Privacy policy

Privacy Policy

Last updated: February 25, 2026

  1. Scope and Applicability

    This Privacy Policy explains how FlightScope (FlightScope, we, us, or our) collects, uses, discloses, and protects personal data when you:

    • visit our websites;

    • create or use an account;

    • purchase Products;

    • use our Services; or

    • otherwise interact with us.

    This Privacy Policy is drafted in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

  2. Lawful Bases for Processing

    We process personal data only where one or more lawful bases under the UK GDPR apply, including:

    1. Performance of a contract

      (e.g. processing orders, providing Products or Services, customer support)

    2. Compliance with legal obligations

      (e.g. accounting, tax, regulatory requirements)

    3. Legitimate interests

      (e.g. fraud prevention, network security, service improvement), where such interests are not overridden by your rights

    4. Consent

      (e.g. marketing communications, non-essential cookies)

      Where processing is based on consent, you may withdraw your consent at any time.

    5. Establishment, exercise, or defence of legal claims

  3. Categories of Personal Data

    We may process the following categories of personal data:

    1. identification data (such as name or username);

    2. contact details (such as email address, telephone number, billing, postal, and shipping addresses);

    3. account credentials;

    4. order and transaction data;

    5. payment-related information (processed securely by payment service providers);

    6. customer support communications;

    7. device and usage data;

    8. marketing preferences.

    We do not intentionally process special category personal data.

  4. Purposes of Processing

    Personal data is processed for the following purposes:

    1. creating and managing user accounts;

    2. processing orders and payments;

    3. delivering Products and Services;

    4. providing customer support, repairs, and warranty services;

    5. managing subscriptions and service plans;

    6. preventing fraud and ensuring security;

    7. complying with legal and regulatory obligations;

    8. sending marketing communications, where permitted;

    9. analysing website usage and improving our services (with consent where required).

  5. Cookies and Similar Technologies

    We use cookies and similar technologies on our websites.

    Strictly necessary cookies are required for website operation and do not require consent.

    Analytics, preference, and marketing cookies are used only with your prior consent.

    You may manage or withdraw your cookie preferences at any time via our cookie settings.

    Further information is available in our Cookies Policy.

  6. Data Sharing and Recipients

    We may share personal data with:

    1. secure payment service providers;

    2. logistics and delivery partners;

    3. IT, hosting, and cloud service providers;

    4. professional advisers (including legal, accounting, and audit advisers);

    5. public authorities where required by law.

    All recipients process personal data subject to appropriate contractual, confidentiality, and security obligations.

  7. International Data Transfers

    Where personal data is transferred outside the United Kingdom, we ensure appropriate safeguards are in place, which may include:

    1. adequacy regulations issued by the UK government;

    2. International Data Transfer Agreements or Addenda approved under UK law; or

    3. supplementary technical and organisational measures where required.

  8. Data Retention

    Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected, including compliance with legal, accounting, and regulatory obligations.

    Retention periods vary depending on the nature of the data and applicable legal requirements.

  9. Marketing and Other Communications

    1. Marketing Communications

      FlightScope may send marketing communications by electronic means (including email, SMS, or similar methods) only where permitted by applicable law.

      In the United Kingdom, electronic marketing communications are sent in accordance with the UK GDPR and the Privacy and Electronic Communications (EC Directive) Regulations 2003 (PECR).

      Where consent is required, we will send marketing communications only if you have given your prior consent. You may withdraw your consent at any time using the unsubscribe option included in each communication or by contacting us.

      Withdrawal of marketing consent does not affect service-related communications.

    2. Service and Account Communications

      We may contact you regarding your orders, account, subscriptions, or customer support matters. These communications are not marketing and do not require consent.

  10. Your Rights

    Under the UK GDPR and the Data Protection Act 2018, you have the right to:

    1. access your personal data;

    2. request rectification of inaccurate or incomplete data;

    3. request erasure of personal data;

    4. request restriction of processing;

    5. object to processing based on legitimate interests or direct marketing;

    6. request data portability;

    7. withdraw consent at any time where processing is based on consent;

    8. lodge a complaint with the UK supervisory authority.

    Requests may be submitted to privacy@flightscope.com.

  11. Security Measures

    We implement appropriate technical and organisational measures designed to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.

    No method of transmission or storage is completely secure, but we regularly review and improve our security practices.

  12. Complaints and Supervisory Authority

    If you believe your data protection rights have been infringed, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) in the United Kingdom.

  13. Children’s Data

    Our websites and services are not intended for children under the age of 13.

    We do not knowingly collect personal data from children without verifiable parental consent where required by law.

  14. Updates to This Policy

    We may update this Privacy Policy from time to time to reflect changes in legal requirements or our processing practices. The most current version will always be available on our website.

  15. Data Controller and Contact Details

    FlightScope is the data controller for the purposes of this Privacy Policy.

    For questions or requests regarding this Policy, please contact privacy@flightscope.com