Terms of Service

DataGrave is a privacy protection service operated by Personal Studio Ltd, a company registered in England and Wales, trading as DataGrave. We help individuals discover where their personal data is held by data brokers and assist in exercising their legal rights under UK GDPR, including the Right to Erasure under Article 17.

By using DataGrave at datagrave.co.uk, you agree to these Terms of Service. If you do not agree, please do not use the service.

You must be at least 18 years old to use DataGrave. By using the service, you confirm that you are scanning for your own personal data only, or that you have explicit written permission from the data subject to act on their behalf.

DataGrave is intended for use by UK and EU residents. Users outside these regions may use the service but should note that GDPR enforcement is strongest within the UK and EU.

DataGrave provides the following services:

• Scanning publicly accessible data broker websites for your personal information
• Generating GDPR Article 17 Right to Erasure request templates
• Tracking compliance deadlines for deletion requests
• Generating ICO complaint letters for non-compliant companies (Pro tier)
• Providing a Privacy Score based on data exposure
• Sending automated deletion request emails on your behalf (Pro tier)
• Gmail Inbox Scanning — an optional paid feature that analyses your Gmail inbox to identify data broker marketing emails, potential security threats, and unwanted senders. This feature requires you to grant DataGrave read-only access to your Gmail account via Google OAuth. We access sender metadata only — we do not read email body content or attachments. See Section 8 and our Privacy Policy for full details.

DataGrave does not guarantee the deletion of your data from third-party sites. We provide tools to exercise your legal rights — compliance by third parties is their legal obligation, not ours.

You agree to:

• Provide accurate personal information for scanning purposes only
• Use DataGrave only to scan your own data or data you are authorised to manage
• Not use DataGrave to search for data belonging to other individuals without their consent
• Not attempt to misuse, reverse engineer, or disrupt the DataGrave platform
• Not use DataGrave for any unlawful purpose
• Only connect a Gmail account that belongs to you and that you are authorised to scan

DataGrave offers the following products and plans:

All payments are processed securely by Stripe. DataGrave does not store your payment card details. Prices are in GBP and may be subject to VAT.

Due to the nature of digital services, refunds are generally not available once a scan has been initiated. However:

• Broker Scan (£1): If your scan fails to complete due to a technical error on our part, you are entitled to a full refund. Contact us within 7 days of purchase.
• Gmail Inbox Scan (£1): If your scan fails to complete due to a technical error on our part, or if Google OAuth authorisation fails through no fault of your own, you are entitled to a full refund. Contact us within 7 days of purchase.
• Pro subscription: You may cancel at any time from your dashboard. You will retain Pro access until the end of your current billing period. No partial refunds are issued for unused days.

To request a refund, email us at privacy@datagrave.co.uk with your order details.

To provide our service, we collect and process:

• Your name, email address, phone number, home address, and date of birth — used solely for broker scanning purposes
• Scan results — stored securely in your account
• Payment information — processed by Stripe, not stored by DataGrave
• Gmail sender metadata (sender name, email address, subject lines, timestamps) — collected only when you purchase and authorise the Gmail Inbox Scan. We do not access or store email body content or attachments at any time.

Full details are in our Privacy Policy, including your rights under UK GDPR and how long we retain your data.

DataGrave integrates with the following third-party services to deliver its features. By using the relevant features, you acknowledge that your data may be processed by these providers in accordance with their own privacy policies.

DataGrave is provided on an "as is" basis. We do not guarantee that:

• Every data broker site will be scanned successfully — some sites may block automated access
• All instances of your data will be found — brokers may hold data under variations of your name or address
• Third-party companies will comply with deletion requests within the legal timeframe
• The service will be available without interruption
• Gmail scanning will identify every sender of concern — results depend on the accuracy of AI classification and the emails present in your inbox at the time of the scan

To the maximum extent permitted by UK law, Personal Studio Ltd shall not be liable for any indirect, incidental, or consequential damages arising from your use of DataGrave. Our total liability to you shall not exceed the amount you paid for the service in the 12 months preceding any claim.

In particular, we are not liable for any consequences arising from granting DataGrave OAuth access to your Google account, provided we have acted in accordance with the permissions you granted and the terms of this agreement.

All content, code, design, and branding on DataGrave is owned by Personal Studio Ltd. You may not copy, reproduce, or distribute any part of DataGrave without written permission.

We reserve the right to suspend or terminate your account if you breach these terms, misuse the service, or engage in fraudulent activity. You may delete your account at any time by contacting us.

If you revoke Gmail OAuth access, your Gmail scan data will be deleted from our systems within 30 days. Revoking access does not entitle you to a refund for a scan already completed.

These Terms of Service are governed by the laws of England and Wales. Any disputes shall be subject to the exclusive jurisdiction of the courts of England and Wales.

For any questions about these terms: