Privacy

Privacy Policy

This notice explains how NoDelay collects, uses, protects, and shares personal data in connection with our orchestration services and digital products.

Last updated: 05 January 2026

1. Controller details

NoDelay Ltd. is the controller for personal data collected through our website, demos, and client engagements. You can reach us at nodelay.tech@gmail.com for any privacy questions.

  • Mailing address and registered office details are supplied in your statement of work or on request.
  • We appoint sub-processors only after diligence confirming equivalent security and confidentiality standards.

2. Information we collect

  • Contact and account data that you voluntarily submit, such as name, email address, telephone number, company, job title, and project notes.
  • Engagement artefacts, including datasets, prompts, workflows, or infrastructure details that you provide so we can scope and deliver services.
  • Operational telemetry generated when we run automations on your behalf, such as workflow identifiers, timing, throughput, and success rates.
  • Website usage data collected through essential cookies or analytics that help us understand aggregate performance. We do not use advertising cookies.

3. How we use personal data

  • To respond to enquiries, schedule demos, prepare proposals, and manage customer relationships.
  • To deliver, secure, and improve the automations, user interfaces, and operational artefacts agreed in the relevant statement of work.
  • To send essential communications about service changes, security incidents, invoices, or contractual updates.
  • To comply with legal obligations, resolve disputes, and enforce our agreements.

4. Lawful bases for processing

We rely on the following legal grounds under UK GDPR and similar regulations, depending on the context of the processing:

  • Performance of a contract when we provide requested services or support existing engagements.
  • Legitimate interests to operate and improve our business where those interests are not overridden by your rights.
  • Consent for optional communications or where you actively agree to optional diagnostic tools.
  • Compliance with legal obligations such as tax, accounting, or responding to lawful requests from authorities.

5. Retention and security

  • Project environments are isolated per client. We restrict access using role-based controls and review it regularly.
  • Unless an engagement requires longer retention, we delete or return project artefacts within thirty (30) days of completion. Accounting records may be stored for up to seven (7) years to meet legal obligations.
  • We maintain administrative, technical, and physical safeguards proportional to the sensitivity of the information handled, including encrypted storage, network segmentation, and change monitoring.

6. Sharing and international transfers

  • We do not sell or rent personal information. We share data only with vendors that help us deliver the Services, such as hosting, analytics, communication, or incident response partners.
  • When data leaves the UK or EEA we rely on recognised safeguards, including adequacy decisions or standard contractual clauses, and ensure equivalent security commitments from our providers.
  • We may disclose information if required by law, regulation, or court order, or to protect our rights or the safety of others.

7. Your rights

  • You may request access to the personal data we hold about you, ask for corrections, request deletion, or object to certain processing activities.
  • If we process data based on consent you can withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal.
  • To exercise your rights contact nodelay.tech@gmail.com. We will respond within one month, or sooner where required by law.
  • If you are unsatisfied with our response you have the right to lodge a complaint with the UK Information Commissioner's Office or your local supervisory authority.

8. Children

  • Our Services are not directed to individuals under the age of 16, and we do not knowingly collect personal data from children. If you believe a child has provided us with information, please contact us so we can remove it.

9. Updates

  • We may revise this Privacy Policy to reflect regulatory changes or improvements to our safeguards. We will post the revised policy with an updated date and inform active clients of material changes.

10. Contact

  • For privacy enquiries, data subject requests, or security notifications email nodelay.tech@gmail.com. If you prefer encrypted communication, request our PGP details in your message.