QuizMeQuizMe

Legal

Privacy Policy

Last updated: 21 June 2026

This Privacy Policy explains how QuizMe ("we", "us", "our") collects, uses, and protects personal data when you use our staff training platform at quiz-me.uk (the "Service"). This page is maintained by QuizMe to answer common privacy questions about the Service.

Who we are

QuizMe provides scheduled micro-quizzes and policy acknowledgements for staff teams. For questions about this policy or your data, contact us at hello@quiz-me.uk.

What data we collect

  • Account data: name, email address, organisation, role.
  • Authentication data: hashed credentials or third-party sign-in identifiers (e.g. Google).
  • Usage data: quiz attempts, scores, completion times, streaks, badges, and policy acknowledgements.
  • Communication data: emails we send (e.g. quiz prompts, reminders, marketing) and your engagement with them.
  • Billing data: subscription tier and payment metadata processed by our payment provider; we do not store full card numbers.
  • Technical data: IP address, browser type, device, and pages visited, collected via standard server and analytics logs.

How we use your data

  • To provide the Service: delivering quizzes, tracking progress, and producing manager reports.
  • To authenticate users and secure accounts.
  • To send service emails (quiz prompts, reminders, policy acknowledgements, billing notices).
  • To send marketing emails where you have a lawful basis to receive them (you can unsubscribe at any time).
  • To improve the Service, debug issues, and prevent abuse.
  • To meet legal, accounting, and regulatory obligations.

Legal bases (UK GDPR)

We rely on: (a) contract — to deliver the Service to you and your organisation; (b) legitimate interests — to secure, improve, and market the Service; (c) consent — for optional marketing where required; and (d) legal obligation — for accounting and compliance.

Sharing your data

We share data only with the processors needed to run the Service:

  • Cloud hosting and database providers.
  • Email delivery providers for transactional and marketing email.
  • Payment processors for subscription billing.
  • Optional integrations you enable (e.g. Slack, Microsoft Teams).
  • AI providers used to generate quiz questions from your policies.

We do not sell personal data. We may disclose data when required by law or to protect our rights and users.

International transfers

Some processors are located outside the UK/EEA. Where they are, we rely on appropriate safeguards such as the UK International Data Transfer Addendum or EU Standard Contractual Clauses.

Data retention

We retain account, quiz, and policy-acknowledgement data indefinitely to support audit, compliance, and long-term staff training records. You may request earlier deletion at any time by contacting hello@quiz-me.uk, subject to legal retention requirements.

Your rights

Under UK GDPR you have the right to access, correct, delete, restrict, or port your personal data, and to object to certain processing. To exercise any of these rights, email hello@quiz-me.uk. You can also complain to the UK Information Commissioner's Office (ICO) at ico.org.uk.

Security

We use industry-standard controls including encryption in transit, access controls, role-based permissions, and row-level security on our database. No system is perfectly secure; please report suspected vulnerabilities to hello@quiz-me.uk.

Children

The Service is for staff at organisations and is not directed to children. Do not create accounts for under-16s.

Changes to this policy

We may update this policy from time to time. Material changes will be communicated via email or in-app notice.

PrivacyTermsCookiesHome