Back to site

Privacy notice

Last updated: 22 April 2026

This is the plain-English version of how BinBuddy handles your personal data. BinBuddy is a small, hyperlocal service run by a neighbour on three streets in East Sheen, SW14 - so this notice is short on purpose. If anything is unclear, just message me and I'll explain.

Who's in charge of your data

BinBuddy is operated by Matteo Grassi, who is a minor. His parent and guardian Chris Grassi is the data controller for the service and is responsible for how your information is handled.

You can reach us about any privacy question at mgrassi1@outlook.com.

What I collect

  • Your name and email address, when you create an account.
  • Your password, stored securely as a hash by Firebase Authentication - I can never see it.
  • The messages you send me in the chat, along with the time they were sent.
  • Your plan and service activity - which plan you're on, pause dates, the next collection you're expecting.
  • Basic technical info your browser sends (IP address, device type) when you use the site, plus small amounts of data stored in your browser's localStorage to remember your preferences.

I do not collect payment card details - payment is cash, arranged in person.

Why I collect it

  • To run your BinBuddy service (taking bins out, bringing them back, deep washes).
  • To reply to your messages.
  • To let you sign in and see your own account.
  • To keep the site and account secure.

Legal bases

Under UK GDPR I rely on two legal bases:

  • Performance of a contract - I need your account details to provide the service you signed up for.
  • Consent - you give this when you create an account and tick the box. You can withdraw it any time by asking me to delete your account.

Who I share it with

Your data is held inside Google's Firebase platform (Authentication and Firestore), which is how this website works. Google is my data processor - they store and secure the data on my behalf. Firebase may process data outside the UK, including in the United States, under standard contractual clauses that Google publishes on its website.

I do not sell your data, share it with advertisers, or send it to anyone else. The chat messages you send me go to me and nobody else.

How long I keep it

  • While you're a customer - for as long as you have an active account.
  • After you leave - up to 12 months, so I can answer follow-up questions. After that it's deleted.
  • On request - I'll delete your account and chat history sooner if you ask.

Your rights

Under UK GDPR you have the right to:

  • Ask what personal data I hold about you.
  • Ask me to correct anything that's wrong.
  • Ask me to delete your data.
  • Object to how I use it, or ask me to restrict it.
  • Withdraw your consent at any time.
  • Ask for a copy of your data in a portable format.

To use any of these rights, email mgrassi1@outlook.com. I'll reply within 30 days - usually a lot faster.

Cookies and local storage

The site uses a small amount of browser storage to remember you while you're signed in and to hold your preferences. It does not use advertising or tracking cookies. Firebase sets its own essential cookies so sign-in works.

Complaints

If you're not happy with how I've handled your data, please tell me first and I'll try to put it right. You also have the right to complain to the UK Information Commissioner's Office at ico.org.uk or on 0303 123 1113.

Changes to this notice

If I change anything important I'll update the "Last updated" date at the top and, if the change affects you, drop you a message so you know.

← Back to BinBuddy