Legal · Data Protection
v2.0 · June 2026
Effective Date: 1 June 2026 · Legislation: UK GDPR / DPA 2018 / PECR
Controller: WorryLess Ltd · Co. No. 17160890
Applies to: worryless.online and the Ivy application (iOS & Android)
This policy describes how WorryLess Ltd processes personal data in connection with the Ivy application and worryless.online. It is addressed to subscribers, Ivy users, and trusted contacts, and has been prepared in accordance with UK GDPR and the Data Protection Act 2018.
Section 01
WorryLess Ltd (company number 17160890, registered in England and Wales) is the data controller in respect of all personal data processed through the Ivy application and the worryless.online website. As controller, WorryLess Ltd determines the purposes and means of processing and is responsible for compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 (DPA 2018).
WorryLess Ltd is not required to appoint a Data Protection Officer under Article 37 UK GDPR at its current stage of operations, as it does not process special category data on a large scale as its core activity and is not a public authority. Nonetheless, a designated privacy contact is maintained to handle all data protection matters.
Company: WorryLess Ltd · Company No. 17160890 (England and Wales)
Registered office: [REGISTERED OFFICE ADDRESS]
Privacy enquiries: privacy@worryless.online
Security disclosures: security@worryless.online
ICO registration number: ZC146345
Telephone: We do not operate a telephone helpline. Please contact us by email at privacy@worryless.online.
Where WorryLess Ltd engages third-party organisations to process personal data on its behalf (for example, cloud infrastructure or AI service providers), those parties act as data processors under Article 28 UK GDPR contracts and may not process the data for their own purposes. The identity and role of each processor is set out in Section 9.
Section 02
The following terms have the meanings set out below throughout this policy. They are consistent with the definitions in Article 4 UK GDPR and Section 3 DPA 2018.
| Term | Definition |
|---|---|
| Controller | WorryLess Ltd — the entity that determines the purposes and means of processing personal data. |
| Processor | A third party that processes personal data on behalf of WorryLess Ltd under a written contract, acting only on documented instructions. |
| Subscriber | The individual (typically an adult child) who creates an account and pays for a WorryLess subscription. They are a data subject in their own right and also act as the person who introduces the Ivy user to the service. |
| Ivy user | The older adult who interacts directly with Ivy. This person is a distinct data subject from the subscriber, with independent rights under UK GDPR. |
| Trusted contact | A person designated by the subscriber to receive escalation alerts from Ivy. Their contact details are processed by WorryLess Ltd and they are also data subjects. |
| Personal data | Any information relating to an identified or identifiable natural person — including name, email address, device identifier, voice input, and conversation content. |
| Special category data | Personal data revealing racial or ethnic origin, political opinions, religious beliefs, trade union membership, genetic data, biometric data (for identification), health data, or data concerning sex life or sexual orientation. Subject to heightened protection under Article 9 UK GDPR. |
| IDTA | International Data Transfer Agreement — the UK mechanism for safeguarding personal data transferred to countries without a UK adequacy decision. |
| PECR | Privacy and Electronic Communications Regulations 2003 — the UK rules governing electronic marketing, cookies, and similar technologies. |
Section 03
This policy applies to the processing of personal data by WorryLess Ltd in connection with: the Ivy application (iOS and Android); the worryless.online website including the waitlist and subscription portal; all communications sent by WorryLess Ltd to subscribers, Ivy users, and waitlist members; and any B2B2C engagement where personal data relating to end users is processed.
This policy applies to three distinct categories of data subject, each with independent rights: subscribers, Ivy users, and trusted contacts. Where the subscriber and Ivy user are the same individual, the distinctions remain relevant to understanding what data is collected and on what basis.
This policy does not apply to personal data processed by third-party platforms (Apple, Google, or OpenAI) under their own privacy terms. Links to relevant third-party policies are provided in Section 9.
