Last updated: 27 May 2026
Flycket is operated by Filywox Ltd (company number 12552237), a company registered in England and Wales. Our registered office is House 12, Castle Hill, Windsor, England, SL4 1PD.
When this policy says "we", "us", or "our", it means Filywox Ltd. When it says "you" or "your", it means you, the person using the Flycket wallet.
We are the data controller for personal data processed in connection with the Flycket wallet.
For any privacy question or request, contact us at privacy@flycket.com.
This policy describes how we collect, use, share, and protect personal data when you use the Flycket wallet (the iOS and Android consumer app that lets you claim, store, share, and redeem offers from businesses).
It does not cover the separate Flycket products used by businesses (the admin web app, the business owner app, or the trial flow). If you're a business signing up to use Flycket, separate terms apply.
Flycket is pseudonymous by default. You do not need to create an account, give us your name, or provide an email address to use the wallet. When you first open the app, your device generates a random unique identifier (a "wallet ID") and stores it locally on your device. Everything you do in the wallet — claiming offers, redeeming them, sharing them with friends — is associated with that wallet ID, not with your real-world identity.
You are free to provide a display name, but you don't have to.
We never ask for, and never collect, your real name, your phone number, your address, or your date of birth.
The data below is everything we hold about you. Each item is tied to your wallet ID. Most of it is created when you actively use the wallet.
A randomly-generated UUID created on your device the first time you open the app. Stored locally in a secure area of your device's storage. Sent with every request to our servers so we can recognise your wallet.
A name you choose to identify yourself in the wallet. Optional. Freely changeable at any time. If you set a display name, the businesses whose offers you claim and authorised Flycket staff will be able to see it alongside your wallet activity.
When you claim an offer, redeem it in person, share it, or search for nearby offers, the wallet asks for your location and (with your permission) records your latitude, longitude, location accuracy, and the time the location was captured. This data is sent to our servers and stored against the relevant event so we can show offers near you, identify which venue a redemption took place at, and present geographic insights to the businesses whose offers you claim.
We use the Google Maps Geocoding API to convert raw coordinates into city- and country-level labels (for example, "Sedbergh, United Kingdom"). This means coordinates are sent to Google for that purpose. Google does not retain the coordinates beyond what is necessary for the geocoding lookup itself.
You can refuse the location permission at any time in your device settings. The wallet will continue to work, but features that rely on your location (notably nearby search and accurate redemption attribution) will be limited.
If you grant permission to receive notifications, your device gives the wallet a push token issued by Apple Push Notification service (on iOS) or Google Firebase Cloud Messaging (on Android), via the Expo push service. We store this token against your wallet ID so we can send you notifications when an offer becomes available, expires, or has been claimed by a friend you shared with.
You can refuse or revoke the notifications permission at any time in your device settings.
We record events as you use the wallet so we can understand how the product is performing and improve it. Recorded events include:
wallet_opened)wallet_permission_response)wallet_cta_clicked)Each event is stored against your wallet ID and the relevant business or campaign, with the time of the event and (where applicable) your location at the time. We use this data internally to monitor the health of the product, detect fraudulent or abusive usage, and decide how to improve features.
If the app encounters an error or crashes, we send a diagnostic report to Sentry, a third-party error monitoring service. The report contains the error or crash trace, the recent sequence of taps in the app (a "breadcrumb trail"), the device model, the operating system version, and the wallet's app version. It does not include the contents of your wallet, your offers, or your location.
We use this data only to diagnose and fix bugs.
| Purpose | Data used | Legal basis (UK GDPR) |
|---|---|---|
| Operating the wallet (claiming, redeeming, sharing) | Wallet ID, display name, claim/redeem/share events, location | Legitimate interests |
| Sending you push notifications about offers | Push token, wallet ID | Consent |
| Showing offers near you and labelling redemption locations | Location data | Consent |
| Understanding how the wallet is used and improving it | Telemetry events, wallet ID | Legitimate interests |
| Diagnosing crashes and bugs | Crash reports, device metadata | Legitimate interests |
| Detecting and preventing fraud or abuse of the offer system | Wallet ID, claim/redeem events, location, device metadata | Legitimate interests |
Where the legal basis is consent, you can withdraw it at any time by changing your device settings.
