Welcome to Higher DO$H Ltd ("DO$H", "we", "us", or "our"). This Privacy Policy explains how we collect, use, and protect your personal information when you use our SMS-based payment platform.
By using DO$H via SMS, you agree to the terms outlined in this Privacy Policy. If you do not agree, please do not use our services.
1. Information We Collect
2. How We Use Your Data
3. How We Store Your Data
4. Who We Share Your Data With
5. How Long We Keep Your Data
6. Your Rights
7. Data Transfers
8. Data Security
9. Changes to This Policy
10. Contact Us
When you interact with DO$H over SMS, we collect the following personal data:
Phone number – to identify and interact with you
Messages you send – to process your requests (e.g., create invoices, send payment links)
Transaction metadata – such as client names, job titles, payment amounts
Optional data – such as email address or bank details if you provide them voluntarily
We collect and process your personal data in order to:
Create and manage SMS-initiated payment links
Send payment notifications and reminders
Provide support and resolve disputes
Maintain transaction logs for compliance and reporting
Improve service quality and detect fraud
Our legal basis for processing is:
Contractual necessity (to provide our service)
Legitimate interest (fraud prevention, support, and product improvement)
We use Supabase, a secure cloud-hosted database provider, to store all user and transaction data. All data is encrypted in transit and at rest. Access to the database is restricted to authorized DO$H personnel only.
We share your data with trusted processors to deliver the DO$H experience:
Partner | Role |
|---|---|
Stripe | Processes payments and manages Connected Accounts |
Twilio (or equivalent SMS provider) | Sends and receives SMS messages |
Supabase | Hosts user and transaction data securely |
We do not sell your data. All processors are bound by strict data processing agreements (DPAs) and comply with GDPR/UK DPA 2018.
We retain your data only for as long as necessary:
Account and transaction data: kept for up to 7 years for regulatory, accounting, and anti-fraud reasons
SMS content and logs: kept for a maximum of 12 months unless legally required to retain longer
Deletion requests: honored within 30 days of receipt unless legal obligations apply
Under the UK Data Protection Act 2018 and GDPR, you have the right to:
Access your personal data
Request correction of inaccurate data
Request deletion of your data (right to be forgotten)
Object to or restrict processing in certain circumstances
Port your data to another provider (in applicable cases)
You can exercise these rights by contacting us at doshsupport@higherdosh.com.
If your data is transferred outside the UK or EEA (e.g., to Twilio in the US), we ensure appropriate safeguards are in place (e.g., Standard Contractual Clauses).
We take appropriate technical and organizational measures to safeguard your personal data, including:
End-to-end encryption of all SMS traffic
Role-based access to databases
Continuous monitoring and alerting
Regular security audits and staff training
We may update this Privacy Policy from time to time. We will notify you of any material changes by SMS or through our website. The latest version will always be available at higherdosh.com/privacy.
If you have any questions, concerns, or wish to exercise your rights, contact us at:
Email: doshsupport@higherdosh.com
Mail: Higher DO$H Ltd,.