Privacy Policy

1. Who we are

Fi371 is the data controller for personal data collected through our marketing website. If you have any questions about this policy or wish to exercise your rights, you can reach us at anastasiades.chr@gmail.com.

Given our size, we are not required to appoint a Data Protection Officer. The email above is the single point of contact for all privacy enquiries.

2. Information we collect

Information you give us

When you book a demo or otherwise contact us, we collect the information you provide on the form, which typically includes your full name, work email address, firm or company name, and firm size. You may also include additional details in a free-text field.

Information collected automatically

When you visit our website, we automatically collect limited technical information, including your IP address, browser type and version, device type and operating system, the pages you view, the date and time of your visit, and the referring URL. We use this for security, fraud prevention, and aggregate analytics.

Cookies and similar technologies

We use a small number of cookies and similar technologies. See section 5 for details and your choices.

3. How we use your information

• To respond to demo and contact requests — to schedule, confirm, and follow up on demos you have requested.
• To communicate with you — to send you operational messages relating to your enquiry, and (only with your consent) marketing updates that you can unsubscribe from at any time.
• To improve our website and product — to understand how visitors use our marketing site and to improve content, performance, and user experience.
• To keep our service secure — to detect and prevent abuse, fraud, and unauthorised access.
• To comply with legal obligations — to meet record-keeping, tax, and other legal requirements that apply to us.

4. Legal basis for processing (UK and EEA users)

Where the UK GDPR or EU GDPR applies to our processing of your personal data, we rely on the following lawful bases:

• Contract (Article 6(1)(b)) — to take steps at your request before entering a contract, such as responding to a demo enquiry.
• Legitimate interests (Article 6(1)(f)) — to operate, secure, and improve our website and analytics, where our interests are not overridden by your rights.
• Consent (Article 6(1)(a)) — for non-essential cookies and marketing email, where we ask for your permission and you can withdraw it at any time.
• Legal obligation (Article 6(1)(c)) — where we must process data to comply with a law that applies to us.

5. Cookies and similar technologies

We use two categories of cookies:

• Strictly necessary cookies — required for the site to function (for example, to remember your session or load-balancing preferences). These cannot be turned off.
• Analytics cookies — help us understand how visitors use the site so we can improve it. These are only set with your consent where consent is required by law.

You can control cookies through your browser settings: most browsers let you block or delete cookies. Blocking strictly necessary cookies may break parts of the site.

6. Sharing your information

We do not sell your personal data. We share it only in these limited circumstances:

• Service providers — trusted third parties that help us run our website and respond to enquiries (for example, our hosting, email delivery, and analytics providers). They process data only on our instructions and under written contracts.
• Legal compliance — where we are required to disclose information to comply with a law, court order, or other legal obligation.
• Business transfers — if Fi371 is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will give you notice and a chance to make choices about your data where required by law.
• With your consent — where you have explicitly asked or agreed to share information with a specific third party.

7. International data transfers

Some of our service providers operate outside the UK and the European Economic Area (EEA). Where we transfer personal data outside these regions, we put in place appropriate safeguards, such as the European Commission's Standard Contractual Clauses (SCCs) and the UK International Data Transfer Addendum, to ensure your data receives an equivalent level of protection.

8. How long we keep your information

We retain personal data only for as long as needed for the purposes described in this policy, or as required by law:

• Demo and contact requests are typically retained for up to 24 months from your last interaction with us, after which they are deleted or anonymised, unless you become a customer or we have a legal reason to keep them longer.
• Aggregated analytics data, which does not identify you, may be retained indefinitely.

9. Your rights (UK and EEA users)

If the UK GDPR or EU GDPR applies to you, you have the following rights in relation to your personal data:

• The right to access the personal data we hold about you.
• The right to rectification of inaccurate or incomplete data.
• The right to erasure (the “right to be forgotten”) in certain circumstances.
• The right to restrict processing in certain circumstances.
• The right to data portability — to receive your data in a structured, commonly used, machine-readable format.
• The right to object to processing based on our legitimate interests, including direct marketing.
• The right to withdraw consent at any time, where we rely on consent.
• The right to lodge a complaint with a supervisory authority — in the UK, the Information Commissioner's Office (ico.org.uk); in the EEA, your local Data Protection Authority.

To exercise any of these rights, email us at anastasiades.chr@gmail.com. We will respond within one month.

10. Your rights (California users)

If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the CPRA, gives you additional rights, including:

• The right to know what personal information we collect, use, share, and (where applicable) sell.
• The right to delete personal information we have collected from you.
• The right to correct inaccurate personal information.
• The right to opt out of the “sale” or “sharing” of personal information. We do not sell personal information, and we do not share it for cross-context behavioural advertising.
• The right not to be discriminated against for exercising your privacy rights.

To exercise these rights, email us at anastasiades.chr@gmail.com.

11. How we keep your information secure

We use appropriate technical and organisational measures to protect personal data, including encryption of data in transit (HTTPS), access controls, secure hosting, and regular review of our practices. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security, but we work to protect your information using industry-standard practices.

12. Children's privacy

Our website and product are intended for business users and are not directed to children under 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us and we will delete it.

13. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. The “Effective” date at the top of this page shows when it was last updated. For material changes, we will take reasonable steps to notify you in advance.

14. Contact us

If you have any questions, concerns, or complaints about this policy or how we handle your data, please contact us at anastasiades.chr@gmail.com. A postal address is available on request.