Privacy Policy

Itemo Ltd Privacy Policy

Last updated: January 2026

This Privacy Policy explains how Itemo Ltd ("Itemo", "we", "us", "our") collects, uses, stores, and protects your personal data when you use the Itemo platform.

1. Who We Are

Itemo Ltd is a company registered in the United Kingdom.
Company number: 16549677

Itemo operates a peer-to-peer rental platform enabling users to list items ("owners") and hire items ("renters").

Data Protection Roles

  • Itemo Ltd is the Data Controller for personal data processed through the Itemo platform.
  • Stripe Payments Europe Ltd acts as an independent Data Controller for payment processing, identity verification, and Know Your Customer (KYC) obligations.
  • Itemo does not store payment card details or identity documents.

2. Personal Data We Collect

2.1 Information You Provide

  • Name
  • Email address
  • Date of birth
  • Address
  • Item listings and descriptions
  • Messages between users
  • Uploaded images
  • Collection and return checklist responses
  • Dispute-related evidence
  • Account preferences and settings

2.2 Payment & Identity Information (via Stripe)

Stripe may collect:

  • Card and bank account details
  • Identity verification documents (owners only)
  • KYC checks and verification results

Itemo does not have access to full payment card numbers or identity documents.

2.3 Automatically Collected Data

  • Device and browser information
  • IP address
  • Usage data and interaction logs
  • Fraud and security indicators
  • Platform behaviour data for safety and moderation

2.4 Cookies

We use cookies and similar technologies for:

  • Essential platform functionality
  • Security and fraud prevention
  • Analytics and performance monitoring
  • User preferences

Non-essential cookies are used only with your consent. Full details are provided in our separate Cookie Policy.

3. How We Use Your Data

3.1 Platform Operation

  • Account creation and management
  • Facilitating rentals between owners and renters
  • Processing payments and deposits
  • Enabling user communication

3.2 Safety, Trust & Moderation

To meet our legal obligations under the Online Safety Act 2023, we process data to:

  • Review and moderate listings
  • Detect fraud and harmful behaviour
  • Verify user age and identity where required
  • Investigate disputes and rule breaches
  • Maintain moderation and audit records

3.3 Platform Improvement

We use anonymised or aggregated data to:

  • Improve functionality and performance
  • Understand usage trends
  • Enhance search and discovery features

3.4 Legal & Regulatory Compliance

We may process data to:

  • Comply with UK law and regulatory obligations
  • Respond to lawful requests from authorities
  • Enforce our Terms of Service and related policies
  • Prevent financial crime and misuse of the platform

4. Lawful Bases for Processing

We rely on the following lawful bases under UK GDPR:

  • Contract – to provide the Itemo service
  • Legitimate Interests – fraud prevention, platform safety, service improvement
  • Legal Obligation – compliance with KYC, accounting, and online safety laws
  • Consent – where required (e.g. non-essential cookies)

5. Sharing Your Data

We may share personal data with:

  • Service providers (e.g. Stripe, cloud hosting, analytics, moderation tools)
  • Other users, where necessary to complete a hire
  • Legal or regulatory authorities, where required by law

We do not sell personal data.

6. International Data Transfers

Some of our service providers operate outside the UK. Where personal data is transferred internationally, we ensure appropriate safeguards are in place, including:

  • UK adequacy regulations
  • International Data Transfer Agreements (IDTAs)
  • Standard Contractual Clauses

7. Data Retention

  • Account data: retained while your account remains active
  • Transaction data: retained for 6 years for accounting and legal compliance
  • Moderation and safety records: retained for a minimum of 12 months
  • Deleted accounts: anonymised or securely erased within 30 days, unless retention is legally required

8. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion
  • Object to certain processing
  • Restrict processing
  • Request data portability

Requests can be made to: team@itemo.co.uk

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO).

9. Automated Processing

We use automated tools to assist with fraud detection and content moderation.

No decision producing a legal or significant effect is made solely by automated means. Human review is available upon request.

10. Security

We apply proportionate technical and organisational measures, including:

  • Encryption in transit and at rest
  • Access controls
  • Monitoring and audit logging
  • Regular security reviews

11. Children

Itemo is intended for users aged 18 and over only. Accounts identified as belonging to under-18s will be removed.

12. Changes to This Policy

Material changes will be communicated via the app or email. Minor updates may be made without direct notification.

13. Contact

Itemo Ltd
Email: team@itemo.co.uk
Data protection enquiries: team@itemo.co.uk

Itemo Cambridgeshire Logo
Download on the App StoreGet it on Google Play

© 2026 Itemo Cambridgeshire. All rights reserved.

Earn from what you own