1. Information We Collect

We collect information necessary to provide our AI and digital services, including:

Contact Details: Name, business email, and phone number.

Business Assets: Logos, branding data, and FAQs used to train your AI.

Special Category Data (Sensitive Information): We do not actively solicit "special category data" (such as health, ethnic origin, or genetic data). If such data is provided during the use of our AI or onboarding, we treat it with the heightened protections required under Article 9 of the UK GDPR.

2. Lawful Basis for Processing

Under the UK GDPR, we process your data based on:

Contractual Necessity: To provide the services you have purchased.

Legitimate Interests: For the effective operation of our business and AI improvements.

Legal Obligation: To comply with UK tax and regulatory requirements.

3. AI & Automated Decision-Making (ADM)

We prioritize transparency in our AI operations:

AI Processing: We use AI to process personal and business data to generate real-time responses for your customers.

Human-in-the-Loop: Our AI is designed for informational tasks. It does not perform "automated processing" that produces legal effects or significantly affects individuals (under Article 22 UK GDPR) without human oversight.

Transparency: You have the right to request information regarding the logic involved in our AI processing.

4. Data Storage & International Transfers

Security: We use industry-standard encryption (AES-256) for data at rest and in transit.

International Transfers: As a global agency, data may be accessed or stored by service providers in the USA or the Philippines. We ensure these transfers are protected by Standard Contractual Clauses (SCCs) or other "adequacy" safeguards to ensure a level of protection equivalent to the UK.

5. Your Rights (The UK GDPR Rights)

You have the following rights regarding your personal data:

Right of Access: To request a copy of the data we hold.

Right to Rectification: To correct inaccurate data.

Right to Erasure: To request the deletion of your data ("Right to be Forgotten").

Right to Restrict/Object: To stop or limit certain types of processing.

Right to Data Portability: To receive your data in a machine-readable format.

To exercise these rights, please contact our Data Protection Lead at [email protected].

6. Complaints

If you have concerns about how we handle your data, please contact us first at [email protected]. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection (www.ico.org.uk).