Privacy policy

Last updated: 23rd November 2020

The privacy of your data is very important to us. We only store what is required, and we don't sell your data, or share it with others.

What we store

Our guiding principle is to only store the data we need to run Poto. In practice, this means we store the contact details (email address, name, phone number, date of birth, and address) you provide when you sign up to Poto. You decide which other users on the site (your contacts) can see these contact details, and you can add and remove contacts at any time.

How to delete your data

To remove your personal data from our systems, you can delete your account via the account page. All personal data will be deleted within 30 days.

Your data protection rights

All users of Poto, no matter where they're based, have the following rights:

You can find out more about these rights here.

How we secure your data

All data is encrypted via SSL/TLS when transmitted from our servers to your browser. The database backups are also encrypted.

All data is stored on Heroku, which regularly performs audits and maintains PCI, HIPAA, ISO, and SOC compliance. You can see Heroku's compliance page for more information on how they keep your data secure.

How to contact us

If you have any questions or concerns about this privacy policy, or your data, please get in touch by emailing us at and we'll be happy to help!

If you're unhappy with how we've used your data, you can also complain to the ICO here.

home home dark contacts contacts dark add add dark settings settings dark