We don’t want any of your data we don’t need.

MovedTo is operated by Adam Chinn (sole trader, currently) from Newbury, United Kingdom. For the purposes of UK GDPR, we’re the data controller for the personal data described below.

Contact for any privacy question: hello@movedto.com.

Just what we need to run a small community platform:

• Account info:email address, display name, optional photo and bio, the area you’ve chosen, and optionally the year you moved.
• Activity: messages you post in chat, events you RSVP to, when you last read a channel.
• Subscription:if you pay, your customer record at Stripe (we don’t store card numbers ourselves — Stripe does), the plan you’re on, and dates.
• Technical:IP address, browser, and basic server logs for security and debugging. We don’t run third-party tracking or behavioural advertising.

• To run your account— sign you in, show you the right area, deliver chat and events. (Lawful basis: contract.)
• To process your payment— via Stripe. (Contract.)
• To email you transactional things like sign-in links, RSVP confirmations, and trial-end notices. (Contract / legal obligation under DMCC Act 2024.)
• To keep the platform safe— reviewing flagged content, detecting abuse. (Legitimate interest.)

We don’t use your data for advertising or sell it to anyone.

A handful of trusted sub-processors. Each is contractually obliged to keep your data safe:

• Supabase (database, authentication, storage). EU/Ireland region.
• Stripe (payment processing). Stores card details on our behalf.
• Resend (transactional email delivery).
• Vercel (web hosting).
• Fastmail (the inbox we read replies in, when you email us).

We don’t share your data with anyone else — no data brokers, no ad networks, no “partners.” If we’re ever required to disclose data to law enforcement with a valid order, we’ll comply and (where legal) notify you.

Primarily within the UK and EU (Ireland). Stripe processes some data internationally; their privacy notice covers details. We don’t intentionally transfer data outside the UK/EU beyond what these sub-processors do for you.

As long as you have an account, plus a short period after to honour deletion / data-portability requests. If you delete your account, we’ll delete or anonymise your personal data within 30 days, with the exception of records we’re legally required to keep (e.g. invoice records for tax, typically 6 years).

Under UK GDPR you have the right to:

• Access the personal data we hold about you
• Correct anything that’s wrong
• Have your data deleted
• Receive a portable copy of your data
• Object to certain processing
• Withdraw consent (where consent is the lawful basis)
• Complain to the UK Information Commissioner’s Office (ico.org.uk)

Email hello@movedto.com to exercise any of these. We’ll respond within one month.

We use only essential cookies needed to keep you signed in. No analytics or advertising cookies. If we ever add analytics we’ll update this policy and ask first where the law requires it.

MovedTo is for adults (18+). We don’t knowingly collect data from anyone under 16. If you think a child has signed up, email us and we’ll remove the account.

If we make material changes we’ll email you and update the “last updated” date above.