Privacy Policy

Last updated: 1 January 2026

This Privacy Policy explains how Clear Assure Limited (“Clear Assure”, “we”, “us”, or “our”) collects, uses, stores, and protects personal data when you interact with our website, platform, and services.

We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection laws.

1. Who We Are

Company name: Clear Assure Limited
Registered office:
5th Floor, 167–169 Great Portland Street
London, United Kingdom
W1W 5PF

Email: [email protected]

Clear Assure provides AI-driven compliance software and advisory services.

For the purposes of data protection law, Clear Assure Limited is the Data Controller in respect of personal data processed through our website and platform.

2. Personal Data We Collect

We may collect and process the following categories of personal data:

a) Information You Provide

• Name, job title, company name
• Email address, telephone number
• Account login details
• Enquiries, support requests, and correspondence
• Information submitted via forms, demos, or onboarding processes

 

b) Information Collected Automatically

• IP address
• Browser type and version
• Device information
• Pages visited, time spent, and interaction data
• Cookies and similar tracking technologies

 

c) Client & End-User Data (Platform Use)

When you use the Clear Assure platform, we may process personal data contained within:

• Compliance queries and tickets
• Uploaded documents (e.g. policies, contracts, audit evidence)
• Risk assessments, audit responses, and logs

In these cases, Clear Assure may act as a Data Processor on behalf of its client, who remains the Data Controller.

3. How We Use Personal Data

We use personal data for the following purposes:

• To provide and operate the Clear Assure platform
• To manage accounts, authentication, and access control
• To respond to enquiries and provide customer support
• To deliver compliance insights, audits, and AI-driven responses
• To improve our services, functionality, and user experience
• To meet legal, regulatory, and contractual obligations
• To send service-related communications and updates
• For security monitoring, fraud prevention, and audit trails

We do not sell personal data to third parties.

4. Lawful Bases for Processing

Under UK GDPR, we rely on one or more of the following lawful bases:

• Contract – where processing is necessary to deliver our services
• Legal obligation – where required by law or regulation
• Legitimate interests – to operate, improve, and secure our business and platform
• Consent – where you have explicitly agreed (e.g. marketing communications)

5. AI Processing & Automated Decision-Making

Clear Assure uses AI to:

• Classify compliance queries by severity
• Provide automated guidance and draft responses
• Review uploaded documentation against defined compliance criteria

AI outputs are governed by strict guard rails, playbooks, and policies.
Where higher-risk matters are identified, issues are escalated to qualified human specialists.

We do not make decisions producing legal or similarly significant effects solely by automated means without appropriate human oversight.

6. Data Sharing

We may share personal data with:

• Trusted service providers (e.g. hosting, analytics, email delivery)
• Professional advisers (legal, regulatory, or audit)
• Regulatory or law enforcement bodies where legally required

All third parties are subject to appropriate confidentiality, security, and data protection obligations.

7. International Transfers

Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place, such as:

• UK adequacy regulations
• Standard Contractual Clauses (SCCs)
• Equivalent lawful transfer mechanisms

8. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

• Encryption in transit and at rest
• Access controls and role-based permissions
• Audit logging and monitoring
• Secure hosting environments

Despite our efforts, no system is completely secure. Users are responsible for keeping login credentials confidential.

9. Data Retention

We retain personal data only for as long as necessary to:

• Fulfil the purposes outlined in this policy
• Meet legal, regulatory, or contractual requirements

Retention periods vary depending on the nature of the data and the services provided.

10. Your Rights

Under UK GDPR, you have the right to:

• Access your personal data
• Request correction of inaccurate data
• Request erasure (where applicable)
• Restrict or object to processing
• Data portability
• Withdraw consent at any time
• Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise your rights, contact us at [email protected].

If you have concerns about how your personal data is being processed and are not satisfied with our response, you have the right to raise a complaint with the UK supervisory authority for data protection.

Information Commissioner’s Office (ICO)
Website: www.ico.org.uk
Helpline: 0303 123 1113

11. Cookies

We use cookies and similar technologies to:

• Ensure website functionality
• Analyse usage and performance
• Improve user experience

You can control cookies through your browser settings. Further details are provided in a separate Cookie Policy.

12. Third-Party Links

Our website or platform may contain links to third-party websites. We are not responsible for their privacy practices and encourage you to review their policies.

13. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website, and material changes will be communicated where appropriate.

14. Contact Us

If you have any questions about this Privacy Policy or how we handle personal data, please contact:

Clear Assure Limited
5th Floor, 167–169 Great Portland Street
London, W1W 5PF
[email protected]