Privacy Policy
Last updated: 28 February 2026
This Privacy Policy explains how OWWARE Ltd (“we”, “us”, “our”) collects, uses, stores, and protects personal data in connection with the DeDuplica service (“Service”), operated at deduplica.net and app.deduplica.net.
We are committed to protecting your privacy and handling your data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Data Controller: OWWARE Ltd, Company Number 12026913 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ
1. What Data We Collect
1.1 Account and Contact Data
When you register for or use the Service, we may collect:
- Name and email address
- Organisation name and job title
- Billing address and payment information (processed by our payment provider; we do not store card details)
- Communications you send us
1.2 Usage and Technical Data
We automatically collect certain technical data when you use the Service, including:
- IP address and browser type
- Pages visited and features used within the application
- Session duration and interaction events
- Error logs and diagnostic data
This data is collected to operate and improve the Service and is not used to identify you individually except where necessary for security or support purposes.
1.3 Analytics Data
We use Google Analytics to collect anonymised information about how visitors use our website. This includes pages viewed, referral sources, and approximate geographic location (country/region level). Individual users are not identified. You can opt out of Google Analytics tracking via the Google Analytics Opt-out Browser Add-on.
1.4 Data You Connect to the Service
When you use DeDuplica to process your databases or CRM data (“Customer Data”), we act as a data processor on your instructions. You remain the data controller for all Customer Data. We process Customer Data solely to provide the Service you have requested and do not use it for any other purpose.
Enterprise plan customers using the Local Agent option process Customer Data entirely within their own infrastructure. In that case, Customer Data does not pass through our servers at all.
2. How We Use Your Data
We use personal data we collect for the following purposes and legal bases:
| Purpose | Legal Basis |
|---|---|
| Providing and operating the Service | Performance of contract |
| Billing and payment processing | Performance of contract |
| Sending service-related communications (e.g. account, security notices) | Performance of contract / Legitimate interests |
| Responding to support requests | Legitimate interests |
| Improving and securing the Service | Legitimate interests |
| Sending marketing communications (only with consent) | Consent |
| Complying with legal obligations | Legal obligation |
We do not sell, rent, or share your personal data with third parties for their own marketing purposes.
3. Cookies
We use strictly necessary cookies to operate the Service (e.g. session management and authentication). We also use analytical cookies (Google Analytics) to understand how the website is used.
You can control cookies through your browser settings. Disabling strictly necessary cookies may affect the functionality of the Service.
4. Data Sharing
We may share your data with the following categories of third parties, solely to deliver the Service:
- Cloud infrastructure providers — hosting and database services
- Payment processors — to handle subscription billing securely
- Analytics providers — Google Analytics (anonymised data only)
- Email service providers — to send transactional and support emails
All third-party processors are bound by data processing agreements and may only process your data on our instructions. We do not transfer personal data outside the UK/EEA except where adequate safeguards are in place (such as Standard Contractual Clauses).
We may also disclose data if required by law, court order, or to protect the rights and safety of OWWARE Ltd, its users, or the public.
5. Data Retention
We retain personal data only for as long as necessary for the purposes described in this policy, or as required by law.
| Data type | Retention period |
|---|---|
| Account data | Duration of your account, plus 90 days after closure |
| Billing records | 7 years (legal/financial obligation) |
| Usage and log data | As per your subscription plan (see Plans) |
| Support communications | 2 years from last interaction |
Customer Data processed through the Service is retained only for the period required to deliver the job results you request, after which it is deleted from our systems in accordance with our data retention schedule.
6. Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, alteration, or disclosure. These include encryption in transit (TLS), access controls, and regular security reviews.
No method of transmission over the internet is completely secure. While we take reasonable steps to protect your data, we cannot guarantee absolute security. In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and affected individuals without undue delay, as required by law.
7. Your Rights
Under UK GDPR, you have the following rights regarding your personal data:
- Right of access — request a copy of the data we hold about you
- Right to rectification — request correction of inaccurate data
- Right to erasure — request deletion of your data, subject to legal retention requirements
- Right to restriction — request that we limit processing of your data
- Right to data portability — receive your data in a structured, commonly used format
- Right to object — object to processing based on legitimate interests or for direct marketing
- Right to withdraw consent — where processing is based on consent, withdraw it at any time
To exercise any of these rights, contact us by this form. We will respond within 30 days. We may ask you to verify your identity before processing your request.
You also have the right to lodge a complaint with the UK supervisory authority:
8. Third-Party Links
Our website and documentation may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies independently.
9. Children
The Service is not directed at children under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can delete it.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by email or via a notice on our website. The “Last updated” date at the top of this page reflects the most recent revision. Continued use of the Service after changes take effect constitutes acceptance of the updated policy.
11. Contact
For any questions, concerns, or requests relating to this Privacy Policy or our data practices:
OWWARE Ltd 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ or contact us by this form