Pratica

Privacy Policy

Last updated April 2026

Back

Who we are

Pratica is a sole trader registered in the United Kingdom. For the purposes of data protection law, Pratica is the data controller. For any enquiries about your personal data, contact info@pratica.uk.

What data we collect

  • Contact details: name, email address, phone number
  • Consulate preference and citizenship application details
  • Family information relevant to eligibility assessment
  • Copies of vital records you provide
  • Payment information (processed by Stripe, not stored by us)
  • Communications: emails, portal messages
  • Technical data: IP address, browser type, timestamps, pages visited

How we use your data

  • Delivering the services you purchased
  • Processing payments via Stripe
  • Communicating about your order
  • Sending order confirmations and service updates via email
  • Maintaining records for legal and regulatory compliance
  • Resolving disputes and preventing fraud

Lawful basis (UK GDPR)

  • Contract: delivering services you purchased
  • Legitimate interest: record-keeping, fraud prevention, improving services
  • Legal obligation: tax records, regulatory compliance
  • Consent: marketing communications (we do not currently send any)

Who we share data with

  • Stripe — payment processing (PCI-DSS compliant)
  • Supabase — secure database hosting (EU region)
  • Resend — transactional emails only
  • Vercel — website hosting

We do not sell, rent, or trade your personal data.

International transfers

Some of our processors operate outside the United Kingdom. Where data is transferred internationally, adequate safeguards are in place, including Standard Contractual Clauses and UK adequacy regulations.

How long we keep data

  • Service records: duration of service plus 12 months
  • Payment records: 6 years (HMRC requirement)
  • Communications: 3 years from last contact
  • Technical logs: 90 days

You may request deletion at any time, subject to legal retention requirements.

Security

Data is stored with trusted providers using encryption, HTTPS, and access controls. Passwords are hashed. Access to personal data is limited to what is necessary.

Your rights (UK GDPR)

You have the right to:

  • Access your data
  • Correct inaccurate data
  • Request deletion (right to be forgotten)
  • Restrict processing
  • Data portability
  • Object to processing
  • Withdraw consent

To exercise any of these rights, email info@pratica.uk with “Data Request” in the subject line.

Cookies

We use essential cookies for site functionality. Vercel Analytics collects anonymous usage statistics. We do not use advertising cookies or tracking pixels.

Children

Our services are intended for adults. We do not knowingly collect data from anyone under 18.

Changes

We may update this policy. Changes will be posted on this page. Continued use of the site constitutes acceptance.

Complaints

If you believe your data rights have been violated, you may lodge a complaint with the Information Commissioner's Office (ico.org.uk).

Contact

info@pratica.uk