Privacy policy
Last updated: July 2026.
This privacy policy explains how RedFin AI ("we", "us", "our") collects, uses and protects personal data when you visit www.redfinai.co.uk or otherwise interact with us. It is written to comply with the UK GDPR and the Data Protection Act 2018.
Who we are
RedFin AI, registered in the United Kingdom. Registered address available on request. Contact: support@redfinai.co.uk.
What data we collect
- Contact form data: name, company, email, phone, project details you provide.
- Email correspondence: anything you send us by email.
- Technical data: IP address, browser type, device, pages visited, referrer — via standard server logs.
How we use it
- To respond to your enquiries and provide proposals.
- To deliver contracted services.
- To maintain security and diagnose technical issues on our website.
- To comply with legal obligations (accounting, tax, regulatory).
Lawful basis
We rely on: (a) your consent when you submit a form; (b) legitimate interests for security logging and follow-up on active enquiries; (c) contractual necessity to deliver work you've engaged us for; and (d) legal obligation where required.
How long we keep it
Enquiry data is retained for up to 24 months if no engagement follows. Client records are retained for 7 years after the end of the engagement to meet statutory accounting and legal obligations. Server logs are retained for 90 days.
Sharing your data
We do not sell your personal data. We share it only with:
- Trusted service providers (email hosting, form processing, cloud infrastructure) under UK-GDPR-compliant contracts.
- Professional advisors (accountants, lawyers) where necessary.
- Regulators or law enforcement where legally required.
International transfers
Some providers may process data outside the UK/EEA. We use appropriate safeguards (Standard Contractual Clauses, UK IDTA, adequacy decisions) to protect your data wherever it is processed.
Cookies
This site uses only strictly necessary cookies for basic functionality. We do not use marketing or advertising cookies. If we add analytics in future, we will update this policy and — where required — ask for your consent.
Your rights
Under UK GDPR you have the right to: access your data; correct it; ask us to delete it; restrict processing; port it; and object to processing. To exercise any of these, email support@redfinai.co.uk. You also have the right to complain to the Information Commissioner's Office (ico.org.uk).
Security
We use appropriate technical and organisational measures — encryption in transit, access controls, principle of least privilege, regular reviews — to protect your data. No system is perfectly secure; we will notify affected people and the ICO in line with UK GDPR if a breach occurs.
Changes to this policy
We may update this policy from time to time. The "last updated" date at the top reflects the most recent revision.