AlgomindsAlgomindsBack

Privacy Policy

Last updated June 2026

This policy explains what personal data Algominds collects, how we use it, and your rights. We serve customers in the UK, EU, US, and worldwide, and we comply with applicable laws including the UK GDPR and the CCPA.

Who we are

AI Empowerment Ltd (trading as Algominds), company no. 15515185, 124 City Road, London EC1V 2NX, is the data controller for your personal data. We are registered with the UK Information Commissioner’s Office (ICO), reference ZC082052. Our Data Protection Officer is Edward Albazii, eddie@algominds.ai.

Information we collect

  • Contact and identity data — your name, email, phone, company, and professional profile (such as LinkedIn) when you sign up, fill in a form, or contact us.
  • Content you submit — the website, domain, or other data you give us for analysis so the product can build your campaign and signals.
  • CRM and survey data — details captured through our marketing and CRM forms (via HubSpot), including how you engage with our emails and site.
  • Technical and usage data — IP address, browser and device type, and usage statistics, collected via tools such as Google Analytics and HubSpot cookies.

Under the CCPA these fall into categories such as identifiers, commercial information, and internet activity.

How we use your information

  • To deliver the service — to provide and personalise lead generation, signal intelligence, and outreach. Generating outputs may involve AI providers (such as OpenAI and Anthropic) that process only the content you submit, under their own terms.
  • To communicate — to respond to you and, where you have consented, to send marketing you can opt out of at any time (in line with GDPR, CAN-SPAM, and CASL).
  • To analyse and improve — to understand usage and improve the product, using aggregated analytics.
  • To comply with the law — including tax, security, and fraud prevention (for example via Stripe).

Lawful bases (UK GDPR)

  • Contract — to deliver the services you purchase.
  • Legitimate interest — for B2B marketing and lead generation, where we have assessed that our interest does not override your rights.
  • Consent — for marketing emails and newsletters, which you can withdraw at any time.
  • Legal obligation — to meet tax, fraud-prevention, and other legal requirements.

For B2B outreach we run on behalf of a client, we act as a data processor under a Data Processing Agreement and follow that client’s instructions.

Cookies and tracking

We use essential cookies for core site functions, and analytics and marketing cookies (Google Analytics, HubSpot) to understand usage and improve the product. We do not use personal data for behavioural advertising beyond these analytics tools. You can manage cookies in your browser, and you can install Google’s Analytics opt-out add-on. We provide a consent mechanism for non-essential cookies.

Who we share data with

We use vetted processors, each bound to handle data only on our instructions:

  • HubSpot — CRM and marketing.
  • OpenAI, Anthropic — AI processing of the content you submit.
  • Stripe — payments. Stripe collects your billing details directly; we never see or store full card data.
  • Email and enrichment tools — to send updates and enrich data, under appropriate agreements.

We do not sell your personal data as defined by the CCPA, and we do not share it with third parties for their own marketing without your consent.

International transfers

As a global business, your data may be processed in countries outside your own, including the United States (for example by Stripe and HubSpot). Where we transfer data internationally, we rely on appropriate safeguards such as Standard Contractual Clauses or an adequacy decision.

How long we keep data

  • Client account data — for the duration of the contract plus 6 years (legal and tax).
  • Marketing contacts — until you unsubscribe, then deleted within 30 days.
  • Website analytics — 26 months.
  • Prospect data processed for a client — as the client instructs, typically deleted within 30 days of campaign completion.
  • Payment records — 7 years (UK legal requirement).

After these periods, data is securely deleted or anonymised.

Security

We use industry-standard measures including encryption, access controls, and monitoring, and restrict access to personal data to authorised personnel. No online service is ever 100% secure. If a breach affects your personal data, we will notify you and the ICO within 72 hours where required by the UK GDPR.

Your rights

Depending on where you are, you can:

  • access a copy of the data we hold about you, or request it in portable form;
  • correct inaccurate data or ask us to delete it;
  • withdraw consent at any time where processing relies on it;
  • object to or ask us to restrict certain processing;
  • opt out of any “sale” of data (we do not sell data); and
  • complain to your regulator (the ICO in the UK, your EU Data Protection Authority, or the California Attorney General).

To exercise any right, email contact@algominds.ai. We respond within the timeframes the law requires (typically 30 to 45 days).

Payments

Payments are processed by Stripe, a PCI-DSS Level 1 provider. You enter card details on Stripe’s secure form; we do not store them. We receive only confirmation of payment and minimal billing details (such as billing name and email) to fulfil your order.

Changes to this policy

We may update this policy as our services or the law change. We will post the revised version here with a new “Last updated” date.

Contact us

AI Empowerment Ltd (trading as Algominds), 124 City Road, London EC1V 2NX, United Kingdom. Privacy and data requests: contact@algominds.ai or our DPO at eddie@algominds.ai.

Privacy Policy · Algominds