Section 04
WorryLess Ltd processes the minimum personal data necessary for each purpose — consistent with the data minimisation principle in Article 5(1)(c) UK GDPR.
| Category | Data elements | Source |
|---|---|---|
| Identity | Full name, email address | Provided directly at account creation |
| Financial | Payment method details (tokenised by Stripe — WorryLess Ltd does not hold card numbers or bank details), subscription tier, billing history | Collected at purchase via Stripe |
| Account | Credentials (passwords stored as salted hashes — never plain text), account creation date, last login, subscription status | Generated at account creation |
| Configuration | Names and contact details of designated Ivy users; names and contact details of trusted contacts; notification preferences | Provided during account setup |
| Communications | Support correspondence, complaint records, email engagement data (opens, clicks — where consent given) | Generated through service use |
| Category | Data elements | Source |
|---|---|---|
| Identity | First name (optional — used to personalise Ivy's responses) | Provided by subscriber or user directly |
| Interaction | Voice input (processed in real time — see Section 6), conversation transcripts, session timestamps, feature usage patterns | Generated through use of Ivy |
| Device | Device type, operating system version, app version, crash and diagnostic reports | Collected automatically by the application |
| Incidental | Any personal data volunteered within conversation — see Section 5 regarding inadvertent special category data | Provided by the user within conversation |
Where a subscriber designates trusted contacts, WorryLess Ltd processes those individuals' names and contact details (email address or phone number) for the sole purpose of delivering escalation alerts. Trusted contacts do not have accounts with WorryLess Ltd and their data is not used for any other purpose. They may request deletion at any time: see Section 15.
Because trusted contact data is provided by the subscriber (not by the trusted contact themselves), WorryLess Ltd is required by Article 14 UK GDPR to inform those individuals that their data is being processed. When a subscriber designates a trusted contact, WorryLess Ltd will send that person a notification email explaining: who we are; what data we hold; why we hold it; how long we hold it; and how they can exercise their rights or request deletion. A copy of that notice is available at privacy@worryless.online.
Individuals who join the waitlist provide their email address and, optionally, their name. This data is processed under consent (Regulation 6 PECR / Article 6(1)(a) UK GDPR) and used exclusively to communicate about the service launch, waitlist offers, and related updates.
The following sets out which personal data is required to use the Service and what happens if it is not provided, as required by Article 13(2)(e) UK GDPR.
| Data | Required or optional? | Consequence of not providing |
|---|---|---|
| Subscriber name and email address | Required to enter the contract | Cannot create an account or access the Service |
| Payment method details (via Stripe) | Required to pay the Subscription Fee | Cannot access the Service |
| Ivy user first name | Optional — used to personalise Ivy's responses | Ivy will address the user generically; no reduction in core functionality |
| Trusted contact name and contact details | Optional — required only if you wish to use the escalation feature | Escalation alerts cannot be sent; all other Service features remain available |
| Waitlist email address | Required to join the waitlist | Cannot receive waitlist communications or launch offers |
| Waitlist name | Optional | Waitlist communications will be addressed generically |
Section 05
WorryLess Ltd does not intentionally collect special category personal data as defined in Article 9(1) UK GDPR. However, the nature of the Ivy service — open-ended voice conversations with older adults — creates a material risk of inadvertent collection. The following sets out how this risk is managed.
Voice data constitutes biometric data under Article 9(1) only where it is processed for the purpose of uniquely identifying a natural person (for example, voice-print authentication). Ivy processes voice input solely to understand and respond to the content of what is said — it does not analyse voice characteristics for identification purposes and does not create or retain voice templates. Accordingly, Ivy's processing of voice input does not constitute processing of biometric data for the purposes of Article 9.
If WorryLess Ltd were in future to implement voice-based authentication, this assessment would require revision and explicit Article 9(2) conditions would need to be established before implementation.
Ivy users may, in the course of conversation, voluntarily disclose information concerning their health, cognitive capacity, or personal circumstances. WorryLess Ltd cannot prevent such disclosures. Where they occur: the disclosure is recorded within the conversation transcript as part of ordinary processing; it is not extracted, tagged, or used to build a health profile of the user; the lawful basis for this incidental processing is Article 9(2)(c) UK GDPR (vital interests, where the disclosure relates to safety) and Article 9(2)(f) (establishment, exercise or defence of legal claims), supplemented by substantial public interest grounds under Schedule 1, Part 2, paragraph 6 DPA 2018.
