Last updated February 19, 2026

AI EVERYWHERE LTD - Privacy Notice

Questions or concerns? Contact our Data Protection Officer at adriana@aieverywhere.io.

This Privacy Notice for AI Everywhere Ltd ("we," "us," or "our") describes how and why we collect, store, use, and share ("process") your personal information when you use our services ("Services"), including when you:

• Visit our website at www.aieverywhere.io or any website of ours that links to this Privacy Notice
• Complete an assessment, questionnaire, or lead generation form through our platforms
• Purchase services or paid assessments
• Subscribe to our newsletter or marketing communications
• Register for or attend a webinar, LinkedIn Live, podcast, or event
• Engage with us in other related ways, including sales, marketing, or events

This summary provides key points only. Please read the full notice below for complete details.

• What personal information do we process?: We collect information you voluntarily provide, including names, email addresses, company details, job titles, and assessment responses.
• Third-party service providers: We use Typeform, HubSpot, Zapier, PDFMonkey, and Stripe to deliver our services. Each acts as a data processor on our behalf.
• International transfers: Some providers (HubSpot, Zapier) may process data in the United States under their standard contractual and privacy terms.
• Legal bases: We rely on consent, performance of a contract, and legitimate interests as our legal bases under UK GDPR and EU GDPR.
• Retention: Marketing and lead data is retained for 3 years. Financial and transactional records are retained for 7 years in line with UK legal requirements.
• Your rights: You have the right to access, correct, or delete your personal data. Contact us at adriana@aieverywhere.io.
• We do not sell your data: We do not sell, rent, or share your personal information with third parties for their own marketing purposes.

1. What Information Do We Collect?

2. How Do We Process Your Information?

3. What Legal Bases Do We Rely On?

4. When and With Whom Do We Share Your Personal Information?

5. Do We Use Cookies and Other Tracking Technologies?

6. How Long Do We Keep Your Information?

7. How Do We Keep Your Information Safe?

8. Do We Collect Information From Minors?

9. What Are Your Privacy Rights?

10. Controls for Do-Not-Track Features

11. Do United States Residents Have Specific Privacy Rights?

12. Do Other Regions Have Specific Privacy Rights?

13. Do We Make Updates to This Notice?

14. How Can You Contact Us?

15. How Can You Review, Update, or Delete the Data We Collect?

We collect personal information you voluntarily provide when you interact with our Services. This includes:

• Names, job titles, and company names
• Email addresses and phone numbers
• Mailing and billing addresses
• Assessment responses and questionnaire data (collected via Typeform)
• Contact preferences
• Payment information (handled exclusively by Stripe)

Where you make a purchase, payment data is handled exclusively by Stripe. AI Everywhere Ltd does not store payment card data. Please review Stripe's privacy notice at https://stripe.com/gb/privacy.

When you visit our website, we automatically collect certain technical information including your IP address, browser type, device characteristics, operating system, language preferences, and usage data. This information is used for security, analytics, and service improvement purposes.

We process your personal information for the following purposes:

• To deliver services, including sending personalised assessment results by email via PDFMonkey and Zapier
• To process payments for paid assessments and services via Stripe
• To store and manage contact and lead data in our CRM (HubSpot)
• To automate workflows between our platforms using Zapier
• To respond to your enquiries and provide customer support
• To send administrative communications, including updates to our terms and policies
• To send marketing and promotional communications where you have consented or we have a legitimate interest (you may opt out at any time)
• To analyse usage trends and improve our Services
• For security, fraud prevention, and legal compliance

If you are located in the EU or UK, the GDPR and UK GDPR require us to explain the legal bases we rely on:

• Consent: Where you have explicitly agreed to the processing of your data — for example, by ticking the consent checkbox on our assessment forms, subscribing to our newsletter, or registering for an event. You may withdraw consent at any time.
• Performance of a Contract: Where processing is necessary to fulfil a service you have requested, such as delivering assessment results, processing a payment, or providing consultancy services.
• Legitimate Interests: Where we have a legitimate business interest that does not override your rights and freedoms — for example, maintaining our CRM, sending service-related communications, improving our Services, and conducting B2B outreach via LinkedIn and email.
• Legal Obligations: Where processing is required to comply with applicable law, including financial record-keeping obligations.