Where the legal basis is legitimate interests, we have assessed that our interest in operating, improving, and securing the wallet does not override your privacy rights, particularly given the pseudonymous design of the product.
We share your data only with:
These providers process your data under contract for us, and only as needed to perform the service:
We do not sell your data, and we do not share it with third-party advertisers.
The businesses whose offers you claim and redeem can see, in their Flycket admin dashboard, that an offer was claimed and redeemed, the time at which it happened, and the broad location. They see this against your wallet ID, not against your real-world identity. If you have set a display name, the business may see that display name.
A small number of authorised Flycket staff have access to the super-admin dashboard, which shows wallet events, locations, and an aggregate map. Access is gated by hardware-backed authentication (passkey / Touch ID). Staff use this access to monitor product health, prevent fraud, and respond to support and deletion requests.
When you install the wallet through the App Store or Play Store, Apple or Google may collect technical and account information for fraud prevention and store-policy enforcement. This is governed by Apple's and Google's own privacy policies.
We may disclose data when required by law, court order, or to enforce our terms or protect our rights.
If we go through a corporate transaction such as a merger, acquisition, financing, or sale of assets, your data may be transferred as part of that transaction. We will notify you and apply this policy until any successor publishes its own.
Some of the third-party services we use process data outside the United Kingdom (for example, in the European Economic Area or the United States). Where data is transferred outside the UK, we rely on appropriate safeguards under UK GDPR, including the UK International Data Transfer Addendum to the European Commission's Standard Contractual Clauses.
We retain personal data for as long as is necessary for the purposes set out in this policy, taking into account our legitimate business interests, legal obligations, the need to detect and prevent fraud, and the resolution of disputes. When data is no longer needed, we delete or anonymise it.
If you ask us to delete your wallet, see section 10.
Under UK GDPR, you have the following rights in relation to the personal data we hold about you:
To exercise any of these rights, email privacy@flycket.com. We will respond within one month.
You also have the right to lodge a complaint with the Information Commissioner's Office (the UK supervisory authority for data protection) at https://ico.org.uk or 0303 123 1113.
You can ask us to delete your wallet and all associated data at any time. Email privacy@flycket.com with the subject line "Delete my wallet".
Because the wallet is pseudonymous, we will need your help to identify which wallet record is yours. When you contact us, we will guide you through a short procedure to confirm your wallet identity (which may include asking you to set a specific display name in the app). Once we have confirmed your identity, we will delete:
We will complete deletion within 30 days of confirming your identity and will email you to confirm when it is done.
Some data may be retained in aggregated, anonymised form (with no link back to your wallet) for statistical and product analytics purposes. We may also retain limited records where required by law (for example, for fraud-prevention audit trails).
The Flycket wallet is intended for users 13 years of age and over. We do not knowingly collect personal data from anyone under 13. If you believe a child under 13 has used the wallet, please email privacy@flycket.com and we will take steps to delete the data.
We take the security of your data seriously and use commercially reasonable technical and organisational measures to protect it against accidental or unlawful destruction, loss, alteration, or unauthorised disclosure or access. These include encrypted transport (HTTPS), access controls, hardware-backed authentication for administrative access, and segregated infrastructure.
No system is perfectly secure, and we cannot guarantee absolute security. If we become aware of a breach affecting your personal data, we will notify the ICO and, where required, you, in line with our legal obligations.
We do not use your personal data to make automated decisions that produce legal or similarly significant effects on you.
We may update this policy from time to time. When we do, we will update the "Last updated" date at the top of this document. If the changes are material, we will notify you via the wallet — either through an in-app message or a renewed terms-acceptance prompt.
The current version is always available at https://admin.flycket.com/privacy-policy.
For any privacy-related question or request:
Email: privacy@flycket.com Post: Filywox Ltd, House 12, Castle Hill, Windsor, England, SL4 1PD
Flycket is operated by Filywox Ltd, registered in England and Wales (company number 12552237).