How HuwamAi handles personal data

1. Who we are

HuwamAi provides demand-protection services for businesses. For data protection purposes, HuwamAi is the controller of the personal data collected through this website unless this policy says otherwise.

2. What personal data we collect

Depending on how you interact with us, we may collect:

• your name;
• your email address;
• your phone number;
• your business name and role;
• details you submit through enquiry forms or call-booking forms;
• records of our communications with you, including emails and meeting notes;
• basic technical data such as IP address, browser type, and page usage if analytics tools are enabled on the site.

Please do not submit unnecessary sensitive personal data through this website. If later service delivery involves call recordings or health-related information, that should be covered by a more detailed client agreement and operational privacy notice.

3. How we collect personal data

We collect personal data when you:

• submit a form on this website;
• book a discovery call;
• contact us by email or phone;
• interact with the website while analytics or cookies are active.

4. Why we use personal data

We use personal data to:

• respond to enquiries;
• schedule, confirm, and manage discovery calls;
• assess whether our services are a fit for your business;
• send follow-up information related to your enquiry;
• operate, secure, and improve the website;
• keep internal records of conversations and service interest.

5. Lawful bases for processing

Under UK GDPR, organisations need a lawful basis for processing personal data. We generally rely on:

• Legitimate interests for handling business enquiries, managing communications, and operating the website, where those interests are not overridden by your rights and interests.
• Consent where you have clearly opted in, or where consent is the appropriate basis for specific communications or technologies.
• Contract where processing is necessary to take steps at your request before entering into a contract or to deliver agreed services.

6. Who we share personal data with

We do not sell personal data.

We may share personal data with trusted service providers where necessary to run the website or deliver our services, such as:

• website hosting providers;
• email and communication platforms;
  • Google Plc
  • Instantly.ai
• calendar or scheduling tools;
  • Calendaly
  • Cal.com
• CRM or lead-management tools;
• analytics providers;
• telephony or voice infrastructure providers, if relevant.
  • VAPI
  • RatalAI

These providers act on our instructions or under their own privacy obligations, depending on the context.

7. International transfers

Some suppliers may process data outside the UK. Where that happens, we will only use providers and transfer mechanisms that are intended to provide an appropriate level of protection under applicable data protection law.

8. Data retention

We keep personal data only for as long as reasonably necessary for the purpose it was collected, including to respond to enquiries, maintain business records, and meet legal, accounting, or regulatory requirements.

If you do not become a client, enquiry information is typically retained only for a limited period unless there is a legitimate reason to keep it longer. If you become a client, retention should be covered in your client agreement and operational documentation.

9. Your rights

Under UK GDPR, you may have rights including the right to:

• be informed about how your personal data is used;
• request access to your personal data;
• request correction of inaccurate personal data;
• request deletion in certain circumstances;
• request restriction of processing in certain circumstances;
• object to certain types of processing;
• request data portability where applicable.

To exercise any of these rights, contact: info@huwamai.com.

10. Complaints

If you have concerns about how your personal data is handled, please contact us first so we can try to resolve the issue.

You also have the right to complain to the Information Commissioner’s Office (ICO).

11. Security

We take reasonable technical and organisational steps to protect personal data against unauthorised access, misuse, loss, or disclosure. No system is completely risk-free, so you should not send unnecessary sensitive information through general website forms.

12. Cookies and analytics

If this website uses cookies, analytics, or similar technologies, you should publish a cookie notice or cookie settings tool that accurately reflects the technologies in use. If you are not using non-essential cookies, do not pretend you are.

13. Changes to this policy

We may update this Privacy Policy from time to time. The latest version will always be posted on this page with the updated date shown at the top.