Effective date: 10 February 2026

Privacy Policy

1. Who We Are

DebtRiot
Website: debtriot.co.uk
Contact: hello@debtriot.co.uk

We’re UK-based and comply with UK data protection law (UK GDPR and the Data Protection Act 2018).

2. What We Collect (And Don’t Collect)

No accounts, no sign-ups
You can use the calculator without creating an account or giving us your email.

Your debt calculations stay in your browser
We do not receive the debt figures you enter (balances, rates, payments). These calculations are performed locally in your browser.

Premium PDF generation (when you choose it)
If you choose to generate a premium PDF, the calculator sends a plan report to our PDF generator to create the document you requested. We use that report only to generate your file - not for advertising and not for profiling.

Local storage
We may store your inputs in your browser’s local storage so you don’t lose your work between sessions. You can clear this anytime in your browser settings.

DebtRiot for Coaches (coaches.debtriot.co.uk) If you subscribe to DebtRiot for Coaches, we collect additional information through Stripe: your email address, name, and billing details for subscription management. We also generate and store a Recovery Code in your Stripe customer record, which is used to authenticate your access. Your Recovery Code, subscription tier, and usage counters (plans saved this month, device count) are stored as metadata in Stripe - not on our own servers.

Client data entered by coaches stays in the coach's browser. When coaches use the session workspace to enter their clients' financial information (debts, balances, payments), this data is processed and stored locally in the coach's browser using localStorage. We do not receive, transmit, or store client financial data on our servers. Coaches can export plans as JSON files saved to their own device.

Contact messages
If you email us, we’ll have your email address and whatever you write. We use this only to respond to you.

3. Payments (Stripe)

When you buy a PDF plan, payment is processed by Stripe - a secure, independent payment provider.

• Stripe handles your card details. We never see your card number.

• Stripe may collect your name, email, and billing details for payment processing and fraud prevention.

• See Stripe’s privacy policy at stripe.com/privacy

• We receive limited transaction details from Stripe (e.g., payment status and a transaction reference) so we can provide support and help prevent fraud.

Recurring subscriptions (Coaches) DebtRiot for Coaches uses Stripe for recurring subscription billing. All plans include a 7-day free trial with card details collected upfront. Stripe stores your payment method for recurring charges. You can manage, upgrade, downgrade, or cancel your subscription at any time through the Stripe Customer Portal accessible from your dashboard. Cancellation takes effect at the end of the current billing period.

4. Cookies & Tracking

• We use cookies and similar technologies to keep the site working and to understand how it’s used.

• Optional analytics: we only run analytics after you choose your preference in our cookie banner (you can accept or reject). By default, analytics are disabled until you choose a preference.

• We do not use advertising cookies and we do not sell personal data.

5. How We Use Information

We only use personal information for:

• Providing the service - processing payments and delivering your PDF

• Responding to messages - replying when you contact us

• Improving and protecting the site - security, debugging, preventing abuse

• Legal obligations - where required by law

5A. Legal bases (UK GDPR)

• Contract: to provide the PDF plan you purchase and manage access (including Recovery Code access).

• Contract (Coaches): to provide ongoing access to the coaching dashboard, session workspace, and PDF/CSV export tools for the duration of your subscription, and to manage subscription billing via Stripe.

• Legal obligation: to keep payment records for accounting and tax.

• Legitimate interests: to secure, maintain, and prevent abuse of the service, and to respond to enquiries.

• Consent: for optional analytics cookies (you can withdraw consent at any time via the cookie settings).

6. Data Sharing

We don’t sell your data.
We may share limited information with service providers who help run the site:

• Web hosting

• Payment processing (Stripe)

• Email service

• PDF generation infrastructure

These providers must keep your data secure and only use it to provide their services.

7. Data Retention

• Calculator inputs: stored only in your browser until you clear them.

• Contact messages: kept as required to manage queries.

• Payment records: kept as required for tax and legal purposes.

• Recovery Code / access & fair-use records: retained as long as needed to provide access and prevent abuse.

• Coach subscription records: retained by Stripe for the duration of the subscription and as required for tax and legal purposes after cancellation.

• Coach session data (localStorage): stored only in the coach's browser. Clearing browser data or switching devices removes this data permanently. DebtRiot has no ability to access or recover it.

8. Your Rights

Under UK law, you may have rights to:

• access your personal data

• correct inaccurate data

• request deletion

• restrict or object to processing

• data portability

Since calculator inputs stay in your browser (not our servers), most rights apply only to contact messages and payment records.

To exercise your rights, email hello@debtriot.co.uk

9. Children

DebtRiot is not for children under 16. We don’t knowingly collect data from children.

10. Security

We use reasonable measures to protect information - secure hosting, access controls, and regular updates. No system is 100% secure, but we take proportionate steps to manage risks.

11. Changes

We may update this policy. When we do, we’ll update the date at the top. Significant changes may be highlighted on the site.

12. Contact

Questions about privacy? Email hello@debtriot.co.uk