Privacy Policy

Gameplan Technology Limited, trading as even · Last updated 15 April 2026

This Privacy Policy explains how Gameplan Technology Limited, trading as ‘even’ (“the Company,” “we,” “us,” or “our”), collects, uses, stores, and protects personal data when you use our software-as-a-service platform, automation tools, and related services (the “Services”). We are the data controller for the personal data described here, and we handle it in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Gameplan Technology Limited is a company registered in England and Wales, operating the ‘even’ platform. If you have any question about this policy or about the personal data we hold, you can reach our team at privacy@geteven.co.

2. The Data We Collect

Account and identity data: your name, email address, business name, role, and login credentials.

Financial and bookkeeping data: the transactions, invoices, receipts, bank feeds, ledgers, and related records you connect or upload, together with the categorisations, reconciliations, and schedules even generates from them.

Usage and technical data: how you interact with the Services, including log data, device and browser information, IP address, and cookie identifiers.

Communications data: the messages you send us and a record of our correspondence with you.

3. How We Collect It

Directly from you, when you create an account, connect a data source, upload documents, or contact us.

Automatically, as you use the Services, through cookies and similar technologies.

From third parties you authorise, such as bank feed providers and accounting platforms (for example Xero or QuickBooks) and any other integrations you connect.

4. Why We Use Your Data, and Our Legal Bases

To provide and operate the Services, and to automate bookkeeping tasks and produce the outputs you request (performance of our contract with you).

To secure, maintain, and improve the Services and develop new features (our legitimate interests).

To communicate with you about your account, service changes, and support (performance of our contract and our legitimate interests).

To send you product updates or marketing where you have asked to receive them (consent, which you may withdraw at any time).

To meet our legal and regulatory obligations (legal obligation).

5. Artificial Intelligence and Your Data

even uses artificial intelligence and automated systems to extract, categorise, and reconcile the financial data you provide, in order to deliver the Services to you.

We do not use your identifiable financial records to train models for other customers. We may use de-identified and aggregated data, from which you and your business cannot reasonably be identified, to improve the accuracy and reliability of our systems.

Automated outputs are provided for your review. As set out in our Terms of Service, you remain responsible for verifying and approving data before it is relied upon.

6. Who We Share Data With

We share personal data only where necessary: with service providers and sub-processors who host and support the Services (such as cloud hosting, infrastructure, and analytics providers), under contracts that require them to protect your data; with the bank feed and integration providers you connect, to deliver the connections you request; with professional advisers, regulators, or law enforcement where we are legally required to; and with a successor entity in the event of a merger, acquisition, or reorganisation. We do not sell your personal data.

7. International Transfers

Where we transfer personal data outside the United Kingdom, we put an appropriate safeguard in place, such as an adequacy decision or the UK International Data Transfer Agreement, so that your data stays protected to UK standards.

8. How Long We Keep Data

We keep personal data for as long as your account is active and as needed to provide the Services. After your account closes, we retain data only for as long as necessary to meet our legal, accounting, and regulatory obligations, after which it is deleted or anonymised.

9. How We Protect Your Data

We apply technical and organisational measures to protect personal data, including encryption in transit and at rest, access controls, and tenant isolation. You can read more about our approach on our Security page.

10. Your Rights

Under UK data protection law you have the right to access the personal data we hold about you, ask us to correct or erase it, restrict or object to our processing, request a copy of your data in a portable format, and withdraw consent where we rely on it. To exercise any of these rights, email privacy@geteven.co.

You also have the right to complain to the Information Commissioner’s Office (ICO) at ico.org.uk, though we would welcome the chance to resolve any concern with you first.

11. Cookies

We use cookies and similar technologies to operate the Services, remember your preferences, and understand how the Services are used. You can control non-essential cookies through your browser settings or any cookie controls we provide.

12. Children

The Services are intended for businesses and their advisers, and are not directed at anyone under the age of 18. We do not knowingly collect data from children.

13. Changes to This Policy

We may update this policy from time to time. Where changes are material, we will let you know through the Services or by email. The “last updated” date above shows when this policy was last revised.

14. Contact Us

For any question about this policy or how we handle your data, email privacy@geteven.co.