Privacy Policy

Last updated: 13 June 2026

This policy explains what personal data CrimeRisk collects and how it is used. We are the data controller for this data.

What we collect

Account data: the email address you provide when signing up for an API key.
Usage data: API request counts and timestamps used to enforce plan limits and prevent abuse.
Billing data: handled by Stripe; we store only your Stripe customer and subscription identifiers, not card details.

Postcodes you query are not personal data and are used only to look up crime statistics.

How we use it

To provide and secure the Service, enforce plan limits, process payment, and contact you about your account. Our lawful bases are performance of our contract with you and our legitimate interest in running the Service.

Sharing and processors

Stripe — payment processing.
Hosting / database providers — to run the Service.

We do not sell your personal data.

Retention

We keep account data while your account is active and for a reasonable period afterwards, and billing records as required by law (typically six years).

Your rights

Under UK GDPR you may request access to, correction or deletion of your personal data, and may complain to the Information Commissioner's Office. To exercise your rights, contact privacy@crimerisk.co.uk.

Data sources

Crime and location data come from public open datasets — see our Disclaimer for attribution.