We're a service based in the EU, aimed at people in the UK. We're therefore subject to GDPR, which is a pretty comprehensive set of data processing, and privacy protecting, legislation. The Information Commissioner's Office (ICO) has a great set of guides about what it means for you, and the processing of your data.
We don't use third-party analytics systems. We do, however, log accesses of our system in real-time, to allow us diagnose problems when they occur, and block people who might be abusing the system. This includes your IP address, but it is not stored permanently.
We offer an account system, which requires us to store your email address for as long as you choose to have an account with us, to allow you to log in. It is not used for marketing purposes, and is not shared with anyone.
To help us understand the usage of our system, we store longer-term analytics data in-house, but this is anonymised and we cannot trace who did what. For example, this would include us knowing the number of people accessing a part of the system at a particular time.
If you have questions or concerns, feel free to get in touch.