Privacy Policy

Introduction AutoAdvise Limited ("AutoAdvise", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy outlines how we collect, use, and store personal data via our mobile application, website, and related services, in compliance with the UK GDPR, EU GDPR 2016/679, the Privacy and Electronic Communications Regulations (PECR) 2003, and other relevant data protection laws.

Company Information

• Registered Office: Kemp House, 152-160 City Road, London, United Kingdom, EC1V 2NX

• Contact Email: oren@autoadvise.co.uk

• Data Protection Officer (DPO) Email: oren@autoadvise.co.uk

• ICO Registration Number: ZB906168

Legal Basis for Processing We process data under the following legal grounds:

Legal Basis

Examples of Use

Consent

Opting in for product updates, newsletters, or beta programs

Contractual Need

Setting up and managing your account

Legal Obligation

Compliance with tax, regulatory, or legal reporting obligations

Legitimate Interest

Improving our product, responding to enquiries

When operating as a data processor (e.g., on behalf of a financial advice firm), we follow the legal basis provided by the controller.

Data We Collect

• User-Provided Data: Name, email, phone number, adviser firm, uploaded audio files, client metadata.

• Automatically Collected Data: Device type, operating system, IP address, usage analytics, crash logs.

• Authentication Data: Information from third-party sign-in services (e.g., Microsoft, Google).

Data Usage Your data is used to:

• Create and manage your account

• Generate compliance documentation

• Deliver support and troubleshooting

• Improve product performance

• Send service-related notifications

We do not sell or rent your data.

Google Sign-In and Calendar Integration

1. What Google Data We Access

- Basic profile information (name, email address) when you sign in with Google

- Google Calendar events and metadata when you connect your calendar

- Calendar availability and meeting scheduling information

2. How We Use Google Data

- To authenticate and create your AutoAdvise account

- To retrieve and display your calendar events within the application

- To create and update calendar events for scheduled meetings

- To provide meeting transcription and compliance documentation services

- To sync meeting information with your AutoAdvise account

3. How We Store Google Data

- Google Calendar data is cached temporarily in our secure database

- All data is encrypted at rest using AES-256 encryption

- Data is encrypted in transit using TLS 1.2+

- We store only the minimum data necessary to provide calendar integration services

- Calendar tokens are securely stored and refreshed automatically

4. How We Share Google Data

- We do not sell or share your Google data with third parties for marketing purposes

- Google data may be processed by our infrastructure providers (Azure/cloud hosting) under strict data processing agreements

- Data is only shared as necessary to deliver the services you've requested

5. Your Control Over Google Data

- You can disconnect Google Calendar integration at any time from your account settings

- You can revoke AutoAdvise's access via your Google Account permissions page

6. Compliance with Google Policies

- Our use of Google user data complies with the https://developers.google.com/terms/api-services-user-data-policy, including the Limited Use requirements

- We do not use Google data for advertising or marketing purposes

- We do not allow humans to read Google user data unless necessary for security, compliance, or with your explicit consent

Use of Large Language Models (LLMs) We use LLMs to generate summaries and reports. All data is sent via encrypted APIs and not stored or used by the model providers for training. Personal identifiers are minimized unless required for context.

Data Retention We retain data only as long as necessary to deliver our services or fulfill legal obligations. Retention periods are defined by:

• Controller requirements (if acting as a processor)

• ICO or FCA guidance (if acting as a controller)

• User deletion requests

User Rights You have rights to:

• Access your personal data

• Rectify incorrect data

• Request erasure

• Restrict or object to processing

• Data portability

Please contact oren@autoadvise.co.uk to exercise these rights.

Data Security We implement:

• TLS 1.2+ encryption in transit

• AES-256 encryption at rest

• Role-based access controls

• Regular vulnerability scans and audits

International Data Transfers We only transfer data outside the UK/EU under standard contractual clauses or other lawful safeguards.

Third-Party Services We use trusted providers for hosting, analytics, and authentication. All partners are GDPR-compliant.

Children's Privacy Our app is not intended for individuals under 18 years of age.

Complaints You may contact the ICO at https://ico.org.uk/make-a-complaint/ if you're not satisfied with our response.

Policy Updates This policy is reviewed regularly.

Contact Us For privacy questions, email: oren@autoadvise.co.uk

© 2025 AutoAdvise Limited. All rights reserved.