Privacy Policy

SERVADRA COMPANY LIMITED
Last updated: 10 March 2026

1. Introduction

This Privacy Policy explains how SERVADRA COMPANY LIMITED (“we”, “us”, “our”) collects, uses, stores and protects personal data when you visit our website, submit an enquiry, request a demonstration, or engage with our services.

We are committed to protecting personal data and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

We collect and process only the personal data necessary for the purposes described in this policy and apply data minimisation principles throughout our services.

2. Who We Are (Data Controller)

SERVADRA COMPANY LIMITED
Registered in England and Wales

Registered Office:
Suite 6238, Unit 3A, 34–35 Hatton Garden
Holborn, London, EC1N 8DX

We act as:

  • Data Controller for our own website operations and enquiries
  • Data Processor when handling personal data on behalf of clients under contractual agreements

3. Scope of This Policy

This policy applies to:

  • Website visitors
  • Prospective clients and enquiry submitters
  • Business clients and authorised users
  • Individuals interacting with Servadra services on behalf of our clients

This policy does not apply to third-party websites that may be linked from our platform.

4. Personal Data We Collect

4.1 Business Contact Information

  • Name
  • Organisation name
  • Business email address
  • Business telephone number (if provided)

4.2 Demo and Enquiry Information

When submitting a demonstration request or enquiry, we collect information necessary to arrange discussions and evaluate potential service suitability.

  • Organisation type or sector (if provided)
  • Operational scope or use case
  • Context or information voluntarily submitted
  • Professional introduction interest (optional)

Selecting professional introduction interest does not create a partner relationship.

4.3 Service Interaction Data

Where clients deploy Servadra services, interaction data may be processed as part of the agreed operational scope.

This may include:

  • Enquiry messages
  • Operational interaction logs
  • System metadata such as timestamps

4.4 Technical and Usage Data

  • IP address
  • Device and browser information
  • Security and diagnostic logs

4.5 Client-Provided Operational Materials

Clients may provide knowledge materials, operational rules and escalation instructions required for deployment.

Special category personal data (such as health or biometric data) must not be provided unless explicitly agreed in writing.

5. How We Use Personal Data

Personal data is processed for legitimate business purposes including:

  • Responding to enquiries and demonstration requests
  • Providing contracted services
  • Email verification and communication security
  • Maintaining service reliability and operational integrity
  • Monitoring system security and governance boundaries
  • Legal and regulatory compliance

Servadra is a structured operational system that governs customer interaction workflows under deterministic operational rules.

Certain service functions may involve AI-assisted processing within defined operational boundaries.

We do not use personal data for:

  • Unrestricted AI model training
  • Data resale or brokerage
  • Automated decisions with legal or similarly significant effect

6. Lawful Basis for Processing

Our lawful bases under UK GDPR include:

  • Performance of a contract
  • Legitimate interests
  • Legal obligation
  • Consent (where applicable)

Demo enquiries are processed under legitimate interests and steps taken prior to entering into a contract.

7. Email Verification and Manual Review

Demo submissions may require email verification before manual review.

Unverified submissions may be deleted.

8. AI Processing Safeguards

Servadra may utilise AI-assisted processing within controlled operational governance.

  • AI operates only within approved knowledge sources
  • No unrestricted self-learning behaviour
  • Mandatory escalation outside approved scope
  • Human oversight remains embedded in the service

AI providers used within the system environment are not authorised to train models using client operational data.

9. Data Sharing and Subprocessors

We may share personal data with trusted providers necessary to deliver and secure the service, including:

  • Cloud hosting and infrastructure providers
  • Security and monitoring providers
  • Email delivery providers
  • AI model providers used strictly for processing

All subprocessors are contractually bound by confidentiality and data protection obligations.

We do not sell personal data.

10. International Data Transfers

Where personal data is transferred outside the UK, appropriate safeguards such as UK-approved contractual clauses or adequacy regulations are applied.

11. Data Retention

Unverified demo submissions may be deleted automatically.

Verified submissions may be retained for up to 24 months for follow-up discussion.

Where a business relationship begins, relevant information may be retained in accordance with contractual and regulatory obligations.

12. Data Security

We implement appropriate technical and organisational measures including access controls, monitoring, logging and security review procedures.

No system can be guaranteed to be completely secure.

13. Your Rights Under UK GDPR

You have the right to:

  • Access your personal data
  • Correct inaccurate information
  • Request deletion where legally permitted
  • Restrict or object to processing
  • Request data portability

Requests may be submitted through our website contact form.

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO).

14. Client Responsibilities

  • Clients must ensure they have the legal right to provide personal data.
  • Clients must inform their own users about AI-assisted processing where required.
  • Clients must not submit unnecessary sensitive personal data.

15. Cookies

Our website uses essential cookies required for site functionality, session management and security.

We do not use behavioural advertising cookies without user consent.

16. Changes to This Policy

We may update this Privacy Policy periodically. The latest version will always be available on this website.

17. Contact

For privacy enquiries or data requests, please contact us through our website contact form.

This policy is intended to explain our privacy approach in plain language. Contractual agreements may contain additional operational provisions.