Privacy Policy

Last updated: 1 March 2026

1. Who We Are

Ops Intel ("we", "us", "our") is a business automation SaaS platform operated by Ops Intel. Our registered place of business is Newcastle upon Tyne, England, United Kingdom.

For any privacy-related enquiries, contact us at: scott@opsintel.io

2. What Data We Collect

We collect the following categories of personal data:

Account data: Email address, name, and password (hashed) when you register.
Billing data: Billing name and address, and payment card metadata (last 4 digits, expiry) — full card details are processed and stored by Stripe and never held by us.
Usage data: Log data, IP addresses, browser type, and pages visited for security and performance monitoring.
Content you create: Leads, campaigns, content items, workflows, and social posts you add to the platform.
Communications: Emails you send or receive via the platform's outreach features.

3. Legal Basis for Processing

We process your personal data on the following legal bases under UK GDPR:

Contract performance: To provide the service you have signed up for.
Legitimate interests: To improve the platform, prevent fraud, and ensure security.
Legal obligation: Where required by applicable law.
Consent: For optional marketing communications, where we have obtained your consent.

4. How We Use Your Data

We use your personal data to:

Provide, maintain, and improve the Ops Intel platform
Process payments and manage your subscription
Send transactional emails (account confirmations, invoices, password resets)
Respond to support requests
Comply with legal obligations
Detect and prevent fraudulent or abusive activity

5. Data Sharing

We do not sell your personal data. We may share data with the following categories of third parties:

Stripe: Payment processing (PCI DSS compliant)
SendGrid (Twilio): Transactional email delivery
Railway: Cloud infrastructure hosting (EU/US data centres)
Anthropic: AI assistant features (message content processed; not stored by Anthropic)
Google Maps API: Business data enrichment for prospecting features

All sub-processors operate under appropriate data processing agreements.

6. Data Retention

We retain your data for as long as your account is active, or as needed to provide services. Upon account deletion, we will delete your personal data within 30 days, except where we are required to retain it for legal or accounting purposes (typically 7 years for financial records).

7. Your Rights

Under UK GDPR, you have the following rights:

Access: Request a copy of your personal data.
Rectification: Correct inaccurate data.
Erasure: Request deletion of your data ("right to be forgotten").
Restriction: Restrict how we process your data in certain circumstances.
Portability: Receive your data in a machine-readable format.
Objection: Object to processing based on legitimate interests.

To exercise any of these rights, contact us at scott@opsintel.io. We will respond within 30 days.

8. Cookies

We use strictly necessary session cookies to keep you logged in. We do not use advertising or tracking cookies.

9. Security

We implement appropriate technical and organisational measures to protect your personal data, including encryption in transit (TLS), hashed passwords, and restricted access controls. See our Security page for details.

10. International Transfers

Your data may be transferred to and processed in the United States (Stripe, SendGrid, Anthropic, Railway). These transfers are subject to standard contractual clauses or adequacy decisions as appropriate under UK GDPR.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified via email or a prominent notice on the platform. The "Last updated" date at the top of this page will reflect any changes.

12. Contact & Complaints

For privacy enquiries, contact us at scott@opsintel.io.

If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO).