Our commitment to you: We collect only what we need, we keep it secure, we don't sell it, and we make it easy for you to control your data. This policy explains exactly what we do and why.
1. Who We Are
Baron AI Solutions Ltd ("we", "us", "our") is the data controller responsible for your personal data. We are a company registered in England and Wales, based in Birmingham, United Kingdom.
If you have any questions about this policy or how we handle your data, please contact our team at privacy@baronaisolutions.co.uk.
2. Data We Collect
We collect personal data in the following ways:
- Account registration: name, email address, company name, and password (stored in hashed form)
- Payment information: billing address and payment card details (processed securely via our payment provider — we do not store full card numbers)
- Usage data: how you interact with our platform, including pages visited, features used, and automation logs
- Communications: messages you send us via our contact form, email, or support channels
- Technical data: IP address, browser type and version, device type, operating system, and referral source
- Client Data: any business data you upload or process through our automation Nodes
We do not collect sensitive personal data (such as health information, racial or ethnic origin, or political opinions) and ask that you do not submit such data through our Services.
3. How We Use Your Data
We use the personal data we collect to:
- Create and manage your account and deliver the Services you have subscribed to
- Process payments and send billing-related communications
- Provide customer support and respond to your enquiries
- Send you important service updates, security alerts, and administrative messages
- Send you marketing communications about our products and services (only with your consent, and you can opt out at any time)
- Improve and develop our platform, diagnose technical issues, and conduct internal analytics
- Comply with our legal obligations
4. Legal Basis for Processing
We process your personal data under the following legal bases, as required by UK GDPR:
- Contract performance: processing necessary to provide the Services you have purchased
- Legitimate interests: improving our platform, fraud prevention, and keeping our services secure
- Legal obligation: complying with applicable law, such as tax and financial record-keeping requirements
- Consent: sending marketing emails — you may withdraw consent at any time by clicking "unsubscribe" or contacting us
5. Sharing Your Data
We do not sell your personal data. We may share it with the following categories of third parties:
- Service providers: cloud hosting, payment processors, email delivery, and analytics tools who process data on our behalf under data processing agreements
- Integration partners: third-party platforms you connect to our automation Nodes (only with your instruction)
- Legal authorities: where required by law, court order, or to protect our legal rights
- Business transfers: in the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction
All third-party processors are required to handle your data in accordance with UK GDPR and our data processing agreements.
6. Data Retention
We retain your personal data for as long as necessary to provide the Services and comply with our legal obligations:
- Account data is retained for the duration of your subscription plus 30 days after cancellation, after which it is deleted or anonymised
- Billing records are retained for 7 years as required by UK tax law
- Support communications are retained for 2 years
- Usage logs are retained for 90 days for security and debugging purposes
You may request early deletion of your account at any time (see Your Rights below), subject to our legal retention obligations.
7. Your Rights
Under UK GDPR you have the following rights regarding your personal data:
AccessRequest a copy of the personal data we hold about you
RectificationAsk us to correct inaccurate or incomplete data
ErasureRequest deletion of your data ("right to be forgotten")
RestrictionAsk us to limit how we process your data
PortabilityReceive your data in a structured, machine-readable format
ObjectionObject to processing based on legitimate interests
To exercise any of these rights, please contact us at privacy@baronaisolutions.co.uk. We will respond within 30 days. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
8. Cookies
We use cookies and similar technologies to operate our website and improve your experience. Our cookies fall into the following categories:
- Essential cookies: required for the website to function (e.g. keeping you logged in). These cannot be disabled.
- Analytics cookies: help us understand how visitors use our site so we can improve it. These are only set with your consent.
- Preference cookies: remember your settings and choices to personalise your experience.
You can manage your cookie preferences through your browser settings at any time. Disabling certain cookies may affect the functionality of our website.
9. Security
We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, loss, or disclosure. These include:
- Encryption of data in transit using TLS and at rest
- Access controls and authentication requirements for our systems
- Regular security reviews and vulnerability assessments
- Staff training on data protection and security practices
No system is completely secure. If you suspect your account has been compromised, please contact us immediately at security@baronaisolutions.co.uk.
10. Children's Privacy
Our Services are not directed at children under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately and we will take steps to delete it.
11. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will notify you by email or by displaying a prominent notice on our website.
The "Last updated" date at the top of this page indicates when the policy was last revised. We encourage you to review this policy periodically.
For any questions, concerns, or requests relating to your privacy or this policy, please reach out to us:
- Email: privacy@baronaisolutions.co.uk
- Address: Baron AI Solutions Ltd, Birmingham, United Kingdom
- General enquiries: Contact page
You also have the right to complain to the UK supervisory authority — the Information Commissioner's Office (ICO) — if you believe your data has been handled unlawfully. Visit ico.org.uk for more information.