Legal

Last updated: 1 April 2026

1. Introduction

DP365 AI Ltd ("we", "us", "our") is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website and AI employee services (the "Service").

We are registered in England and Wales. Our registered office is in London, United Kingdom. We are the data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

Account Information: When you register, we collect your name, email address, business name, and billing information.

Usage Data: We collect information about how you interact with our Service, including pages visited, features used, and session duration.

Business Data: To provide our AI employee services, we may process business data you provide during onboarding, such as customer enquiry templates, lead criteria, and content preferences.

Payment Information: Payment processing is handled by Stripe. We do not store your full credit card details on our servers.

3. How We Use Your Information

We use your personal data to:

  • Provide, maintain, and improve our Service
  • Process payments and manage your subscription
  • Communicate with you about your account and service updates
  • Provide customer support
  • Comply with legal obligations

4. Legal Basis for Processing

Under UK GDPR, we process your data on the following legal bases:

  • Contract: Processing necessary to perform our contract with you
  • Legitimate Interest: Processing necessary for our legitimate business interests
  • Consent: Where you have given explicit consent for specific processing
  • Legal Obligation: Processing necessary to comply with UK law

5. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected. Account data is retained for the duration of your subscription plus 12 months. Financial records are retained for 7 years as required by UK law.

6. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Rectify inaccurate personal data
  • Erase your personal data
  • Restrict processing of your personal data
  • Data portability
  • Object to processing
  • Withdraw consent at any time

To exercise any of these rights, contact us at [email protected].

7. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including encryption in transit and at rest, regular security assessments, and access controls.

8. Third-Party Services

We use the following third-party services that may process your data:

  • Stripe: Payment processing (PCI DSS compliant)
  • Cloud hosting providers: Data storage and processing

9. International Transfers

Where we transfer data outside the UK, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the ICO.

10. Contact Us

For any questions about this Privacy Policy or to exercise your data rights, contact us at:

Email: [email protected]
Address: London, United Kingdom

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.