Privacy Policy

Welcome to the Foundations AI's privacy notice.

This privacy notice provides information on how Foundations AI collects and processes your personal data when you visit our website to sign up for a newsletter, purchase a product or service.

It is important that you read this privacy notice together with our website privacy policy which contains more detailed information about our data processing and can be accessed here.

Important information and who we are

91D Ltd trading as Foundations AI are the controller and responsible for your personal data.

Contact details

Our full details are:

Full name of legal entity: 91D Ltd

Name or title of Data Protection Officer: Daniel Sagar

Email address: [email protected]

Postal address: Unit 3 South, Old Dairy Works, Milford Rd, Lymington, SO41 8DU

Telephone number: 01590 439000

1. The data we collect about you

We may collect, use, store and transfer different kinds of personal data about you as follows:

- Identity Data.

- Contact Data.

- Financial Data.

- Transaction Data.

- Technical Data.

- Profile Data.

- Usage Data.

- Marketing and Communications Data.

We explain these categories of data here:

- Identity Data includes first name, last name, username or similar identifier, title, and company name.

- Contact Data includes billing address, email address and telephone numbers.

- Financial Data includes payment card details, where relevant to billing for services.

- Transaction Data includes details about payments to and from you and other details of products and services you have purchased from us.

- Technical Data includes internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our services.

- Profile Data includes your username and password, purchases or orders made by you, preferences, feedback, and survey responses.

- Usage Data includes information about how you use our website, CRM platform, and services.

- Marketing and Communications Data includes your preferences in receiving marketing from us and your communication preferences.

We use different methods to collect data about you, which are explained here:

- Direct interactions: You may give us your personal data (including Identity, Contact, and Financial Data) by filling in forms, signing up to our platform, requesting support, subscribing to services, or communicating with us by phone, email, live chat, or other channels.

- Automated technologies: As you use our website or CRM platform, we may automatically collect Technical and Usage Data using cookies, server logs, and similar technologies. This helps us monitor system performance, track usage patterns, and improve the platform.

- Third parties or publicly available sources: We may receive personal data about you from third parties such as analytics providers (like Google), payment processors, identity verification services, or data you have made publicly available (e.g. via LinkedIn or your business website).

- Customer onboarding: During your onboarding with Foundations, we may collect Profile and Marketing Data through calls, forms, and shared documents to help tailor your account setup and CRM configuration.

2. How we use your personal data

We will only use your personal data for the purpose for which we collected it which include the following:

- To register you as a new customer.

- To process and deliver your order.

- To manage your relationship with us.

- To enable you to participate in a prize draw, competition or complete a survey.

- To improve our website, products/services, marketing or customer relationships.

- To recommend products or services which may be of interest to you.

To provide technical support and CRM management services. As part of this, authorised members of our team may access your CRM account data (including contacts, pipelines, forms, emails, call recordings and campaign activity) solely for the purpose of setup, troubleshooting, optimisation, or ongoing service delivery. Access is strictly limited to what is necessary and is governed by our internal data protection policies.

3. How we share your personal data

We may share your personal data with external third parties. More detail can be found here:

- Service providers who support the delivery of our CRM platform and related services. This includes trusted third parties who provide onboarding, customer support, automation services, hosting infrastructure, or technical maintenance.

For example, we may use vetted partners to assist with technical support and platform setup under our direct instruction. These partners are contractually bound to keep your data secure and use it only in accordance with our instructions.

- Professional advisers including lawyers, bankers, auditors and insurers who provide consultancy, banking, legal, insurance and accounting services.

- Regulators and other authorities who may require reporting of processing activities in certain circumstances.

We do not sell or rent your personal data to any third parties for marketing purposes.

4. International transfers

We may transfer, store and process your personal data outside the UK. More detail can be found here:

Some of our third-party service providers and support partners are based outside the United Kingdom, including in countries that may not have the same data protection laws as the UK. This means your personal data may be transferred to, stored in, or processed in locations such as the United States or other jurisdictions.

Whenever we transfer your personal data internationally, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is in place:

We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the UK Government.

Where we use certain service providers, we may use specific contracts approved for use in the UK which give personal data the same protection it has in the UK (such as the International Data Transfer Agreement or Standard Contractual Clauses).

If you would like more information about international transfers and the safeguards in place, please contact us.

5. Your legal rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data including the right to receive a copy of the personal data we hold about you and the right to make a complaint at any time to the Information Commissioner's Office, the UK regulator for data protection issues (www.ico.org.uk).

You have the right to:

- Request access to the personal data we hold about you (commonly known as a "data subject access request").

- Request correction of any incomplete or inaccurate data we hold about you.

- Request erasure of your personal data where there is no good reason for us to continue processing it.

- Object to processing where we are relying on a legitimate interest and you feel it impacts your rights and freedoms.

- Request restriction of processing of your personal data.

- Request the transfer of your personal data to you or to a third party in a structured, commonly used, machine-readable format.

- Withdraw consent at any time where we are relying on consent to process your personal data.

To exercise any of these rights, please contact us.

6. Further details

If you are looking for more information on how we process your personal data including on data security, data retention and lawful processing bases, please contact us.