Ready for UKHome
Privacy Policy · Last updated 20 May 2026

Privacy Policy

What we collect, how we use it, who we share it with, and your rights under UK GDPR. We try to collect as little as we need to run the service.

1. Who is the data controller

Ready for UK is a trading name of James Canavan, a UK sole trader based in Belfast, Northern Ireland. Registered with the UK Information Commissioner’s Office under reference C1938335 — verifiable on the public ICO register. Contact: hello@readyforuk.co.uk.

2. What we collect

From you directly:

  • Email — used to send your sign-in magic link and (after purchase) payment receipts.
  • Name — if you provide one when signing in. Optional.
  • Preferred explanation language and test date — set during onboarding. Optional, changeable.

As you use the product:

  • Question attempts — which questions you answered, what you picked, whether it was correct, how long you spent, and whether you used the translation or vocabulary helper.
  • Vocabulary lookups — the English word and the language you wanted it explained in. Used to cache definitions so we don’t look them up twice.
  • Mock exam history — start time, end time, score, pass/fail.
  • Product events — sign-in, paywall hits, checkout starts. Used to understand how people move through the funnel.

From your payment:

  • Payment metadata from Stripe — that you paid, when, and the Stripe customer ID. We never receive your card number, CVV, or expiry date.

3. How we use it

To run the product:

  • Email → send you a sign-in link.
  • Question attempts → calibrate your readiness score, show the right next question, and pace your practice.
  • Payment status → unlock the full content for you.
  • Product events → measure the funnel so we know which parts of the product to improve.

We don’t sell your data. We don’t add you to marketing email lists — the only emails you’ll receive are transactional (sign-in links, receipts, occasional updates if you have an open refund or support thread). We do run paid adverts on Meta (Facebook / Instagram) to reach new users — see Section 7 for how Meta’s tracking works on this site and how to switch it off.

4. Who processes it

We use these third parties under data-processing agreements that bind them to our instructions and to UK / EU data protection law:

  • Neon (Postgres database, eu-west-2 / London region) — stores your account, preferences, and attempt history.
  • Resend — sends your sign-in magic-link emails. Holds your email address for delivery purposes.
  • Stripe — processes your £9.99 payment. Holds your card details so we don’t have to.
  • Vercel — hosts the website and runs the application code. May see your request headers (including IP) for delivery and abuse prevention.
  • OpenAI — used internally to generate and review explanations and vocabulary definitions. We do not send your personal data or your attempt history to OpenAI. Only the question text and the word you want defined are processed.
  • PostHog (EU region) — when you accept analytics cookies, receives the product events we log internally (sign-in, paywall hits, checkout starts). Configured for EU data residency.
  • Meta (Facebook / Instagram) — when you accept analytics cookies, the Meta Pixel and Conversions API let us measure which of our adverts on Facebook / Instagram lead to sign-ups and purchases. Data shared: a hashed copy of your email address (one-way, can’t be reversed), the page you’re on, the action you took (e.g. signed up, paid), and your IP address. Meta processes this in the US under their data-protection commitments. We do not share data with Meta for advertising to anyone other than you. You can switch this off via the link in Section 7.

5. How long we keep it

Your account and its data are kept for as long as the account is active. If you delete your account or ask us to delete your data, we remove your personal data from our database within 30 days. We retain anonymised payment records as required by UK accounting law (typically 6 years).

6. Your rights

Under UK GDPR you can:

  • Ask for a copy of the data we hold on you (subject access).
  • Ask us to correct anything that’s wrong.
  • Ask us to delete your account.
  • Withdraw consent for processing (where consent is the legal basis).
  • Complain to the UK Information Commissioner’s Office at ico.org.uk if you believe we’ve mishandled your data.

To exercise any of these, email hello@readyforuk.co.uk from the email address on your account.

7. Cookies and similar

We use cookies for things that need to work and, with your consent, for analytics:

  • Authentication cookie — keeps you signed in. Set by Auth.js, expires when your session ends.
  • Language preference cookie (rfuk-lang) — remembers which language you picked on the landing page or sample so we can show the sample explanation in that language.
  • Attribution cookie (rfuk-attr) — set only when your visit carries a marketing tag (a utm_* parameter in the URL) or comes from an external website. Remembers which campaign brought you here so we can measure which marketing channels work for us. First-party, never shared with advertisers, never read by third-party scripts. Expires after 30 days. Legal basis: our legitimate interest in measuring the effectiveness of our own marketing; you can clear it from your browser at any time.
  • Session cookie (rfuk-sid) — a random identifier set on your first visit so we can measure how people move through the product (e.g. landed → tried the sample → paid). Lets us link the pages you visit before signing in with the account you eventually create. First-party, never shared with advertisers, never read by third-party scripts. Expires after 180 days. Legal basis: our legitimate interest in understanding how the product is used; you can clear it from your browser at any time.
  • Analytics cookies (PostHog — ph_*) — set only if you tap “Accept all” on the cookie banner. PostHog (EU region) helps us understand which parts of the product work well and which don’t. Set by a third party (PostHog), bound by our data-processing agreement with them. Legal basis: your consent. You can withdraw at any time via the link below or by clearing this site’s storage in your browser.
  • Meta Pixel cookies (_fbp, _fbc) — set only if you tap “Accept all” on the cookie banner. Meta uses these (alongside the server-side Conversions API) to measure which of our adverts brought you here and what you did after arriving. Cookies are first-party (set on readyforuk.co.uk, not on facebook.com) but the matched event data is shared with Meta as described in Section 4. Legal basis: your consent. You can withdraw at any time via the link below.

We don’t share cookie data with advertisers other than Meta, and Meta only receives it when you’ve explicitly accepted analytics cookies. PostHog and the Meta Pixel are the only third-party tools that set cookies on this site.

8. Changes

We may update this policy. We’ll change the “last updated” date at the top and, for material changes, email registered users before they take effect.

9. Refunds

This is the canonical statement of our refund policy. The shorter version on the pricing card and FAQ links here.

Window: 7 days from purchase.

Condition: you have not started a mock exam against the timer. Practice mode use, free questions, and reading explanations don’t affect eligibility. Once you start a mock exam, you’ve used the headline feature you paid for and the refund window closes.

How: email hello@readyforuk.co.uk from your account email. We verify against your purchase date and mock-exam history. If eligible, the refund returns to your original payment method via Stripe within a few business days.

UK 14-day cooling-off waiver: at Stripe Checkout we ask you to confirm immediate access and waive the 14-day cancellation right that the UK Consumer Contracts Regulations 2013 grants for digital content. Our policy above (7 days, no mock exam started) is what stands.

Looking for the Terms of Service? Read them here.