SmartC

Transparency & trust

Legal

Find SmartC’s policies and compliance information in one place: privacy, terms, security, and data processing.

Privacy Policy

How we collect, use, share, and protect personal data under UK GDPR.

Terms & Conditions

Your rights and responsibilities when using the service.

Cookies

What cookies we use and how to control them.

Security Overview

✓ Encryption in transit (HTTPS/TLS) and at rest.
✓ Role-based access control & least privilege.
✓ 2FA and session/device management.

✓ Per-submission audit logs & activity history.
✓ Regular backups and disaster recovery testing.
✓ GDPR-aligned data lifecycle management.

Read Privacy Policy

Data Processing Addendum (DPA)

If you are a firm (controller) and use SmartC as a processor, our DPA forms part of the Terms and sets out the subject matter and duration of processing, nature and purpose, type of personal data, and data subject categories.

See DPA section in Terms

Sub-processors

We use carefully selected sub-processors to deliver the service. We will update this list before making material changes.

Name	Purpose	Region
Stripe	Payments & billing	EU/US
Email provider	Transactional emails	EU/UK
Cloud hosting	App & data hosting	EU/UK

Want a signed copy or custom DPA terms? Contact us.

Questions about our policies?

We’re happy to clarify anything in plain English.