This Privacy Policy explains how we collect, use, store, protect, and process personal data when you access, browse, interact with, or use our website, products, services, platforms, integrations, software modules, communication channels, support systems, and any related digital experiences we operate.
We are committed to handling personal information with seriousness, transparency, and accountability. Privacy is not treated here as a checkbox exercise. It is part of how we design systems, manage relationships, operate technology, and build trust with clients, users, partners, and visitors. We understand that personal data is not merely a technical asset. It is information connected to real people, real businesses, real transactions, and real expectations of confidentiality.
For that reason, we apply a structured privacy approach based on data minimisation, purpose limitation, role-based access, security controls, operational accountability, and strict internal handling standards. We do not sell personal data. We do not rent client information. We do not share client data with unrelated third-party companies for their own advertising, profiling, resale, or independent commercial exploitation.
This Privacy Policy applies whenever personal data is collected through contact forms, service requests, account registrations, orders, subscriptions, software usage, messaging channels, customer support exchanges, analytics systems, integrations, embedded tools, payment-linked processes, operational dashboards, AI-assisted workflows, and any other feature or process made available by us.
Depending on the way you interact with us, the categories of personal data we process and the reasons for processing may vary. However, our core principles remain consistent: we collect only what is reasonably needed, we process data for legitimate and defined purposes, we restrict access wherever possible, and we retain information only for as long as necessary under business, contractual, technical, legal, tax, accounting, security, or regulatory requirements.
By using our website or services, you acknowledge that you have read this Privacy Policy and understand how information may be handled. Where the law requires consent for specific processing activities, we will seek that consent in an appropriate manner. Where processing is necessary for contract performance, service delivery, legitimate interests, security monitoring, fraud prevention, or legal compliance, we may process personal data on those grounds without requiring separate consent.
For the purposes of applicable data protection laws, the operator of this website and the controller or processor of personal data (depending on the relationship and the service context) is the business entity operating this platform. Where we process information on behalf of business clients, we may act as a data processor under their instructions. Where we collect information directly for our own business purposes, such as sales, support, service delivery, invoicing, security, and site operations, we act as the data controller.
Our privacy responsibilities include establishing lawful grounds for processing, implementing appropriate technical and organisational measures, maintaining reasonable transparency, handling requests from data subjects where required, and ensuring that third-party service providers we rely on are selected with care and used within a controlled framework.
We determine purposes and means of processing for our own website, operations, support, and client relationship workflows.
In some service environments, we process information on behalf of a client under contractual instructions.
Privacy, confidentiality, access control, retention discipline, and secure system handling.
The exact information collected depends on the service, feature, or communication channel involved. We may collect information directly from you, automatically from your device or browser, from your organisation, from integrated systems you authorise, or from necessary transaction and operational records generated during service use.
We may also generate internal data based on operational activity, such as audit records, workflow status, service delivery logs, support history, execution confirmations, troubleshooting notes, or customer account state. This internally generated data may still qualify as personal data when it can be linked to an identifiable person.
We use personal data only where there is a legitimate business, contractual, legal, security, or service-related reason to do so. We do not collect information simply because it might one day be useful. We aim to connect every processing activity to a defined purpose and to keep that purpose proportionate to the data involved.
To create accounts, fulfil requests, provide products or services, manage projects, process orders, and support active users.
To respond to messages, resolve issues, track service status, provide maintenance, and improve reliability.
To prevent abuse, investigate suspicious activity, monitor system misuse, and protect infrastructure.
We do not use your personal data in ways that are incompatible with the reason it was collected. We do not sell your information as a data commodity. We do not disclose client data to random third parties for their own commercial advantage. We do not hand over customer databases to external companies so they can market unrelated products or services to you.
Where third-party service providers are involved, they are used strictly to support our own operations and are expected to act under contractual, technical, and confidentiality controls.
Where data protection laws such as the UK GDPR, EU GDPR, or similar frameworks apply, we rely on one or more lawful bases depending on the context of processing. These may include your consent, the performance of a contract, compliance with a legal obligation, our legitimate interests, or the protection of vital interests where relevant.
When we rely on legitimate interests, we consider whether the processing is proportionate, expected, and balanced against the rights and freedoms of individuals. We aim to avoid intrusive or excessive processing and to use the least invasive approach reasonably available for the business objective involved.
One of our core privacy commitments is simple: we do not sell, rent, trade, or share client personal data with third-party companies for their own independent marketing, resale, profiling, or unrelated commercial purposes. Your information is not treated as a commodity. We do not build a business model around handing customer data to outside organisations for their separate gain.
We may share limited information only where it is necessary to run our business, provide requested services, comply with law, protect rights, or support infrastructure. In such cases, disclosure is restricted to what is needed, and recipients are expected to be bound by contractual, security, confidentiality, and operational obligations.
Hosting providers, infrastructure vendors, payment processors, email delivery platforms, analytics or support tools used to operate our services.
Accountants, legal advisers, regulators, authorities, or courts where disclosure is required or reasonably necessary.
In a merger, acquisition, restructuring, or asset transfer, subject to confidentiality and lawful handling requirements.
When we use a third-party processor, that does not mean we are “sharing” your data in the everyday commercial sense. It means we are using a technical or operational subcontractor to help us deliver our own service. Those providers are not authorised to take your information and use it for their own unrelated customer marketing, data brokerage, or private commercial exploitation.
