← Back to Home

Privacy Policy

Last updated: February 2026

1. Introduction

RegIntel Ltd ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal data when you use our service.

We are the data controller for the personal data we process. Our registered address is [Address to be added].

2. Data We Collect

We collect the following types of data:

  • Account Data: Name, email address, organisation name
  • Facility Data: Care facility information, CQC location IDs
  • Evidence Data: Documents you upload (policies, training records, audits)
  • Usage Data: How you interact with our service
  • Technical Data: IP address, browser type, device information

3. How We Use Your Data

We use your data to:

  • Provide and improve the RegIntel service
  • Process mock inspections and generate reports
  • Communicate with you about your account
  • Ensure security and prevent fraud
  • Comply with legal obligations

4. Legal Basis for Processing

We process your data based on:

  • Contract: To provide the service you've signed up for
  • Legitimate interests: To improve our service and ensure security
  • Legal obligation: To comply with applicable laws
  • Consent: For optional communications (you can withdraw anytime)

5. Data Sharing

We do not sell your personal data. We share data only with:

  • Service providers: Cloud hosting (AWS), authentication (Clerk), payments (Stripe)
  • Legal authorities: When required by law

All service providers are contractually bound to protect your data.

6. Data Security

We implement industry-standard security measures including:

  • Encryption in transit (TLS) and at rest
  • Multi-tenant data isolation
  • Immutable audit logs
  • Regular security assessments

7. Data Retention

We retain your data for as long as your account is active. After account deletion, we retain data for up to 90 days for backup purposes, then permanently delete it. Audit logs may be retained longer for legal compliance.

8. Your Rights (UK GDPR)

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion of your data
  • Portability: Receive your data in a portable format
  • Object: Object to certain processing
  • Restrict: Request limited processing

To exercise these rights, contact us at privacy@regintelai.co.uk

9. International Transfers

Some of our service providers may process data outside the UK. We ensure appropriate safeguards (such as Standard Contractual Clauses) are in place for any international transfers.

10. Cookies

We use essential cookies for authentication and security. We do not use tracking or advertising cookies.

11. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes via email or through the Service.

12. Contact & Complaints

For privacy questions or to exercise your rights: privacy@regintelai.co.uk

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO): ico.org.uk