AI Everywhere Ltd is the data controller of the personal information described in this Privacy Notice.

We share your personal information only where necessary with the following third-party service providers, each acting as a data processor on our behalf. We do not sell your personal data to third parties.

We use Typeform to host and deliver our assessments, questionnaires, and lead generation forms. When you complete a form, your responses and personal details are processed by Typeform. Typeform's privacy policy is available at https://www.typeform.com/help/a/typeform-privacy-policy-360029730171/.

We use HubSpot to store and manage contact and lead data collected through our forms and outreach activities. HubSpot may process data in the United States under their Data Processing Agreement and standard contractual terms. HubSpot's privacy policy is available at https://legal.hubspot.com/privacy-policy. By submitting your information, you acknowledge that it may be transferred to and stored in the United States.

We use Zapier to automate data flows between our platforms — for example, passing assessment responses from Typeform to PDFMonkey and HubSpot, and triggering automated email delivery. Zapier may process your personal data in the United States. Zapier's privacy policy is available at https://zapier.com/privacy.

We use PDFMonkey to generate personalised PDF assessment reports and deliver them to your email address. Your name, email address, and assessment results are processed by PDFMonkey to create your personalised report. PDFMonkey's privacy policy is available at https://www.pdfmonkey.io/privacy.

We use Stripe to process payments for paid assessments and services. Stripe handles all payment card data and AI Everywhere Ltd does not store or access payment card information. Stripe's privacy policy is available at https://stripe.com/gb/privacy.

We use Google Analytics to understand how visitors use our website, and Google Workspace (including Gmail) for business communications and outreach. Our use of Google APIs adheres to the Google API Services User Data Policy. Google's privacy policy is available at https://policies.google.com/privacy.

We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

Where we collect your personal data through our assessment or lead generation forms, we will ask for your explicit consent via an unchecked checkbox before submission. This consent covers the storage of your data in our CRM (HubSpot) and the processing of your data by the third-party providers listed above.

We may use cookies and similar tracking technologies to gather information when you interact with our website. These include:

• Strictly necessary cookies required for the operation of our website
• Analytics cookies (Google Analytics) to understand how visitors use our site
• Third-party tracking technologies used by our service providers

You can control cookie preferences through your browser settings or our cookie consent banner. Opting out of certain cookies may affect your experience on our website. For full details, please refer to our Cookie Policy.

We retain your personal information only for as long as necessary to fulfil the purposes outlined in this Privacy Notice, or as required by law. Our specific retention periods are:

• Marketing contacts, leads, and assessment respondents: 3 years from the date of last interaction. After this period, data is deleted or anonymised unless you have become an active client.
• Active client records: For the duration of the engagement plus 3 years after the last interaction.
• Financial and transactional records (including payment records): 7 years from the date of the transaction, in accordance with UK financial record-keeping legal requirements.
• Consent records: Retained for as long as we rely on that consent, plus an additional period to demonstrate compliance.

When there is no longer a legitimate business reason to retain your data, we will delete or anonymise it. If deletion is not immediately possible, we will isolate it from further processing until deletion is possible.

We have implemented appropriate technical and organisational security measures to protect your personal information, including:

• Restricting access to personal data to authorised personnel only
• Using reputable, security-certified third-party processors (Typeform, HubSpot, Stripe, Zapier, PDFMonkey)
• Maintaining secure email communications for data delivery

However, no electronic transmission over the internet can be guaranteed to be 100% secure. We cannot guarantee that unauthorised third parties will never be able to defeat our security measures. Transmission of personal information to and from our Services is at your own risk. You should only access the Services within a secure environment.