Important guidance for users
In the course of scam-checking interactions, Ivy users may describe financial transactions or account activity. This information is processed as part of the scam assessment only. Users are directed not to share complete bank account numbers, sort codes, PINs, or passwords with Ivy.
Section 06
Voice and conversation data is the most operationally significant category of personal data processed by WorryLess Ltd. This section provides a complete account of how it is handled at each stage of processing.
When an Ivy user speaks, audio is transmitted in real time to OpenAI's API via an encrypted connection for speech-to-speech processing and AI response generation. This processing is managed by OpenAI acting as a data processor under a Data Processing Agreement incorporating IDTA-compliant safeguards — see Sections 9 and 11.
WorryLess Ltd operates under OpenAI's Zero Data Retention (ZDR) configuration. Under ZDR, OpenAI does not persist the content of API requests or responses to storage after the response has been returned — conversation content exists only transiently in memory during inference and is not retained by OpenAI in any form thereafter. Under OpenAI's API terms, input data is not used to train OpenAI's models. These measures significantly reduce the data exposure risk associated with US-based processing and are reflected in WorryLess Ltd's Transfer Impact Assessment for this transfer.
WorryLess Ltd does not retain raw audio recordings of conversations with Ivy. Audio exists only during active transmission to and from the OpenAI API and is not stored on WorryLess Ltd's systems or infrastructure.
A text transcript of each conversation session is stored in WorryLess Ltd's Convex-hosted backend. Transcripts serve three functions: providing Ivy with conversational context in subsequent sessions; enabling subscribers to review recent interactions through the Family dashboard; and supporting WorryLess Ltd's ability to investigate complaints and demonstrate regulatory compliance. Retention of transcripts is governed by the schedule in Section 12.
WorryLess Ltd uses conversation data to improve Ivy's performance. Before any data is used for this purpose, it undergoes a rigorous anonymisation process designed to meet the ICO's published standard — that is, the risk of re-identification is reduced to a level at which it is no longer reasonably likely. Anonymised data is no longer personal data for the purposes of UK GDPR.
The anonymisation process removes: all names and pronouns that could identify an individual; account and device identifiers; references to specific locations, institutions, or relationships; and any other information that, alone or in combination, could reasonably identify the individual.
Subscribers and Ivy users may opt out of their conversation data being used for service improvement — including in anonymised form — by contacting privacy@worryless.online. Opting out does not affect provision of the service.
What Ivy does not do with conversation data
Section 07
Every processing activity conducted by WorryLess Ltd is grounded in a specific lawful basis under Article 6 UK GDPR. Where special category data is processed, a separate condition under Article 9(2) is also identified.
| Basis | Article | When applied |
|---|---|---|
| Contract performance | Art. 6(1)(b) | Processing necessary to provide the Ivy service: account management, conversation processing, escalation, billing, and customer support. |
| Legitimate interests | Art. 6(1)(f) | Service improvement, security, fraud prevention, and anonymised analytics. A Legitimate Interests Assessment (LIA) is maintained for each activity relying on this basis and is available on request. |
| Consent | Art. 6(1)(a) | Marketing communications and waitlist communications (required by Regulation 6 PECR for electronic marketing). May be withdrawn at any time without detriment. |
| Legal obligation | Art. 6(1)(c) | Financial record-keeping under the Companies Act 2006 and HMRC requirements; responding to lawful orders from courts, regulators, or law enforcement. |
| Vital interests | Art. 6(1)(d) | Exceptional circumstances only — where Ivy's processing indicates immediate risk to the life of the user or another person. Art. 9(2)(c) applies for any special category data involved. |
When relying on Article 6(1)(f), WorryLess Ltd applies a three-part test: (i) identification of a legitimate interest; (ii) necessity — whether processing is required to achieve that interest; and (iii) balancing — whether the interest is overridden by the data subject's interests, rights, or freedoms. Written LIAs are maintained internally for each such processing activity and copies are available to data subjects on request.
