Privacy Policy
Last updated: 9 April 2026
This policy explains how Keogh Ltd, trading as AccessibilityRef ("we", "us", "our"), collects, uses, and protects personal data in accordance with the EU General Data Protection Regulation (GDPR), Regulation (EU) 2016/679.
This policy applies to the AccessibilityRef website (accessibilityref.eu).
1. Data Controller
Legal entity: Keogh Ltd
Trading as: AccessibilityRef
Registered address: Travessa Dom Sancho I 25, 3030-461 Coimbra, Portugal
Website: Accessibilityref.eu
Data protection enquiries: Contact form
We have not appointed a Data Protection Officer as we do not meet the thresholds under GDPR Article 37. For all data protection enquiries, please use our contact page.
Lead supervisory authority: Comissão Nacional de Proteção de Dados (CNPD), Portugal. You also have the right to lodge a complaint with the supervisory authority in your country of residence.
2. Data We Collect
Account data: Email address and password (hashed) when you register. Stored securely via Firebase Authentication (Google LLC).
Payment data: When purchasing Pro tools, payment is processed by Stripe Inc. We receive only a transaction confirmation and your email. We do not store card details.
Usage data: Page views and tool interactions via Google Analytics 4. This data is anonymised and aggregated, and only collected with your consent.
AI tool input data: When using AI-powered tools (ARIA Assistant, Alt Text Prompter), the content you submit is sent to Anthropic's Claude API for processing. We do not store this input data after the response is returned. Under Anthropic's API terms, inputs and outputs are not used to train their models. Anthropic may retain data for up to 30 days for trust and safety purposes per their data retention policy.
3. Legal Basis for Processing
Contract (Art. 6(1)(b)): Processing your account and payment data to provide the service you purchased.
Legitimate interests (Art. 6(1)(f)): Security, fraud prevention, crash reporting, and improving the platform and app.
Consent (Art. 6(1)(a)): Advertising and analytics cookies, only after you click "Accept All" in the cookie banner.
4. Third-Party Processors
| Processor | Purpose | Location |
|---|---|---|
| Firebase (Google LLC) | Authentication and database | USA (SCCs) |
| Google Analytics 4 | Usage analytics (consent required) | USA (SCCs) |
| Stripe Inc. | Payment processing | USA (SCCs) |
| Resend Inc. | Transactional email (account and payment notifications) | USA (SCCs) |
| Anthropic PBC | AI processing for ARIA Assistant and Alt Text Prompter tools | USA (SCCs) |
| Vercel Inc. | Website hosting | USA/EU (SCCs) |
| Zoho Corporation B.V. | In-page support chat (Zoho SalesIQ), loaded only with marketing-cookie consent | EU (Netherlands / Ireland data centres) |
SCCs = Standard Contractual Clauses, ensuring GDPR-compliant international transfers.
5. Cookies & Analytics
We use Google Analytics 4 to understand how the site is used. Analytics cookies are only set after you click "Accept All" in the cookie banner. We implement Google Consent Mode v2, which signals your consent choice to Google. We do not display advertisements. See our Cookie Policy for full details.
6. Your Rights Under GDPR
Right of Access
Request a copy of your personal data.
Right to Rectification
Correct inaccurate data we hold.
Right to Erasure
Request deletion of your account and data.
Right to Restriction
Limit how we process your data.
Right to Portability
Receive your data in a machine-readable format.
Right to Object
Object to processing based on legitimate interests.
Right to Withdraw Consent
Withdraw advertising consent at any time via the cookie banner.
Right to Lodge a Complaint
Contact your national data protection authority.
To exercise any right, use our contact form. We will respond within 30 days as required by GDPR Article 12(3).
Right to erasure (Article 17), how to exercise it
You can submit a deletion request at any time from the Privacy & Your Data section of your account page. Every request is reviewed manually by our admin team and actioned within 7 days under normal circumstances, and within 30 days at the latest as required by GDPR Article 12(3). You will receive an email confirmation once the deletion has been completed. The manual review step exists to verify identity, check for active billing disputes or legal holds, and prevent malicious deletions of compromised accounts.
