Privacy policy

1. Overview

This Privacy Policy explains how Omniabi Ltd (CRN 16846319) (“OmniABI”, “we”, “us”) collects, uses, and shares personal data when you access our websites, use the OmniABI platform, or engage with us through events and support programs. It also describes the choices and rights available to you.

We act as a data controller for information about visitors, prospects, and subscribers. When customers input data or connect systems to the OmniABI platform, we process that information on their behalf as a data processor.

2. Information we collect

We collect the categories of information below depending on how you interact with OmniABI:

• Account data: name, job title, company, email address, authentication credentials, role assignments.
• Communication data: email content, meeting notes, in-product messages, and call summaries shared with support or customer success.
• Usage data: product interactions, configuration settings, feature usage, device/browser metadata, and diagnostics that help us improve performance.
• Connected system data: financial metrics, CRM records, support tickets, and other records retrieved via integrations you authorise.
• Support artifacts: screenshots, logs, or files you volunteer when troubleshooting an issue.
• Event and marketing data: registration details, attendance, feedback, and preferences related to webinars or events.

3. How we use information

We process personal data to:

• Deliver and administer the OmniABI services you subscribe to.
• Provide onboarding, training, and customer support.
• Monitor platform performance, resolve incidents, and enhance security.
• Develop new features, conduct analytics, and improve the user experience.
• Send product updates, service announcements, and educational content (you can opt out at any time).
• Comply with legal obligations, enforce agreements, and prevent misuse.

4. Legal bases for processing

When required by applicable law such as the GDPR or UK Data Protection Act, we rely on the following legal bases:

• Performance of a contract when processing data needed to deliver the OmniABI platform for customers.
• Legitimate interests for product development, usage analytics, and tailored communications that are relevant to our relationship.
• Consent when you opt in to marketing or connect third-party integrations that share personal data.
• Compliance with legal obligations for activities like sanctions screening, recordkeeping, or responding to lawful requests.

5. How we share information

We share data only with trusted parties that support OmniABI operations:

• Service providers bound by contract to deliver hosting, infrastructure, analytics, billing, and customer support.
• Integration partners selected by you to connect data sources or collaboration tools.
• Professional advisers (lawyers, auditors) under confidentiality obligations when needed to protect our interests.
• Public authorities or law enforcement when required to comply with applicable law or valid legal process.
• A successor entity in the event of a merger, acquisition, or corporate reorganisation, subject to this policy’s commitments.

6. International data transfers

OmniABI hosts customer data in regional data centres aligned to customer requirements. When information is transferred across borders, we implement appropriate safeguards such as the EU Standard Contractual Clauses, the UK Standard Contractual Clauses, or other recognised transfer mechanisms.

We continuously review our transfer approach in light of evolving regulatory guidance to ensure continuity of protections.

7. Security and confidentiality

We maintain administrative, technical, and physical safeguards designed to protect personal data against unauthorised access, destruction, or disclosure. Measures include encryption in transit and at rest, network segmentation, continuous vulnerability scanning, logging with automated alerting, and restricted employee access via least-privilege policies.

8. Data retention

Data within customer-controlled workspaces follows retention windows defined in the OmniABI admin console. By default, platform data is retained for the duration of your subscription and deleted or returned within 60 days of termination unless longer retention is required by law.

We retain account, billing, and compliance records as necessary to meet legal obligations, enforce agreements, and maintain accurate business records.

9. Your rights

Depending on your jurisdiction, you may have rights to request access, correction, deletion, portability, or restriction of your personal data, as well as to object to certain processing activities. You can exercise these rights by contacting privacy@omniabi.com. We will respond within the timeframes required by applicable law.

If we process your information on behalf of a customer, we will promptly forward your request to the relevant customer administrator.

10. Marketing choices

You can manage marketing preferences by using the unsubscribe link in our emails or by contacting us directly. Account-related and essential service communications will continue while your subscription is active.

11. Children’s privacy

OmniABI is not directed to children under 16 and we do not knowingly collect personal data from them. If you believe a child has provided us with personal information, contact us and we will take steps to delete the data.

12. Changes to this policy

We may update this Privacy Policy to reflect operational, legal, or regulatory changes. When we post revisions, we will update the “Last updated” date and notify customers through the platform or by email if material changes occur.

13. Contact us

Questions, requests, or complaints can be directed to privacy@omniabi.com.