Legal

Privacy Policy

Last updated . A plain-English summary of how we handle your data.

Who we are

FoundbyAI ("we", "us") provides AI-visibility scans and related services to businesses in the UK. For any privacy question, contact hello@foundbyai.co.uk. We are the data controller for the information described below.

What we collect

  • Information you give us: your name, email, phone (if provided), business name, website address, town, the platform your site is built on, how you take bookings, and anything you type into our forms.
  • Scan data: publicly available information about your business — your website's public pages, your listings (Google, Foursquare, Apple, Bing), reviews, and how AI assistants answer questions about your business.
  • Basic usage data: standard web analytics to improve the site.

Why we use it

  • To run your scan and produce your report.
  • To email you that report and respond to your enquiries.
  • If you opt in, to send occasional relevant updates (unsubscribe any time).
  • To provide and improve our services.

Our lawful bases

We rely on your consent for marketing emails, and on our legitimate interests (and steps to enter a contract) for running the scan you requested and replying to you. For paid services we rely on performance of a contract.

Who we share it with

We use trusted service providers ("processors") who only process your data on our instructions:

  • Cloudflare — website and scan hosting.
  • Supabase — secure storage of scan records and contact details.
  • Brevo — sending your report and emails.
  • AI and data providers — to run the scan we send queries about your business to services including OpenAI, Anthropic, Google, Perplexity, Foursquare and Serper. We send the minimum needed and never send them your contact details.

We never sell your personal data, and we don't run third-party advertising on this site.

How long we keep it

We keep scan records and contact details for as long as needed to provide our services and a reasonable period afterwards, then delete or anonymise them. You can ask us to delete your data sooner.

International transfers

Some providers are based outside the UK. Where data leaves the UK, we rely on appropriate safeguards such as the UK International Data Transfer Agreement or equivalent.

Your rights

Under UK GDPR you can access, correct, delete or restrict use of your personal data, object to processing, request portability, and withdraw consent at any time. Email hello@foundbyai.co.uk and we'll action it. You can also complain to the Information Commissioner's Office (ICO) at ico.org.uk.

Cookies

We use only essential cookies and privacy-friendly analytics. No advertising or cross-site tracking cookies.

Changes

We may update this policy; the date above shows the latest version.

This policy is a starting template, not legal advice. Before you launch, have it reviewed against your final data flows and the providers you actually use.