We take reasonable technical and organisational measures to protect personal data against accidental loss, unauthorised access, misuse, alteration, unlawful disclosure, or destruction. No system can promise absolute security, but we aim to maintain a security posture appropriate to the type of information processed and the operational risks involved.
The best privacy control is often not a promise, but a limitation. We therefore aim to reduce unnecessary exposure: fewer people with access, fewer systems holding sensitive records, fewer uncontrolled copies, fewer open permissions, and clearer boundaries around where data should and should not flow.
If we become aware of a data incident that triggers legal notification obligations, we will act in accordance with applicable laws and incident-response requirements.
Personal data is retained for as long as reasonably necessary to fulfil the purpose for which it was collected, including service delivery, customer relationship management, dispute handling, compliance, tax, accounting, legal defence, contract enforcement, fraud prevention, and security investigation requirements.
Retention periods vary depending on the type of data and the operational or legal context involved. Some information may be deleted quickly after use. Other information may need to be retained for longer periods, particularly where financial records, legal obligations, support history, abuse prevention, or contractual accountability are involved.
Kept for as long as accounts, subscriptions, projects, or services remain active and operationally relevant.
May be retained longer where needed for troubleshooting, accountability, dispute resolution, or abuse prevention.
Retained in accordance with statutory obligations, accounting rules, tax requirements, or legal hold needs.
Our website and digital tools may use cookies, local storage, tags, scripts, and similar technologies to enable core functionality, preserve sessions, remember settings, improve performance, understand usage patterns, and support security or fraud-prevention functions.
Some cookies may be strictly necessary for the website to function properly. Others may support analytics, user experience improvements, or service optimisation. Where legally required, we will seek your consent before placing non-essential cookies or similar technologies. You may also control cookies through browser settings, subject to the functional consequences of disabling them.
Depending on our infrastructure, suppliers, and service architecture, personal data may be processed in countries outside your own jurisdiction. Where such transfers occur, we aim to use appropriate safeguards as required by applicable law, such as adequacy regulations, standard contractual clauses, contractual restrictions, vendor security commitments, or other lawful transfer mechanisms.
Cross-border processing does not reduce our expectation of confidentiality. It means only that modern technical operations may involve distributed systems, cloud services, support tooling, or service providers operating in multiple regions.
Some of our services may include AI-assisted tools, automation pipelines, smart workflow engines, or execution systems that process submitted information in order to respond to requests, organise data, classify inputs, create outputs, assist support flows, trigger integrations, or facilitate operational actions.
The use of AI or automation does not change our underlying privacy commitments. Personal data submitted to such systems is handled within the same general framework of purpose limitation, controlled access, operational necessity, and non-commercial non-disclosure to unrelated third parties. We do not use client-submitted data as a product to be sold onward to external companies.
Where automated systems help generate outputs or decisions, human review, validation rules, approval gates, or operational checks may still be applied depending on the workflow, sensitivity, or business context.
Our services are generally intended for businesses, adults, professionals, customers, or authorised users. We do not knowingly collect personal data from children where such collection is prohibited by law or where parental or guardian consent is required and has not been obtained. If you believe a child has submitted personal information to us inappropriately, please contact us so the matter can be reviewed and addressed.
Depending on your jurisdiction and the legal framework that applies, you may have rights to request access, correction, deletion, restriction, portability, objection, or withdrawal of consent in relation to your personal data. These rights are not absolute and may be subject to legal exemptions, verification requirements, security checks, operational limitations, and record-retention obligations.
To protect privacy and security, we may need to verify identity before acting on a request. We may also decline or limit a request where doing so is permitted by law, necessary to protect others, required to preserve legal claims, or inconsistent with compliance obligations.
If you receive newsletters, promotional messages, updates, or business communications from us, it is because there is a lawful basis to send them, such as your consent, a customer relationship, or another permitted basis under applicable law. You may opt out of non-essential marketing communications at any time.
Operational and service-related communications may still be sent where necessary, for example in relation to invoices, security notices, account activity, service alerts, legal updates, contract performance, or support cases.
Our website or services may contain links to external websites, platforms, payment gateways, partner tools, social media pages, or third-party services. We are not responsible for the privacy practices, content, security posture, or independent data handling of those third parties. We recommend reviewing their privacy notices before submitting personal data through their systems.
We may update this Privacy Policy from time to time to reflect legal developments, operational changes, service evolution, new security practices, infrastructure updates, or improved explanations of how we process data. Any revised version will become effective when posted on this page unless a different effective date is stated.
Where required by applicable law, we may provide additional notice of material changes. Continued use of the website or services after an update may indicate acknowledgment of the revised policy, except where further consent is legally required.
If you have questions about this Privacy Policy, wish to exercise your privacy rights, want clarification about how your information is processed, or need to raise a data protection concern, you may contact us using the contact details provided on this website.
When contacting us about a privacy issue, please provide enough detail for us to understand the request, identify the relevant account, project, service, or communication channel involved, and verify authority where needed. We will review requests in good faith and respond in accordance with applicable legal and operational requirements.
We believe trust is earned not by collecting more data, but by handling necessary data responsibly. We do not sell client information. We do not disclose personal data to unrelated third parties for their own benefit. We use controlled systems, defined purposes, and protective measures to keep privacy aligned with professional standards.