Privacy Policy


Last Updated: 23rd July 2025


Maestro AI Ltd ("Maestro AI", "we", "our", or "us") is committed to protecting your privacy. This Privacy Policy outlines how we collect, use, share, and protect your personal information under the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable laws.


1. Who We Are


  • Data Controller: Maestro AI Ltd (Company No. 16555541)
  • Registered Address: 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ
  • Registered with: Information Commissioner’s Office (ICO), United Kingdom
  • Contact: support@maestroai.io

2. What This Policy Means for You


We keep your personal information safe, collect only what we need, and let you know how we use it. You can control your data, and we’ll never sell it. This is a plain-English summary, please read the full policy below for legal details.


3. Scope of This Policy


This Policy applies to all personal data we collect through:



By using our services, you agree to the terms outlined in this Policy.


4. What Data We Collect


We collect the following types of personal data:


    1. Information You Provide Directly
      Email address (e.g. when creating an account or contacting support)
    2. Information Collected Automatically
      Device type, IP address, browser type, and usage analytics through cookies

We do not collect sensitive personal data or profile individuals based on their behavior.


5. How We Use Your Data


We only use personal data where there is a legal basis to do so:


  • Purpose & Legal Basis
    • Account registration and login | Performance of a contract
    • Service maintenance and analytics | Legitimate interest
    • Responding to support queries | Legitimate interest
    • Sending opted-in marketing | Consent
    • Legal compliance (e.g. payment recordkeeping) | Legal obligation

6. Cookies & Tracking


We use cookies for platform analytics and to improve your user experience. You can anage cookie preferences through your browser settings. We do not place non-essential ookies (such as for marketing or analytics) without your explicit consent, in compliance ith the UK Privacy and Electronic Communications Regulations (PECR).


7. Data Sharing & Processors


We may share data with trusted third parties to operate our services, including:


  • Cloud hosting providers
  • Payment gateway providers (e.g., Stripe or PayPal)
  • Analytics providers (e.g., Google Analytics)

All third parties are bound by contracts that comply with the UK GDPR.


8. International Data Transfers


If data is transferred outside the UK, we ensure protection through:


  • Standard Contractual Clauses (SCCs) or
  • Other approved legal safeguards

9. Data Security


We use reasonable and proportionate measures to protect your data:


  • HTTPS encryption in transit
  • Encrypted storage of credentials
  • Role-based access controls
  • Regular system patching

Operational Implications:

  • Ensure HTTPS is enforced site-wide
  • Maintain access control logs and revoke unused staff credentials
  • Document security practices internally
  • Monitor for vulnerabilities monthly

10. Your Rights


You have the right to:


  • Access your data
  • Correct inaccurate data
  • Request deletion of your data
  • Object to or restrict processing
  • Withdraw consent (e.g. for marketing)
  • Lodge a complaint with the ICO (www.ico.org.uk)

To exercise any of these rights, email us at support@maestroai.io


11. Marketing Communications


We only send marketing communications to users who have explicitly opted in. All marketing emails include a clear unsubscribe link.


12. Automated Decision-Making


Maestro AI does not engage in profiling or automated decisions that have legal or significant effects on individuals. All insights are platform-wide and non-personalised.


13. Children’s Privacy


Our services are not intended for individuals under the age of 16. We do not knowingly collect data from children under this age.


14. Data Retention


  • Email addresses: retained for account management if the account is active
  • Analytics data: anonymised after 24 months
  • Support emails: retained for up to 12 months
  • Transaction records: retained for 7 years for accounting purposes (if applicable)

15. Updates to This Policy


We may update this Privacy Policy occasionally. Major changes will be announced via email or on our website. Continued use of the service indicates your acceptance.


Questions?


Email us at support@maestroai.io