Where consent is the lawful basis, it may be withdrawn at any time by: (a) using the unsubscribe link in any marketing email; (b) updating preferences in account settings; or (c) emailing privacy@worryless.online. Withdrawal of consent does not affect the lawfulness of processing carried out before withdrawal, and does not affect provision of the Ivy service (which is based on contract performance, not consent).
Section 08
Personal data is processed only for the purposes for which it was collected — consistent with the purpose limitation principle in Article 5(1)(b) UK GDPR.
| Purpose | Personal data used | Lawful basis |
|---|---|---|
| 8.1 Core Ivy service — processing voice input, generating responses, scam checks, digital guidance | Voice input, conversation transcripts, account and device data | Art. 6(1)(b) |
| 8.2 Account management — accounts, subscription lifecycle, payments | Subscriber identity and financial data | Art. 6(1)(b) |
| 8.3 Family dashboard — enabling subscribers to review recent conversations (disclosed to Ivy users at onboarding) | Conversation transcripts, account configuration data | Art. 6(1)(b) |
| 8.4 Trusted contact escalation — alerting designated contacts when Ivy identifies a situation warranting escalation | Trusted contact details, conversation summary | Art. 6(1)(b) / Art. 6(1)(f) |
| 8.5 Emergency escalation — directing users to emergency services and alerting trusted contacts where immediate risk to life is identified | Minimum necessary to communicate the concern | Art. 6(1)(d) — vital interests; Art. 9(2)(c) for any special category data |
| 8.6 Service improvement — anonymised conversation data to improve Ivy | Anonymised data only (outside UK GDPR scope post-anonymisation) | Art. 6(1)(f) covers the anonymisation step itself |
| 8.7 Security and fraud prevention — detecting and preventing misuse | Technical and usage data, account data | Art. 6(1)(f) |
| 8.8 Customer support and complaints | Account data, correspondence, relevant conversation transcripts | Art. 6(1)(b) / Art. 6(1)(f) |
| 8.9 Legal compliance — meeting statutory obligations, responding to regulatory and law enforcement requests | As required by the specific obligation | Art. 6(1)(c) |
| 8.10 Marketing — updates, offers, and tips to subscribers and waitlist members who have consented | Email address, name, communication preferences | Art. 6(1)(a) — consent; Regulation 6 PECR |
WorryLess Ltd will not use personal data for any purpose incompatible with those listed above without providing fresh notice and, where required, obtaining consent. Where a new purpose is contemplated, a compatibility assessment will be conducted under Article 6(4) UK GDPR before processing commences.
Section 09
WorryLess Ltd engages the following data processors. Each is bound by a written Article 28 UK GDPR contract restricting processing to documented instructions and requiring appropriate technical and organisational security measures.
| Processor | Role | Location | Safeguard |
|---|---|---|---|
| OpenAI, Inc. | AI inference and speech-to-speech processing for Ivy. Operates under Zero Data Retention (ZDR) — content not persisted after inference. Not used to train OpenAI models. | USA | IDTA + OpenAI Data Processing Addendum. ZDR active. |
| Convex, Inc. | Backend infrastructure, database (conversation transcripts, account data), and app analytics. Operates on AWS infrastructure. | USA (AWS) | IDTA + Convex Data Processing Agreement. |
| Stripe, Inc. | Payment processing and subscription lifecycle. Tokenises payment details — WorryLess Ltd receives only a token, not card numbers or bank details. | USA / UK / EU | IDTA / Stripe DPA. Stripe maintains EU-UK transfer mechanisms. |
| [Email provider — to be confirmed] | Transactional and marketing emails. | [To be confirmed] | [IDTA or adequacy decision — confirm with provider] |
| Apple Inc. | iOS App Store distribution. Apple is an independent controller for its own App Store processing. | USA | Apple Developer Programme Agreement. |
| Google LLC | Google Play distribution. Google is an independent controller for its own Play Store processing. | USA | Google Play Developer Distribution Agreement. |
| Meta Platforms Ireland Ltd | Meta Pixel — advertising measurement, conversion tracking, and audience building for Facebook and Instagram campaigns. Meta acts as an independent controller for data processed through its advertising platform. | Ireland (EU) | UK–EU adequacy decision applies. Meta's Data Processing Terms govern the relationship. |
WorryLess Ltd maintains a current Schedule of Processors as part of its Records of Processing Activities (Article 30 UK GDPR), reviewed whenever a new processor is engaged or an existing processor relationship changes materially.