We do not knowingly collect data from or market to children under 18 years of age. Our Services are intended for business professionals. If we learn that personal information from a person under 18 has been collected, we will take reasonable steps to delete such data promptly. If you are aware of any such data, please contact us at adriana@aieverywhere.io.

Depending on your location, you may have the following rights regarding your personal information:

• Right to access your personal data and obtain a copy
• Right to rectification of inaccurate data
• Right to erasure (the "right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing based on legitimate interests
• Right not to be subject to solely automated decision-making
• Right to withdraw consent at any time (where processing is based on consent)

To exercise any of these rights, please contact us at adriana@aieverywhere.io. We will respond within 30 days in accordance with applicable law.

If you are located in the UK and believe we are unlawfully processing your data, you have the right to complain to the Information Commissioner's Office (ICO) at www.ico.org.uk. If in the EU, you may contact your local data protection authority.

Most web browsers and some mobile operating systems include a Do-Not-Track ("DNT") feature or setting. As no uniform technology standard for recognising and implementing DNT signals has been finalised, we do not currently respond to DNT browser signals. If a standard is adopted in the future, we will update this Privacy Notice accordingly.

If you are a resident of California, Colorado, Connecticut, or other US states with applicable privacy laws, you may have additional rights including the right to know what personal information we collect, correct inaccuracies, request deletion, and opt out of the sale or sharing of personal data. We do not sell personal information. To exercise your rights, please contact us at adriana@aieverywhere.io.

If you are located in the EEA or UK, the GDPR and UK GDPR apply to our processing of your personal data. You have the rights described in Section 9 above. Where data is transferred to processors outside the UK/EEA (including the United States), this is done under the standard terms and data processing agreements of our service providers (HubSpot, Zapier), which include appropriate safeguards.

If you are located in the UAE or other Middle Eastern jurisdictions, we are committed to complying with applicable data protection laws including the UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (UAE PDPL). This includes:

• Collecting your personal data only for specific, clear, and legitimate purposes
• Obtaining your consent where required before processing your personal data
• Providing you with the right to access, correct, or request deletion of your personal data
• Not transferring your personal data to third parties without appropriate safeguards

To exercise your rights under UAE PDPL or other applicable Middle Eastern data protection laws, please contact us at adriana@aieverywhere.io.

If you are located in Canada, we may process your information if you have given us specific consent, or in situations where your permission can be inferred. You have the right to access and correct your personal information. To make a request, contact us at adriana@aieverywhere.io.

We collect and process your personal information in accordance with Australia's Privacy Act 1988 and New Zealand's Privacy Act 2020. You have the right to request access to or correction of your personal information. If you believe we are unlawfully processing your data, you may contact the Office of the Australian Information Commissioner or the Office of New Zealand Privacy Commissioner.

If you are located in South Africa, you have the right to request access to or correction of your personal information under the Protection of Personal Information Act (POPIA). Complaints may be directed to the Information Regulator at enquiries@inforegulator.org.za.

We may update this Privacy Notice from time to time to stay compliant with relevant laws or to reflect changes in our services and data processing activities. The updated version will be indicated by an updated date at the top of this Notice. If we make material changes, we may notify you by prominently posting a notice or by sending you a direct notification. We encourage you to review this Notice periodically.

AI Everywhere Ltd

Data Protection Officer: Adriana (Adri)

Email: adriana@aieverywhere.io

Phone: 07464422254

Postal address: 71-75 Shelton Street, Covent Garden, London WC2H 9JQ, England

Website: www.aieverywhere.io

You have the right to request access to, correction of, or deletion of the personal information we hold about you. To submit a request, please email adriana@aieverywhere.io or visit www.aieverywhere.io/contact. We will acknowledge your request within 5 business days and respond fully within 30 days in accordance with applicable data protection law.

AI Everywhere Ltd | www.aieverywhere.io | adriana@aieverywhere.io

71-75 Shelton Street, Covent Garden, London WC2H 9JQ, England