Legal
Privacy Policy
Last updated: 3 July 2026
This Privacy Policy explains how Operscale (“Operscale,” “we,” “us”) collects, uses and protects personal information when you visit www.operscale.cloud or engage our services. We have written it to align with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, with the EU GDPR applying where relevant. It is a working draft; the registered entity details and jurisdiction-specific terms below are confirmed before launch.
The short version, in plain English: if you send us your details through a form on this site, we only use them to reply to you. No mailing lists, no sharing with anyone else, and you can ask us to delete them at any time.
[FOUNDER_TODO, confirm registered legal entity name, business address, and governing jurisdiction; have this policy reviewed by counsel before launch]
1. Information we collect
We collect only what we need to respond to you and deliver our services:
- Contact details you submit, name, company, role, email, and the description of your operational needs.
- Business data you share with us under a signed Data Processing Agreement during an engagement, processed solely to deliver the service.
- Basic technical data your browser sends (such as IP address and user agent). We do not run third-party advertising or behavioral tracking on this site.
2. How we use it
- To reply to your enquiry and schedule the pilot.
- To deliver and operate the automation services you engage us for.
- To meet our legal, security, and contractual obligations.
We do not sell personal information. We do not use the contact details you submit for any decision that produces a legal or similarly significant effect about you, consistent with the four rules that govern every engagement.
3. Legal bases (UK GDPR)
We process personal data on the bases of your consent, the performance of a contract with you, and our legitimate interests in responding to enquiries and operating our business, balanced against your rights. Where we send electronic marketing, we comply with the Privacy and Electronic Communications Regulations (PECR), and every marketing message carries a working opt-out.
4. Data processing & sub-processors
When we process business data on your behalf during an engagement, we act as a processor under UK GDPR Article 28 pursuant to a Data Processing Agreement. That DPA names the sub-processors involved in delivering the service, for example our hosting, database and workflow infrastructure providers, and sets out the safeguards applied to any transfer of personal data outside the UK (such as the ICO’s International Data Transfer Agreement or the UK Addendum). We do not introduce new sub-processors without notice.
5. Your rights
Depending on where you live, you may have the right to:
- Access, correct, or delete the personal information we hold about you.
- Object to or restrict certain processing, and withdraw consent at any time.
- Request portability of data you provided to us.
- Opt out of any sale or sharing of personal information (we do neither).
To exercise any of these, email akinwunmi.akinrimisi@operscale.cloud. We respond within the timeframe required by applicable law. You also have the right to complain to the Information Commissioner’s Office (ico.org.uk).
6. Data retention & security
We retain personal information only as long as needed for the purposes above or as required by law. Engagement data is protected with access controls, role-based permissions, and an append-only audit log, and is deleted or returned at the end of an engagement per the DPA.
7. Changes & contact
We will post any material change here with an updated date. Questions about this policy can be sent to akinwunmi.akinrimisi@operscale.cloud.