Privacy Policy

Last updated: 7 April 2026

This Privacy Policy explains how WEEEK LLP ("WEEEK", "we", "us", or "our") collects, uses, stores, and shares personal data when you visit weeek.co.uk, create or use a WEEEK account, use our web or mobile applications, contact us, or otherwise interact with our services (together, the "Services").

This Privacy Policy is intended to support our obligations under applicable data protection laws, including the UK GDPR and the Data Protection Act 2018.

1. Who we are

WEEEK LLP is the operator of the Services available through weeek.co.uk.

Controller details:

• Legal name: WEEEK LLP
• Registered office and correspondence address: STONEY WORKS, 8 STONEY LANE, LONDON, ENGLAND, SE19 3BD, UNITED KINGDOM
• Company number: OC460056
• Contact email: admin@weeek.co.uk

For privacy-related questions, requests, or complaints, please contact us at admin@weeek.co.uk.

2. Scope of this Privacy Policy

This Privacy Policy applies to:

• our public website at weeek.co.uk;
• our web application and any associated mobile or desktop apps branded as WEEEK;
• communications with us relating to the Services;
• any sales, support, onboarding, demo, marketing, or account management interactions connected with the Services.

This Privacy Policy does not apply to third-party websites, apps, or services that we do not control, even if they are linked from our Services.

3. The personal data we collect

The categories of personal data we may collect depend on how you interact with the Services.

A. Information you provide directly

We may collect:

• name;
• work email address;
• account login credentials;
• company or workspace information;
• profile details such as avatar, job title, timezone, or language;
• support requests, feedback, survey responses, and other communications;
• information you upload to the Services, including tasks, comments, files, documents, descriptions, and related workspace content.

B. Information collected automatically

When you use the Services, we may automatically collect:

• IP address;
• device identifiers;
• browser type and version;
• operating system;
• app version;
• referral URLs;
• date and time of access;
• log data and diagnostic data;
• usage and interaction data, such as pages viewed, clicks, sessions, feature usage, and performance events;
• cookie and similar technology data.

C. Information from third parties

We may receive personal data from third parties, for example:

• identity, fraud prevention, or security providers;
• single sign-on or integration providers;
• publicly available business information sources.

4. How we use personal data

We use personal data for the following purposes:

• to provide, operate, maintain, and secure the Services;
• to create and manage accounts and workspaces;
• to authenticate users and prevent fraud, abuse, and unauthorized access;
• to host, sync, back up, and display user content within the Services;
• to provide customer support, onboarding, and account administration;
• to communicate service-related notices, updates, and security alerts;
• to improve the performance, functionality, design, and reliability of the Services;
• to analyze usage trends and understand product adoption;
• to comply with legal obligations and enforce our legal rights;
• to send marketing communications where permitted by law or where you have consented.

5. Our lawful bases for processing

Under UK data protection law, we rely on one or more of the following lawful bases:

Contract

We process personal data where necessary to provide the Services to you, administer your account, and fulfil our contractual obligations.

Legitimate interests

We process personal data where it is reasonably necessary for our legitimate interests, including:

• operating and improving the Services;
• securing our systems, accounts, and infrastructure;
• preventing fraud, misuse, and other harmful activity;
• responding to user requests and supporting customers;
• understanding how the Services are used;
• conducting internal reporting, planning, and service development;
• promoting our Services to business users in a proportionate way where permitted by law.

When we rely on legitimate interests, we consider and balance any potential impact on your rights and freedoms.

Legal obligation

We process personal data where necessary to comply with applicable laws, regulations, court orders, lawful requests, tax obligations, accounting requirements, or regulatory duties.

Consent

Where required by law, we rely on your consent, for example for certain cookies or optional marketing communications. You can withdraw consent at any time, but this does not affect the lawfulness of processing carried out before withdrawal.

6. Cookies and similar technologies

We use cookies and similar technologies to operate the website and Services, remember preferences, analyze traffic and usage, and support security and performance.

We may use:

• strictly necessary cookies;
• analytics cookies;
• preference cookies;
• marketing or advertising cookies, if applicable.

Where required, we will ask for consent before using non-essential cookies. You can also manage cookies through your browser settings.

7. Marketing communications

We may send you service messages that are necessary for account administration, security, billing, or product operations.

We may also send marketing messages about our Services where permitted by law or where you have opted in. You can unsubscribe from marketing communications at any time by using the unsubscribe link in the message or by contacting us at admin@weeek.co.uk.

8. How we share personal data

We may share personal data with:

• hosting and cloud infrastructure providers;
• security, fraud prevention, and monitoring providers;
• professional advisers, auditors, insurers, and legal counsel;
• affiliates or successors in connection with a merger, acquisition, restructuring, financing, or sale of assets;
• law enforcement, regulators, courts, or other parties where disclosure is required by law or necessary to protect rights, safety, or the Services.

We do not sell personal data in the ordinary meaning of that term.

9. International transfers

Your personal data may be processed in countries outside the United Kingdom. Where we transfer personal data internationally, we take appropriate steps to protect it, including using contractual safeguards, adequacy decisions, or other lawful transfer mechanisms where required.

10. Data retention

We retain personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Services, maintain business records, resolve disputes, enforce agreements, and comply with legal obligations.

Retention periods may vary depending on the type of data, the nature of the relationship, legal requirements, and operational needs.

When personal data is no longer required, we will delete, anonymize, or securely archive it as appropriate.

11. Security

We use appropriate technical and organizational measures designed to protect personal data against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

However, no internet-based service can be guaranteed to be completely secure, and you use the Services at your own risk.

12. Your rights

Depending on your location and applicable law, you may have the right to:

• request access to your personal data;
• request correction of inaccurate or incomplete personal data;
• request erasure of your personal data;
• request restriction of processing;
• object to certain processing;
• request data portability;
• withdraw consent where processing is based on consent;
• complain to a supervisory authority.

To exercise your rights, contact us at admin@weeek.co.uk. We may need to verify your identity before fulfilling your request.

If you are in the UK and believe your data protection rights have been infringed, you may complain to the Information Commissioner's Office (ICO) via ico.org.uk.

13. Children's privacy

The Services are intended for business and professional use and are not directed to children. We do not knowingly collect personal data from children where prohibited by law. If you believe that a child has provided personal data to us inappropriately, please contact us so we can investigate and take appropriate action.

14. Third-party services and integrations

The Services may include links to third-party websites, products, or services, or support integrations with third-party tools. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy notices before providing personal data to them.

15. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our Services, legal obligations, or data practices. When we do, we will update the "Last updated" date above. If changes are material, we may also provide additional notice through the Services or by email where appropriate.

16. Contact us

If you have questions about this Privacy Policy or our data practices, please contact:

WEEEK LLP
STONEY WORKS, 8 STONEY LANE
LONDON, ENGLAND, SE19 3BD
UNITED KINGDOM
Email: admin@weeek.co.uk

17. App Store privacy note

If you distribute a WEEEK mobile app through the Apple App Store, this Privacy Policy is intended to serve as the public Privacy Policy URL required for App Store distribution. Please ensure the final published version accurately reflects your actual data collection, tracking, integrations, and retention practices before submission.