/>
Legal

Privacy Policy

This policy explains what personal data Selllution collects, why, how we protect it, and the rights you have. It covers visitors, customers and their authorised users.

Last updated June 2026Selllution Holdings LtdEngland & Wales
Working draft. This document is a structured starting point written to match the Selllution product. It is not legal advice — have a qualified UK solicitor review and finalise it before publishing.

01Who we are

Selllution Holdings Ltd is the data controller for the personal data described in this policy in respect of our own business (visitors, prospects, customers and their users). Where we process personal data on behalf of a customer — for example, their own clients' records inside the Platform — we act as a processor, and the customer is the controller. Those arrangements are governed by our Data Processing Addendum.

ICO registration
We are registered with the UK Information Commissioner's Office (ICO) as a data controller, registration number ZA000000. You can verify any registration on the ICO's public register at ico.org.uk.

02Data we collect

Account data
Name, work email, phone, company, role, billing details.
Usage data
Log data, device and browser information, feature usage and diagnostics.
Customer Data
Records your team enters — contacts, deals, communications, documents — processed on your behalf.
Payment data
Card payments are handled by our payment partner; we do not store full card numbers.
Compliance data
AML/KYC checks you run are processed via a connected provider and logged for audit.

03How we use it

We process personal data to provide and secure the Platform, to take payment, to support you, to improve our services, to communicate with you, and to meet legal obligations (including anti-money-laundering and tax).

04Lawful bases

Depending on the activity we rely on: contract (to deliver the service you subscribe to), legitimate interests (to run, secure and improve our business), consent (for certain marketing and non-essential cookies), and legal obligation (for accounting and compliance).

05Sharing & sub-processors

We share data with vetted service providers ("sub-processors") that host, secure, support and bill the Platform — for example cloud hosting, payment processing, email/SMS delivery, AML screening and AI model providers. We require them to protect data and use it only on our instructions. We do not sell personal data.

06AI processing

When you use AI features, relevant content may be sent to a model provider to generate a response. We use providers under terms that prohibit training on your content without permission. You control which model route is used (your own key, credits, or plan allowance).

07International transfers

Where data is processed outside the UK, we use appropriate safeguards such as the UK International Data Transfer Agreement or equivalent, and only with providers offering adequate protection.

08Retention

We keep personal data only as long as needed for the purposes above or as required by law (for example, financial records for statutory periods). Customer Data is retained per your subscription and deleted after termination, subject to legal holds.

09Security

We apply technical and organisational measures including encryption in transit and at rest, access controls, MFA for administrators and an append-only audit log. See our Security page for detail.

10Your rights

Subject to UK GDPR, you may have the right to access, correct, delete, restrict or object to processing, and to data portability. Where we act as a processor for a customer, please direct requests about Platform records to that customer. To exercise rights against us as controller, contact us below. You may also complain to the Information Commissioner's Office (ICO).

11Cookies

We use cookies and similar technologies as described in our Cookie Policy.

12Contact

For privacy questions or to exercise your rights, contact our privacy team via the contact page or email privacy@selllution.com.

Terms of Service Privacy Policy Cookie Policy Acceptable Use AML / KYC Policy Data Processing Addendum