What is deleted: your profile, saved checklists and assessments, team membership, and Firebase Authentication record.
What is retained (and why): anonymised Stripe billing records (with your name and email removed) are retained for the period required by EU tax law, typically 7 years, under the legal obligation exemption in GDPR Article 17(3)(b). These records cannot be linked back to you.
You can also use the Export your data button on the same page to download a JSON copy of all personal data we hold (Article 20).
7. Data Retention
Account data: Retained while your account is active. Deleted within 7 days of an approved deletion request, and within 30 days at the latest (GDPR Article 12(3)).
Payment records: Anonymised Stripe billing records (with personally identifying fields removed) are retained for 7 years to comply with EU tax and accounting obligations under GDPR Article 17(3)(b).
Analytics data: Retained for 14 months (Firebase Analytics default), then automatically purged.
Audit logs: Server-side audit logs of administrative actions and security events are retained for 12 months for security and compliance purposes.
8. Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. All data in transit is encrypted via TLS. Authentication credentials are hashed and never stored in plain text. Access to production systems is restricted to authorised personnel only.
9. Children
AccessibilityRef is a professional B2B service not directed at children. We do not knowingly collect personal data from anyone under 16 years of age. If we become aware that we have collected data from a child, we will delete it promptly. If you believe a child has provided us with personal data, please contact us.
10. Automated Decision-Making
We do not use automated decision-making or profiling that produces legal effects or similarly significant effects on you, as described in GDPR Article 22. AI-powered tools (ARIA Assistant, Alt Text Prompter) process content you voluntarily submit and return suggestions, they do not make decisions about you or your legal status.
10a. Usage Analytics and Refund Counter
Beyond the records described in section 2, we keep a first-party log of how the site is used. This section is fully transparent: we record more than you might expect, but we keep it ourselves, we do not share it with third-party trackers, and you can opt out of the analytics portion through the cookie banner.
What we record
- view: each page render — path, locale, your account tier if signed in, a rotating session id.
- action: primary button clicks — signup, sign in, checkout, running a tool. Each event has a short name and the page it fired on.
- api_call: every server-side API call our app makes on your behalf — route, HTTP method, response status, duration.
- export: each deliverable document you generate (statements, conformity declarations, technical files, VPATs, compliance reports). Recorded server-side, attributable to your account.
- ai_call: each successful invocation of an AI feature (alt-text generator, ARIA generator, document analysers).
- signup_acknowledgement: a record at account creation showing you saw the refund-cap terms — version, caps, a hashed and truncated IP address.
Why we record it
Product improvement (which tools are used, which workflows succeed) and dispute resolution. Our 30-day refund promise ends once you have generated 3 full deliverables or made 2 AI-assisted generations — the export and AI-call records back that policy if a refund is ever disputed.
Legal basis
Essential events (api_call recorded server-side, export, ai_call, signup_acknowledgement, refund_counter, refund_request) run on our legitimate interest in service delivery, fraud prevention, and dispute resolution (GDPR Article 6(1)(f)). Analytics events (view and action beacons) run on your consent through the cookie banner (Article 6(1)(a)); rejecting the analytics bucket disables them. Marketing cookies (Google Ads partnership) are independently consented.
Retention
Raw events expire automatically after 90 days. Daily aggregate rollups (counts of events per tool per day with cardinality counts of unique users) are kept indefinitely but contain no personal identifiers. Refund-counter records and signup acknowledgements are kept for the duration of your account plus any dispute window.
Your rights
Section 5 of this policy lists the GDPR rights that apply to all data we hold. Specifically for analytics: you can opt out of analytics beacons through the cookie banner. You can request export or deletion of every record above through your account settings — deletion removes raw events, refund counters, signup acknowledgements, and refund requests within the SLA in section 5.
11. Changes to This Policy
We may update this policy periodically. Material changes will be communicated by email and/or prominent notice on the site at least 14 days before taking effect. Where changes affect our legal basis for processing or introduce new processing activities, we will seek your consent where required by law.
Related Policies