Section 10
WorryLess Ltd does not sell personal data. It does not share personal data for third-party advertising, data brokering, or commercial profiling. Disclosure occurs only in the following circumstances.
Where a subscriber has designated trusted contacts, those individuals may receive escalation alerts generated by Ivy. Alert content is limited to information reasonably necessary to understand the nature of the escalation. This disclosure is within the scope of the contracted service, and the Ivy user is informed of this feature during onboarding.
WorryLess Ltd will disclose personal data to law enforcement, regulatory authorities, or courts where required by applicable law, by a court order made under proper legal authority, or by a lawful demand from the ICO. Where legally permitted, WorryLess Ltd will notify the affected data subject of any such disclosure.
WorryLess Ltd may disclose personal data to its legal, financial, or insurance advisers where strictly necessary for obtaining professional advice or in connection with legal proceedings. Such advisers are bound by professional duties of confidentiality.
In the event of a merger, acquisition, asset sale, or other corporate restructuring, personal data may be transferred to the acquiring or successor entity. WorryLess Ltd will provide at least 30 days' written notice to subscribers before any such transfer takes effect, will ensure the receiving entity is bound by obligations no less protective than those in this policy, and will offer subscribers the right to close their accounts and request deletion prior to transfer.
In circumstances where Ivy identifies an immediate risk to the life or safety of a user or another person, WorryLess Ltd may, where technically feasible, make limited disclosures to emergency services. This processing is based on vital interests under Article 6(1)(d) and, where special category data is involved, Article 9(2)(c) UK GDPR.
Section 11
Both of WorryLess Ltd's principal infrastructure processors — OpenAI and Convex — are incorporated and operate in the United States. The United States does not benefit from a UK adequacy decision under Article 45 UK GDPR. All personal data transferred to these processors is therefore subject to a restricted transfer under Chapter V UK GDPR, and appropriate safeguards must be in place.
WorryLess Ltd relies on International Data Transfer Agreements (IDTAs) — the UK mechanism for restricted transfers, issued by the ICO under Section 119A DPA 2018 — as the lawful basis for transfers to OpenAI and Convex. Where a processor has entered into EU Standard Contractual Clauses (SCCs) with WorryLess Ltd, the UK Addendum to those SCCs (issued by the ICO) is applied.
WorryLess Ltd has conducted Transfer Impact Assessments (TIAs) in respect of transfers to OpenAI and Convex, evaluating the legal environment in the United States (including Section 702 FISA and Executive Order 14086) and the technical and contractual measures in place to protect transferred data. These assessments are maintained internally and updated whenever the legal or operational context changes materially.
In the case of OpenAI, the implementation of Zero Data Retention (ZDR) is a material supplementary measure noted in the TIA: conversation content is not persisted by OpenAI after inference, which substantially limits the window of exposure to any third-party access demand.
Copies of the relevant IDTAs or UK Addenda are available to data subjects on written request to privacy@worryless.online.
Section 12
Personal data is retained only for as long as necessary for the purposes for which it was collected, or as required by applicable law — consistent with the storage limitation principle in Article 5(1)(e) UK GDPR.
