CX Insight

Privacy Policy

Last updated: 20 June 2025

1. Introduction

CX Insight ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services located at cxinsight.io (the "Service").

This policy complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. By using our Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

We collect personal information that you voluntarily provide when:

  • Creating an account (name, email address)
  • Subscribing to our services (billing information)
  • Contacting us for support
  • Participating in surveys or feedback

2.2 Business Information

For our AI analysis services, we may collect:

  • Business name and location details
  • Public customer reviews and ratings
  • Business category and industry information

2.3 Technical Information

We automatically collect certain technical information:

  • IP address and device information
  • Browser type and version
  • Usage patterns and analytics data
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Providing and maintaining our AI-powered customer experience analysis service
  • Processing payments and managing subscriptions
  • Sending service-related communications and updates
  • Improving our website and services
  • Complying with legal obligations
  • Detecting and preventing fraud or misuse

4. Legal Basis for Processing

Under UK GDPR, we process your personal data based on:

  • Contract: To provide our services and fulfill our contractual obligations
  • Legitimate interests: To improve our services, prevent fraud, and ensure security
  • Consent: For marketing communications (where required)
  • Legal compliance: To meet our legal and regulatory obligations

5. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: Auth0 (authentication), Stripe (payments), hosting providers
  • Analytics: Google Analytics for website performance (anonymized data)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with mergers or acquisitions

We do not sell, trade, or rent your personal information to third parties for marketing purposes.

6. Data Retention

We retain your personal data for as long as necessary to:

  • Provide our services (active accounts)
  • Comply with legal obligations (7 years for financial records)
  • Resolve disputes and enforce agreements

When you delete your account, we will delete your personal data within 30 days, except where retention is required by law.

7. Your Rights

Under UK GDPR, you have the following rights:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your personal data
  • Portability: Receive your data in a structured format
  • Restriction: Limit how we process your data
  • Objection: Object to processing based on legitimate interests
  • Withdraw consent: Where processing is based on consent

To exercise these rights, contact us at cxinsight@icloud.com. We will respond within one month.

8. Cookies and Tracking

We use cookies and similar technologies to:

  • Enable essential website functionality
  • Remember your preferences and settings
  • Analyze website performance and usage
  • Provide personalized experiences

You can control cookies through your browser settings. However, disabling cookies may affect website functionality.

9. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • Encryption in transit and at rest
  • Regular security assessments
  • Access controls and authentication
  • Employee training on data protection

While we strive to protect your data, no method of transmission over the internet is 100% secure.

10. International Transfers

Your data may be processed outside the UK/EEA by our service providers. We ensure appropriate safeguards are in place, including adequacy decisions or standard contractual clauses approved by the UK Information Commissioner's Office.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we may provide additional notice.

12. Contact Information

If you have questions about this Privacy Policy or our data practices, contact us:

Email: cxinsight@icloud.com

Data Protection Officer: cxinsight@icloud.com

Supervisory Authority: You may also contact the UK Information Commissioner's Office (ICO) if you have concerns about our data processing.