • Pages and features accessed
  • Time spent on Platform
  • Click patterns and navigation
  • Search queries
  • Crash reports and diagnostics

Cookies and Similar Technologies:

  • Session cookies
  • Persistent cookies
  • Pixel tags and web beacons
  • Local storage

2.3 Information from Third Parties

Stripe: Payment verification status, transaction confirmations, fraud detection signals

Background Check Providers (Service Providers only): DBS check results, driving licence verification

Google Maps: Address validation, route and distance calculations

3. How We Use Your Information

3.1 Legal Bases for Processing

PurposeLegal Basis
Account creation and managementContract performance
Service facilitation and bookingContract performance
Payment processingContract performance
Customer supportContract / Legitimate interests
Safety and fraud preventionLegitimate interests
Platform improvementLegitimate interests
Marketing (with consent)Consent
Legal complianceLegal obligation

3.2 Specific Uses

To Provide Our Services:

  • Create and manage your account
  • Process service bookings and payments
  • Connect Customers with Service Providers
  • Facilitate communication between parties
  • Provide customer support
  • Send service-related notifications

To Improve Our Platform:

  • Analyse usage patterns and trends
  • Develop new features and services
  • Conduct research and analytics
  • Fix bugs and technical issues
  • Personalise your experience

For Safety and Security:

  • Verify Service Provider identities and qualifications
  • Detect and prevent fraud
  • Enforce our Terms of Service
  • Protect users from harmful activity
  • Respond to legal requests

3.3 Location Data Use

Customers:

We collect your precise location when you request a service to match you with nearby Service Providers. Location is collected only when you actively use the Platform with location services enabled. You can disable location access in your device settings, but this will prevent you from booking services.

Service Providers:

We collect your location when you're active on the Platform to match you with nearby service requests. Location tracking stops when you go offline. Location history may be retained for safety, dispute resolution, and fraud prevention.

4. Information Sharing

4.1 With Other Users

When you book a service, we share:

  • With Service Providers: Your name, phone number, vehicle details, service location
  • With Customers: Service Provider name, photo, vehicle details, estimated arrival time, rating

4.2 With Third-Party Service Providers

Stripe, Inc.

Purpose: Payment processing

Data shared: Payment card details, billing information, transaction data

Privacy policy: stripe.com/privacy

Google LLC (Maps Platform)

Purpose: Location services, routing, address validation

Data shared: Location data, addresses

Privacy policy: policies.google.com/privacy

Background Check Providers

Purpose: Service Provider verification (DBS checks, licence verification)

Data shared: Identity documents, consent

Location: UK

4.3 Other Sharing Circumstances

We may also share your data:

  • Legal Requirements: When required by law, regulation, legal process, or governmental request
  • Safety and Rights: To protect the safety of users, staff, or the public; investigate potential Terms violations; detect and prevent fraud
  • Business Transfers: If Hault is involved in a merger, acquisition, or asset sale
  • With Your Consent: For other purposes with your explicit consent

We Do NOT Sell Your Data

Hault does not sell your personal data to third parties for their marketing purposes.

5. Data Retention

5.1 Retention Periods

Data TypeRetention PeriodReason
Account informationDuration of account + 3 yearsLegal/tax obligations, disputes
Transaction records7 yearsUK tax and accounting requirements
Location data90 daysSafety, fraud prevention, disputes
Service Provider verificationDuration of account + 6 yearsRegulatory compliance
Customer support records3 yearsQuality assurance, disputes
Anonymised analyticsIndefinitelyPlatform improvement

5.2 Account Deletion

When you delete your account:

  • Your profile is immediately deactivated
  • Personal data is deleted or anonymised within 30 days
  • Some data may be retained longer for legal compliance (e.g., tax records)
  • Anonymised data may be retained indefinitely

6. Data Security

6.1 Security Measures

Technical Measures:

  • Encryption in transit (TLS 1.2+)
  • Encryption at rest (AES-256)
  • Secure password hashing (bcrypt)
  • Regular security assessments
  • Intrusion detection systems
  • Automated vulnerability scanning

Organisational Measures:

  • Staff data protection training
  • Access controls and authentication
  • Data minimisation practices
  • Incident response procedures
  • Regular policy reviews

6.2 Payment Security

Payment processing is handled by Stripe, a PCI DSS Level 1 certified provider. We do not store complete card numbers on our systems.

6.3 Breach Notification

In the event of a personal data breach that poses a risk to your rights, we will:

  • Notify the Information Commissioner's Office within 72 hours
  • Notify you directly if the breach poses a high risk to your rights
  • Take immediate steps to contain and remediate the breach

7. Your Rights

7.1 Rights Under UK GDPR

You have the following rights regarding your personal data:

Right to Access

Request a copy of the personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete data.

Right to Erasure ("Right to be Forgotten")

Request deletion of your data in certain circumstances.

Right to Restriction

Request that we limit how we use your data.

Right to Data Portability

Receive your data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests or for direct marketing.

Right to Withdraw Consent

Withdraw consent at any time where processing is based on consent.

7.2 How to Exercise Your Rights

To exercise any of these rights:

  • Email: privacy@hault.co.uk
  • In-App: Settings → Privacy → Data Requests

We will respond to your request within one month. This may be extended by two months for complex requests.

7.3 Complaints

If you are unsatisfied with how we handle your data, you have the right to complain to the Information Commissioner's Office (ICO):

Website: ico.org.uk

Phone: 0303 123 1113

Post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

8. Cookies and Tracking

8.1 What Are Cookies?

Cookies are small text files stored on your device when you visit websites or use apps. They help us provide a better experience and understand how you use the Platform.

8.2 Cookies We Use

Strictly Necessary Cookies

Session authentication, security tokens, load balancing. Cannot be disabled.

Functional Cookies

Language preferences, saved settings, recently viewed items.

Analytics Cookies

Usage patterns, feature engagement, performance metrics. Can be disabled.

Marketing Cookies (with consent)

Advertising effectiveness, personalised content. Requires consent.

8.3 Managing Cookies

Most browsers allow you to block or delete cookies through settings. Note that blocking all cookies may affect Platform functionality. You can also access Settings → Privacy → Cookie Preferences in our app.

9. International Transfers

9.1 Where Your Data Goes

Your data is primarily stored in the UK and European Economic Area (EEA). However, some of our service providers operate internationally, particularly Stripe and Google (United States).

9.2 Transfer Safeguards

When your data is transferred outside the UK, we ensure adequate protection through:

  • Adequacy Decisions: Transfers to countries the UK recognises as having adequate data protection
  • Standard Contractual Clauses: EU/UK-approved contract terms with recipients
  • Binding Corporate Rules: Where applicable

You can request details of the safeguards we use by contacting privacy@hault.co.uk.

10. Children's Privacy

10.1 Age Restrictions

The Platform is not intended for individuals under 18 years of age. We do not knowingly collect personal data from children.

10.2 Parental Notice

If you believe we have collected data from a child under 18, please contact us immediately at privacy@hault.co.uk. We will take steps to delete such information.

11. Changes to This Policy

11.1 Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

11.2 Notification

For material changes, we will:

  • Update the "Last Updated" date
  • Notify you by email (if you have an account)
  • Display a prominent notice on the Platform
  • Provide at least 14 days' notice before changes take effect

12. Contact Us

Hault Limited

General Support: support@hault.co.uk

Data Protection Officer: dpo@hault.co.uk

Privacy Team: privacy@hault.co.uk

Website: https://hault.co.uk

By using Hault, you acknowledge that you have read and understood this Privacy Policy.

← Back to HomeTerms of Service →