| Data category | Retention period | Legal / operational justification |
|---|---|---|
| Subscriber account data | Duration of active subscription + 6 years from final transaction | Limitation Act 1980 (6-year limitation period for contract claims); Companies Act 2006 accounting records obligation |
| Payment and billing records | 7 years from date of each transaction | HMRC requirement to retain financial records for 6 years from end of the relevant tax year, plus one year operational buffer |
| Conversation transcripts | 12 months from creation, then securely deleted | Service continuity and dispute resolution; 12-month period balances utility against data minimisation. Anonymised versions may be retained indefinitely. |
| App usage analytics | 24 months from collection | Service improvement; 24-month rolling window provides sufficient data for trend analysis |
| Trusted contact details | Until removed by subscriber, or account closure + 30 days | Operational necessity; 30-day buffer accommodates late escalation resolution |
| Waitlist email addresses | Until conversion to subscriber, or 2 years from sign-up if not converted | Consent expires where not refreshed; 2-year limit reflects reasonable expectation at sign-up |
| Support and complaint correspondence | 3 years from resolution | Limitation Act 1980; regulatory complaint window; quality assurance |
| Data subject rights requests | 3 years from completion | ICO accountability requirement; ability to demonstrate Art. 12 compliance |
| Security incident records | 5 years from incident date | Art. 33(5) UK GDPR — controller must document all breaches; regulatory investigation window |
At the end of each retention period, data is either securely deleted (using methods that render recovery impracticable) or irreversibly anonymised. Deletion is automated where technically feasible. A data deletion log is maintained for accountability purposes.
Section 13
WorryLess Ltd implements technical and organisational measures appropriate to the risk presented by its processing activities — as required by Article 32 UK GDPR. Given that the service processes conversation data of older adults, including potential disclosures of financial and welfare information, the risk profile is considered moderate-to-high.
In the event of a personal data breach, WorryLess Ltd will: (a) contain the breach and assess its scope as rapidly as possible; (b) notify the ICO within 72 hours of becoming aware, where the breach is likely to result in a risk to the rights and freedoms of natural persons — as required by Article 33 UK GDPR; and (c) notify affected data subjects without undue delay where the breach is likely to result in a high risk to their rights and freedoms — as required by Article 34 UK GDPR. All breaches, including those not requiring ICO notification, are documented in WorryLess Ltd's breach register.
Responsible disclosure
If you discover a security vulnerability in the Ivy application or worryless.online, please report it to: security@worryless.online
Section 14
Article 35 UK GDPR requires a Data Protection Impact Assessment (DPIA) before commencing processing likely to result in a high risk to the rights and freedoms of natural persons. The ICO's screening criteria include: processing of personal data of vulnerable individuals; systematic monitoring; large-scale processing of sensitive data; and use of new technologies.
WorryLess Ltd's processing activities engage several of these criteria: the Ivy service processes voice and conversation data of older adults using AI inference technology that may include sensitive disclosures. Accordingly, WorryLess Ltd has completed — and maintains — a DPIA covering core Ivy processing operations.
| Risk identified | Mitigation applied |
|---|---|
| Inadvertent processing of special category data within conversation transcripts | Ivy actively discourages disclosure of sensitive data; transcripts are time-limited to 12 months; no extraction or profiling of sensitive content |
| Misuse of Family dashboard to monitor Ivy user without their knowledge | Ivy user informed of dashboard feature during onboarding; subscriber access limited to recent conversations; audit log maintained |
| Data breach affecting conversation content of vulnerable users | Encryption at rest and in transit; access controls; incident response procedure; 12-month transcript retention limit |
| US-based processing by OpenAI subject to national security access | IDTA; Transfer Impact Assessment; OpenAI ZDR active — conversation content not persisted after inference, materially limiting exposure to any third-party access demand |
| US-based processing by Convex subject to national security access | IDTA; Transfer Impact Assessment; AES-256 encryption at rest; access controls |
The DPIA is reviewed annually and following any material change to processing operations, the technology stack, or the applicable legal framework. The ICO was not consulted under Article 36 UK GDPR as residual risks were assessed as manageable through the mitigations identified.
Section 15
All data subjects — subscribers, Ivy users, and trusted contacts — have the rights set out below under UK GDPR. WorryLess Ltd will respond within one calendar month of receipt. Where a request is complex or numerous, this period may be extended by a further two months, with notification provided within the initial month.
