Privacy Policy

1. Introduction

At ThamesFlow AI, located at Birdcage Walk, London, SW1H 9AP, we specialize in AI-powered business process automation. We take our responsibility toward data privacy seriously. This policy describes how we collect, use, and safeguard personal information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

In the delivery of our intelligent document processing and workflow optimization services, we may collect:

• Identity Data: Names, job titles, and professional affiliations.
• Contact Data: Business email addresses (e.g., [email protected]) and phone numbers.
• Technical Data: IP addresses, browser types, and usage patterns on our platform.
• Processing Data: Encrypted metadata necessary for AI-driven automation tasks.

3. How We Use AI and Data

A core part of our service involves predictive analytics. We ensure that:

• AI models are trained on anonymized or pseudonymized datasets where possible.
• Client data is never leaked between different organizations' automation workflows.
• Automated decision-making processes are subject to human oversight where required by LAW.

4. Data Retention and Security

We implement enterprise-grade encryption (AES-256) for all data at rest and TLS for data in transit. We retain data only for as long as necessary to fulfill the services contracted by our clients or to comply with legal obligations.

5. Your Rights

Under the GDPR, you have the right to access, rectify, or erase your data. If you wish to exercise these rights, please contact our Data Protection Officer at [email protected].

6. International Transfers

While we are headquartered in the UK, some data processing may occur via secure cloud infrastructure within the EEA. We ensure appropriate safeguards (Standard Contractual Clauses) are in place for all international transfers.