Privacy Policy for So Next Year Ltd
Last Updated: 24th February 2026
1. Introduction Welcome to So Next Year Ltd ("we," "our," or "us"). We are committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, share, and protect personal data when you use our website located at https://sonextyear.online (the "Site") and our generative AI design platform (collectively, the "Services").
For the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, the data controller is So Next Year Ltd, a company registered in England and Wales. Our registered office is at SoNextYear Ltd, Brighton, England.
2. Data We Collect We may collect and process the following types of personal data:
Identity & Contact Data: Includes names, usernames, email addresses, and telephone numbers when you register for an account or contact us.
Transaction Data: Includes details about payments to and from you and other details of Services you have purchased from us. We do not store full payment card details; these are processed by our third-party payment processors.
Technical & Usage Data: Includes internet protocol (IP) address, browser type and version, time zone setting, operating system, and information about how you use our Site and Services.
Content Data: Includes text prompts, images, parameters, and other input data you provide to be processed by our generative AI engine ("Input"), as well as the resulting design outputs ("Output").
3. How We Use Your Data We use your personal data for the following purposes:
To register you as a new customer and manage your account.
To provide, operate, and maintain our Services, including processing your Inputs to generate Outputs.
To process payments and manage billing.
To improve our Site, Services, and customer relationships.
To notify you about changes to our terms or privacy policy.
To comply with a legal or regulatory obligation.
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data where we need to perform the contract we are about to enter into or have entered into with you, or where it is necessary for our legitimate interests.
4. Data Sharing and Disclosure We may share your personal data with the following third parties:
Service Providers: Companies who provide IT and system administration services, payment processing, data analytics, and cloud hosting services to help us run our business.
Professional Advisers: Including lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
Legal/Regulatory Authorities: If required by law or if we believe that such action is necessary to comply with a legal obligation or protect the rights, property, or safety of So Next Year Ltd, our users, or others.
5. International Transfers We may transfer your personal data outside the UK and the European Economic Area (EEA) to our service providers (e.g., cloud hosting providers). Whenever we transfer your personal data out of the UK/EEA, we ensure a similar degree of protection is afforded to it by ensuring appropriate safeguards are implemented, such as the use of UK International Data Transfer Agreements or standard contractual clauses.
6. Data Security We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered, or disclosed. Access to your personal data is limited to those employees, agents, contractors, and other third parties who have a business need to know.
7. Your Legal Rights Under certain circumstances, you have rights under data protection laws in relation to your personal data, including the right to access, correct, erase, object to processing, and request transfer of your data. If you wish to exercise any of these rights, please contact us.
8. Contact Us If you have any questions about this Privacy Policy, please contact us at: Email: andi@sonextyear.online