Login
Login
← All Legal Documents

Privacy Policy

Version 1.0·Last updated: March 2026·8 min read

This Privacy Policy applies between you, the User, and Moored Solutions LTD (Company Number: 15104138), the owner and provider of app.mooredsolutions.com. Moored Solutions LTD is registered at 71-75 Shelton Street, Covent Garden, London, United Kingdom WC2H 9JQ.

Moored Solutions LTD is committed to protecting your privacy. This policy outlines how we collect, use, store, and share your personal data in compliance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations 2003.

1 - Data Controller

Moored Solutions LTD is the data controller for platform-level data, which includes your account information, transaction records, and communication preferences. When you interact with a specific harbour, marina, or yacht club through our platform, that location may also act as a data controller for the data they collect through our services.

For any data protection enquiries, please contact us at jamie-crisp@moored-solutions.com.

2 - Data We Collect

We collect the following categories of personal data:

2.1 - Contact details: name, email address, phone number, and postal address.

2.2 - Vessel details: boat name, make, model, dimensions, registration number, insurance details, and identification numbers.

2.3 - Booking and transaction data: booking dates, mooring allocations, visit history, waitlist positions, payment amounts, payment status, and refund details.

2.4 - Account and authentication data: hashed passwords, session tokens, IP addresses, and browser user agent strings.

2.5 - Communication data: email delivery metadata, consent status, and communication preferences.

2.6 - Rewards and loyalty data: accumulated nights, claims, and loyalty points.

2.7 - Technical data collected automatically: IP address, browser type and version, operating system, pages visited, time spent on pages, and referring URLs.

Data is collected either directly from you (when you create an account, make a booking, or contact us) or automatically through technologies like cookies.

3 - Lawful Bases for Processing

Under Article 6 of the UK GDPR, we process your personal data on the following lawful bases:

3.1 - Performance of a contract (Article 6(1)(b)): To maintain your account, store your booking receipts and transaction history, facilitate your access to harbour and marina locations, process payments, and fulfil bookings.

3.2 - Legitimate interests (Article 6(1)(f)): To operate, secure, and improve the platform, prevent fraud, facilitate your access to multiple locations, and send platform-level communications such as account notifications and receipts. Our legitimate interests do not override your fundamental rights and freedoms.

3.3 - Consent (Article 6(1)(a)): For the use of analytics and session-recording technologies, including Microsoft Clarity. You can withdraw consent at any time through our cookie consent mechanism or in your account settings.

3.4 - Legal obligation (Article 6(1)(c)): To comply with tax, accounting, and regulatory requirements, including HMRC obligations.

4 - How We Use Your Data

Your data is used for: maintaining your account and providing portal access; processing and managing bookings and payments; storing transaction receipts and booking history; managing your communication preferences; facilitating access to multiple harbour and marina locations; sending platform-level communications such as account notifications, receipts, and service updates; administering rewards and loyalty tracking; and operating, monitoring, and improving the platform.

We will not use your data for purposes incompatible with those described in this policy, and we will not sell or share your data with third parties for their own marketing purposes.

5 - Third-Party Recipients

We share your data with the following categories of third-party service providers who process data on our behalf: cloud hosting and infrastructure providers, payment processors, email delivery services, SMS providers, error monitoring services, and analytics providers. Some of these providers are based in the United States. Where data is transferred outside the UK, we ensure appropriate safeguards are in place under Article 46 of the UK GDPR, which may include the UK Extension to the EU-US Data Privacy Framework, the UK International Data Transfer Addendum, the UK Addendum to EU Standard Contractual Clauses, or binding corporate rules approved by the ICO.

Your persistent personal data (database records and uploaded documents) is stored within the European Economic Area. If any transfer mechanism we rely upon is invalidated by a court or regulatory authority, we will promptly implement an alternative lawful mechanism or cease the relevant transfer.

6 - Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law:

6.1 - Account and customer data: retained for as long as your account is active and for 5 years following your last activity on the platform. After this period, your personal data is anonymised so that it can no longer be associated with you. Anonymised records may be retained indefinitely for analytical and operational purposes.

7 - Data Security

We implement appropriate technical and organisational security measures to ensure a level of security appropriate to the risk, in accordance with Article 32 of the UK GDPR. These include password hashing, encrypted data transmission (TLS), secure server infrastructure, and role-based access controls.

8 - Your Rights

Under the UK GDPR, you have the following rights in relation to your personal data:

8.1 - Right of access: You can request a copy of the personal data we hold about you.

8.2 - Right to rectification: You can request correction of inaccurate or incomplete data. You can also update your data directly through your account portal.

8.3 - Right to erasure: You can request deletion of your personal data. You can also delete your account directly through the platform, which will automatically process the deletion of your associated data.

8.4 - Right to restrict processing: You can request that we restrict the processing of your data in certain circumstances.

8.5 - Right to data portability: You can request your data in a commonly used, machine-readable format.

8.6 - Right to object: You can object to processing based on legitimate interests.

8.7 - Right to withdraw consent: Where processing is based on consent (e.g. analytics cookies), you can withdraw consent at any time. Withdrawal does not affect the lawfulness of processing before withdrawal.

To exercise any of these rights, contact us at jamie-crisp@moored-solutions.com. We will respond within one month as required by law.

If you are unsatisfied with how your complaint is handled, you may refer it to the Information Commissioner's Office (ICO) at ico.org.uk.

9 - Third-Party Links

Our platform may contain links to third-party websites. This Privacy Policy does not apply to those websites. We encourage you to read their privacy policies.

10 - Changes to This Policy

We may update this Privacy Policy from time to time. Where changes are material, we will notify registered users by email and display a notice on the platform. The latest version will always be available on this page.

In case of changes in business ownership, your data may be transferred to new owners or prospective purchasers, subject to the same data protection obligations.

11 - Governing Law

This policy is governed by the laws of England and Wales. Any disputes shall be subject to the exclusive jurisdiction of the courts of England and Wales.

Moored Solutions LTD · Company Number: 15104138 · jamie-crisp@moored-solutions.com