Privacy Policy

Last updated: 17 December 2025

1A. Business Onboarding Information

When you complete your business onboarding, we collect additional information about you and your business. This information is used to set up your Simply Link account, assess eligibility for Stripe Connect, comply with financial regulations, and protect the platform from fraud or misuse.

  • Your business name
  • Your profession or service type
  • Your intended use of Simply Link
  • Your estimated monthly payment volume
  • Your postcode area (first part only, e.g. “PL4”)
  • Your website URL (if provided)
  • Your business description

This information forms part of your account profile and may be shared with Stripe where required to comply with their Connected Account rules.

2. How We Use Your Information

We use your information for the following purposes:

  • Service Provision: To provide payment processing services and manage your account
  • Payment Processing: To facilitate payments between you and your clients
  • Communication: To send payment reminders, service updates, and important notifications
  • Security: To protect against fraud and ensure the security of our platform
  • Improvement: To analyze usage patterns and improve our services
  • Legal Compliance: To comply with legal obligations and regulations

2A. Fraud detection, safety checks, and risk assessment

To protect our users, Stripe, and Simply Link from fraud, financial crime, and misuse of the platform, we operate automated and manual risk checks. These checks involve processing certain information about your account, business, activity, and payment behaviour.

This may include:

  • Your onboarding information and business category
  • Patterns in payment link creation and usage
  • Dispute and chargeback history
  • Estimated revenue and transaction volume
  • IP address, device information, and general location
  • Keywords or descriptions relating to potentially prohibited services

Based on this information, the platform may assign internal indicators such as fraud score , risk flags , or account status (for example: active, review, or blocked). These indicators help us determine whether we can safely continue providing services to your account.

Where required, this information may be shared with Stripe to comply with their global risk and compliance obligations as a regulated payment provider.

2B. How risk decisions affect your account

Depending on the outcome of risk checks, we may take actions including:

  • requesting additional information
  • temporarily restricting access to certain features
  • pausing the ability to create new payment links
  • blocking prohibited or high-risk activity
  • reviewing or suspending your account
  • informing Stripe where required by their policies

These actions are necessary to protect the platform and comply with Stripe Connect policies. Failure to provide requested information may result in suspension or termination of your account.

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contract: To fulfill our service agreement with you
  • Legitimate Interest: For security, fraud prevention, and service improvement
  • Consent: For marketing communications (where you have opted in)
  • Legal Obligation: To comply with tax and financial regulations

In addition, we process onboarding information, fraud indicators, dispute-related data, behavioural patterns, and risk signals under Legitimate Interest (platform security and fraud prevention) and Legal Obligation (compliance with Stripe Connect, financial regulations, and anti-fraud requirements). These processing activities are required to keep the platform safe for all users and to meet our obligations as a Stripe Connect platform.

3A. Stripe Connect and Connected Account Data

When you connect your Stripe account to Simply-Link using Stripe Connect, we access certain data from your Stripe account ("Connected Account Data"). This is necessary to provide our Platform Services to you.

What Connected Account Data We Access:

  • Account Information: Stripe account ID, account status, verification status, business type
  • Transaction Data: Payment amounts, payment status, transaction history, refund information
  • Payout Information: Payout schedules, payout history (amounts and dates only, not bank details)
  • Dispute Data: Chargeback information and dispute status
  • Customer Data: Customer email addresses associated with transactions (to send payment links and reminders)

How We Use Connected Account Data:

  • Display your payment history and transaction details in your dashboard
  • Calculate and display fees and net amounts
  • Send payment confirmations and receipts to your customers
  • Send payment reminders for unpaid links
  • Generate reports and analytics about your payments
  • Detect and prevent fraud
  • Comply with legal and regulatory requirements

Data Sharing with Stripe:

As required by the Stripe Connect Platform Agreement, we share information about you with Stripe, including:

  • Your email address and account details
  • Your business information (name, type, address)
  • Transaction data related to payments processed through your links
  • Information necessary for compliance and fraud prevention

Stripe processes this information according to their Privacy Policy . We have no control over, and assume no responsibility for, Stripe's privacy practices.

Data Protection:

We use reasonable security measures to protect Connected Account Data from unauthorized access or disclosure. We will promptly notify you and Stripe if we become aware of any unauthorized access to or disclosure of Connected Account Data.

Stripe may request additional information from you or from Simply Link as part of their Know Your Customer (KYC), Anti-Money Laundering (AML), or fraud-prevention obligations. We are required to share such information with Stripe when requested, and your use of the platform constitutes your consent to this data sharing.

3B. Dispute and chargeback information

When a customer disputes a payment or initiates a chargeback through their bank, Stripe provides us with limited information about the dispute, including:

  • the dispute reason
  • the disputed amount
  • the dispute status and timeline
  • any evidence submitted

We use this information to update your dashboard, support you in responding to the dispute, and maintain accurate internal risk assessments. Stripe determines the outcome of the dispute, not Simply Link.

4. Data Sharing and Third Parties

We may share your information with:

  • Stripe: For payment processing and Stripe Connect services (see section 3A above). Review their Privacy Policy
  • Resend: For email delivery services
  • Supabase: For database and hosting services
  • Legal Authorities: When required by law or to protect our rights

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

5. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data
  • Right to Portability: Receive your data in a structured format
  • Right to Object: Object to processing of your data
  • Right to Withdraw Consent: Withdraw consent for marketing communications

To exercise these rights, contact us at support@simply-link.co.uk

6. Data Retention

We retain your data for the following periods:

  • Account Data: Until you delete your account or request deletion
  • Payment Records: 7 years (for tax and financial compliance)
  • Logs and Analytics: 90 days
  • Marketing Data: Until you withdraw consent

7. Data Security

We implement appropriate security measures to protect your data:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication
  • Secure hosting with industry-standard security

8. International Transfers

Your data may be processed in countries outside the European Economic Area (EEA). We ensure appropriate safeguards are in place for such transfers, including:

  • Adequacy decisions by the European Commission
  • Standard contractual clauses
  • Other appropriate safeguards

9. Cookies and Tracking

We use cookies and similar technologies to:

  • Maintain your session and preferences
  • Analyze website usage and performance
  • Provide security features

You can control cookie settings through your browser preferences.

10. Contact Information

If you have questions about this Privacy Policy or our data practices, contact us:

Email: support@simply-link.co.uk

Company: Simply Works LTD

Address: United Kingdom

Simply Works LTD is the Data Controller for all processing activities described in this policy. As a small business, we are not required to appoint a Data Protection Officer. For any data protection enquiries, please contact us at the email address above.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Sending you an email notification
  • Displaying a notice in your account dashboard
Back to Homepage

This site uses essential cookies and anonymous analytics to improve your experience. By continuing, you agree to our use of cookies.