Privacy Policy.

PlainKnit is a sole trader service operating at plainknit.co.uk. If you have any questions about this policy or how we handle your data, contact us at hello@plainknit.co.uk.

We collect very little. Here is everything:

• —The knitting pattern you upload (PDF, JPG, or PNG) — used only to produce your translation, then discarded.
• —Your payment details — handled entirely by Stripe. We never see, store, or process your card number or bank details. Stripe's privacy policy applies to this data: stripe.com/gb/privacy.
• —Your email address — only if you contact us at hello@plainknit.co.uk. We do not collect email addresses automatically at any other point in the service.
• —Standard server logs — your IP address and browser type may be recorded automatically by our hosting provider (Vercel) as part of normal server operation. We do not use these logs for tracking or marketing.

We do not use cookies for tracking or advertising. We do not run analytics tools that identify individual users. We do not build profiles on our users.

Under UK GDPR, we need a lawful basis for processing personal data. Ours are:

• —Contract performance — we process your uploaded pattern in order to deliver the translation you've paid for. Without this, we cannot provide the service.
• —Legitimate interests — server logs are retained by our hosting provider for security and operational purposes. We have assessed that this does not override your privacy rights given the minimal nature of the data.
• —Consent — if you email us, you are choosing to share your email address with us. We use it only to respond to your message.

We keep your data for as short a time as possible:

• —Uploaded pattern files — deleted immediately after your translation is generated. We do not retain copies.
• —Payment records — Stripe retains transaction records in accordance with their own retention policy and applicable financial regulations. We retain only what Stripe passes to us (a transaction reference and amount) for our own accounting purposes, for up to 7 years as required by HMRC.
• —Emails — if you contact us, we keep your email for as long as reasonably necessary to resolve your query, then delete it.
• —Server logs — retained by Vercel in accordance with their data retention policy, typically 30 days.

We share data only with the following third-party processors, and only to the extent necessary to operate the service:

• —Stripe — payment processing. Stripe is PCI DSS compliant and processes all card data on our behalf. stripe.com/gb/privacy
• —Vercel — website hosting and serverless functions. Your uploaded files pass through Vercel's infrastructure. vercel.com/legal/privacy-policy
• —Anthropic — the AI model that performs the translation. Your uploaded pattern is sent to Anthropic's API to generate the plain English output. anthropic.com/privacy

We do not sell your data. We do not share it with advertisers or marketing platforms. We do not transfer it outside the UK/EEA except where our third-party processors operate internationally (Stripe, Vercel, and Anthropic are US-based companies with standard contractual safeguards in place).

Under UK GDPR, you have the following rights:

• —The right to access — you can ask us what personal data we hold about you.
• —The right to erasure — you can ask us to delete your personal data. Given we retain very little, this is usually straightforward.
• —The right to rectification — if data we hold about you is inaccurate, you can ask us to correct it.
• —The right to object — you can object to us processing your data where we rely on legitimate interests as our basis.
• —The right to complain — if you believe we've mishandled your data, you have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk.

To exercise any of these rights, email us at hello@plainknit.co.uk. We will respond within one month.

We take reasonable precautions to protect your data. All data is transmitted over HTTPS. Payments are handled by Stripe, which is PCI DSS Level 1 certified — the highest level of payment security certification available. We do not store card data of any kind.

If we make material changes to this policy, we will update the date at the top of this page. We recommend checking it occasionally if you use the service regularly.

Questions about this policy? Email us at hello@plainknit.co.uk. A real person reads every message.