Requests should be submitted to privacy@worryless.online. WorryLess Ltd may request evidence of identity before processing, proportionate to the sensitivity of the data involved. No fee is charged unless a request is manifestly unfounded or excessive.
| Right | Article | Scope and limitations |
|---|---|---|
| Access | Art. 15 | Request confirmation of processing and a copy of personal data, together with information about purposes, categories, recipients, retention period, and source. Conversation transcripts provided as exported text. Exemptions: rights of others; trade secrets; legally privileged material. |
| Rectification | Art. 16 | Require correction of inaccurate personal data and completion of incomplete data without undue delay. Note: conversation transcripts are records of what was said — factual errors within a conversation are not within scope of rectification. |
| Erasure | Art. 17 | Require deletion where: data is no longer necessary; consent has been withdrawn; processing is unlawful; or objection has been upheld. Exceptions: legal obligation requiring retention; establishment, exercise or defence of legal claims. Financial records are exempt for their statutory retention period. |
| Restriction | Art. 18 | Require suspension of processing while: accuracy is contested; processing is unlawful and restriction preferred; data is needed for legal claims; or objection is being assessed. Restricted data may only be stored. |
| Portability | Art. 20 | Where processing is based on consent or contract and carried out by automated means, receive data in a structured, machine-readable format and transmit to another controller. Applies to account data and conversation transcripts. Does not apply to legitimate interests processing. |
| Object | Art. 21 | Object at any time to processing based on legitimate interests. Processing ceases unless compelling legitimate grounds are demonstrated. Absolute right to object to direct marketing at any time — no balancing required. |
| Automated decisions | Art. 22 | Right not to be subject to solely automated decisions producing legal or similarly significant effects. WorryLess Ltd does not make Art. 22-qualifying decisions — Ivy's outputs are guidance, not binding determinations. See Section 16. |
| Complain | Art. 77 / S.165 DPA 2018 | Lodge a complaint with the ICO (ico.org.uk / 0303 123 1113) if processing infringes UK GDPR. Contacting WorryLess Ltd first is encouraged but not a prerequisite. |
Where the subscriber and Ivy user are different individuals, each holds their rights independently. An Ivy user does not require the subscriber's permission to submit a Subject Access Request or any other rights request in respect of their own personal data. WorryLess Ltd will respond directly to the data subject concerned, subject to identity verification.
Trusted contacts are data subjects in their own right in respect of the contact details held by WorryLess Ltd. They may submit erasure requests or other rights requests at any time. Where a trusted contact requests erasure, WorryLess Ltd will notify the relevant subscriber that the trusted contact designation has been removed.
Section 16
Ivy's responses are generated by an AI language model. They constitute guidance and information — not determinations, decisions, or binding assessments. A scam assessment generated by Ivy (‘this message has the characteristics of a phishing attempt’) is a recommendation that a user may act on or disregard. It does not produce legal effects, restrict access to services, or affect the user's rights or obligations. Accordingly, Ivy's outputs do not constitute automated decision-making within the scope of Article 22 UK GDPR.
WorryLess Ltd does not use personal data to build behavioural, commercial, or predictive profiles of users for purposes beyond service delivery. Usage analytics collected by Convex are used in aggregate to understand product performance — they are not used to profile individual users or to make decisions about them.
Consistent with the ICO's AI Auditing Framework and the principles of transparency and explainability, WorryLess Ltd acknowledges that: (a) Ivy's responses are AI-generated and may occasionally be inaccurate; (b) Ivy is not a substitute for professional legal, financial, or medical advice; and (c) users are always free to disregard Ivy's guidance and seek human assistance.
Section 17
WorryLess Ltd's service is designed for, and primarily used by, older adults who may meet the FCA's definition of a vulnerable customer — that is, someone who, due to their personal circumstances, is especially susceptible to harm. While WorryLess Ltd is not an FCA-regulated firm, the FCA Consumer Duty and associated Guidance for Firms on the Fair Treatment of Vulnerable Customers inform our approach to data protection for this population, consistent with the accountability principle in Article 5(2) UK GDPR.
Concern about potential misuse
If you believe a WorryLess account is being used to monitor or control an older adult without their knowledge or genuine consent, please contact us at:
privacy@worryless.online or security@worryless.online
We treat such reports as a safeguarding matter and will investigate promptly.
Section 18
The worryless.online website uses cookies and similar technologies. The Ivy application uses device identifiers for equivalent purposes. This section constitutes WorryLess Ltd's cookie disclosure under Regulation 6 of the Privacy and Electronic Communications Regulations 2003 (PECR), as amended.
