Dropkard
Operated by Joshua Harris trading as Dropkard
United Kingdom
Last updated: 22 May 2026
Dropkard is operated by Joshua Harris trading as Dropkard, based in the United Kingdom. For the purposes of UK GDPR, Joshua Harris trading as Dropkard is the data controller for personal data collected through this Service.
If you have any questions about how we handle your data, contact us at hello@dropkard.com.
Account data. When you create an account, we collect your email address. If you sign in via Google OAuth, we receive your email address and name from Google as part of the authentication process.
Usage data. We collect information about how you use the Service, including pages visited, links clicked, and actions taken within your account. This data is used to provide analytics features and to improve the Service.
Public page data. Content you add to your Dropkard page — including your display name, bio, links, and artwork — is stored and made publicly accessible at your chosen URL.
Payment data. We do not collect or store payment card details. All payment processing is handled by Paddle, our payment processor, who acts as merchant of record. We store only your Paddle customer ID and subscription status.
We use the data we collect to:
We do not sell your personal data to third parties. We do not use your data for advertising purposes.
We process your personal data on the following legal bases:
Your data is stored in Supabase, hosted in the eu-west-2 region (West Europe, London). All data is stored within the United Kingdom. We apply appropriate technical and organisational measures to protect your data against unauthorised access, loss, or disclosure.
We use a small number of third-party services to operate Dropkard:
| Service | Purpose | Privacy Information |
|---|---|---|
| Supabase | Database and authentication | supabase.com/privacy |
| Paddle | Payment processing | paddle.com/privacy |
| Resend | Transactional email delivery | resend.com/privacy |
| Vercel | Application hosting | vercel.com/legal/privacy-policy |
Dropkard uses only essential cookies necessary for authentication and session management. We do not use tracking cookies or advertising cookies. No cookie consent banner is required.
We retain your account data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where retention is required by law (for example, transaction records for tax purposes).
Under UK GDPR, you have the right to:
To exercise any of these rights, contact us at hello@dropkard.com. We will respond within 30 days.
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe we have not handled your data appropriately.
We may update this privacy policy from time to time. We will notify you of material changes by email. The current version is always available at dropkard.com/privacy.
Joshua Harris trading as Dropkard
United Kingdom