PECR requires informed consent before non-essential cookies are set. WorryLess Ltd obtains this consent through a cookie preference mechanism presented on first visit to worryless.online. Consent is recorded with a timestamp and is refreshed at least annually.
| Category | Purpose | Legal basis (PECR) | Can be declined |
|---|---|---|---|
| Strictly necessary | Session management, authentication, CSRF protection, load balancing. Essential for the website to function. | Regulation 6(4) exemption — strictly necessary for a service explicitly requested by the user | No |
| Analytics | Measuring website traffic, page views, user journeys, and feature usage. Processed by Convex analytics. | Regulation 6(1) — prior consent required | Yes — via preference centre |
| Conversion tracking | Attributing waitlist sign-ups and subscriptions to marketing campaigns (e.g., Google Ads conversion tags). | Regulation 6(1) — prior consent required | Yes — via preference centre |
| Social media — Meta Pixel | Meta Pixel is used to measure the effectiveness of advertising on Facebook and Instagram, and to build audiences for future campaigns. Meta Pixel may set cookies and collect device and behavioural data transmitted to Meta Platforms Ireland Ltd. | Regulation 6(1) — prior consent required | Yes — via preference centre |
Electronic marketing communications are sent only where: (a) the recipient has provided prior consent under Regulation 6 PECR; or (b) the soft opt-in under Regulation 22 PECR applies (existing customer, similar products/services, opt-out opportunity given at collection and in each communication). WorryLess Ltd does not engage in SMS marketing without explicit consent.
Section 19
WorryLess Ltd's service is designed for adults aged 18 and over. Both the subscriber role and the Ivy user role are restricted to adults. WorryLess Ltd does not knowingly collect personal data from individuals under the age of 18.
If WorryLess Ltd becomes aware that personal data has been provided by a person under 18, it will delete that data promptly and close any associated account. In practice, given the nature and purpose of the service, no basis for retaining data of a person under 18 is anticipated. If you believe personal data of a person under 18 has been processed by WorryLess Ltd, please contact privacy@worryless.online immediately.
Section 20
WorryLess Ltd reviews this policy at least annually and following any material change to its processing operations, technology stack, or the applicable legal framework.
A change is material if it: introduces a new processing purpose; identifies a new category of personal data; adds a new processor or third-party recipient; changes the lawful basis for an existing processing activity; alters a retention period; or affects the rights of data subjects in any meaningful way. Material changes will be notified to all subscribers by email not less than 30 days before the change takes effect. Where a material change requires fresh consent, existing consent will not be treated as covering the new processing.
Corrections to typographical errors, clarifications that do not alter the substance of the policy, and updates to contact details are non-material changes. These will be made without individual notification, though the ‘Last updated’ date will be revised.
Continued use of the Ivy service following notification of a material change does not constitute consent to new processing. Where a change requires consent, that consent will be sought separately and explicitly.
Section 21
WorryLess Ltd is committed to handling all data protection queries and complaints promptly, transparently, and in accordance with its obligations under Article 12 UK GDPR.
Privacy and Data Protection Enquiries
Email: privacy@worryless.online
We acknowledge all enquiries within 2 working days and respond substantively within 5 working days. Formal data subject rights requests receive a response within one calendar month of a valid, verified request.
Security Vulnerabilities
Email: security@worryless.online
Registered Address
[REGISTERED OFFICE ADDRESS]
WorryLess Ltd · Company No. 17160890 · Registered in England and Wales
Telephone
We do not operate a telephone helpline. Please contact us by email.
Supervisory Authority — Information Commissioner's Office (ICO)
If you are not satisfied with WorryLess Ltd's response, you have the right to lodge a complaint with the ICO. You are encouraged, but not required, to raise the matter with us first.
Website: ico.org.uk · Telephone: 0303 123 1113 · Online: ico.org.uk/make-a-complaint
This policy is governed by the laws of England and Wales. Any dispute arising in connection with this policy is subject to the exclusive jurisdiction of the courts of England and Wales.
Privacy Policy v2.0 · Effective 1 June 2026
WorryLess Ltd · Company No. 17160890 · Registered in England and Wales