Privacy Policy

Effective Date: June 10, 2026

Welcome to AIniseFlow. We respect your privacy and are committed to protecting your personal data. This privacy policy will inform you as to how we look after your personal data when you visit our website, submit queries, or use our digital clinic assessment systems, and tells you about your privacy rights and how the law protects you.

AIniseFlow is registered in England and Wales under Company Number 17112042. We are fully registered as a data controller with the UK Information Commissioner's Office (ICO) under Registration Number ZC167708.

1. Our Operational Role Under UK GDPR

Under the UK General Data Protection Regulation (UK GDPR), our legal obligations are split into two completely distinct categories based on our business relationship with you:

• Data Controller: When you browse our site, request contact, or input raw operational parameters into our interactive diagnostic or calculator systems, we act as the Data Controller for your company information. We determine how and why this business data is collected.
• Data Processor: When we build, link, or support automated booking, post-treatment, or text reminder pipelines for your cosmetic practice, we act strictly as a Data Processor. The aesthetic clinic client remains the Data Controller for their patient records. We process patient data solely under your instruction and never hold, read, or catalog patient details for our own operations.

2. The Data We Collect For Our Own Business

We may collect, use, store, and transfer different kinds of business-focused personal data about you, including:

• Identity & Contact Data: First name, email address, telephone number.
• Clinic Operational Data: Clinic name, software configurations (e.g. booking engine setups), specific administrative bottlenecks, weekly lead metrics, and generated automation metrics.
• Technical & Usage Data: Anonymised IP addresses, browser variants, operating configurations, and click paths tracked via Google Analytics 4 to measure infrastructure stability.

3. How Your Data Is Collected

We capture data through direct interactions when you request an appointment audit, submit an inquiry message, or complete our specialized operational diagnostics. Automated tech stacks also monitor standard server usage patterns anonymously via code configurations.

4. Purposes and Legal Grounds For Processing

We rely on transparent legal grounds to process your information:

• Performance of a Contract / Request Management: Processing your inputs on our Clinic Diagnostic Tool to output your score, metrics, and email you your customized performance report via EmailJS.
• Legitimate Business Interests: Managing our internal communications, responding to b2b aesthetic clinic enquiries submitted via Formspree, and monitoring infrastructure health.
• Consent-Based Marketing: Sending out tactical automation tips or updates if you have explicitly checked our GDPR marketing authorization box. You can opt out or unsubscribe instantly at any time.

5. Strategic Disclosures and Third Parties

We do not lease or sell B2B data assets. Your parameters move securely across specific backend processing networks to fulfill your requests:

• Formspree: Secure processing for contact entry forms.
• EmailJS: Distribution engine used to transmit diagnostic calculations straight to your email.
• Google Analytics 4: Platform metric tracking (with IP masking active).

6. Data Protection, Location, and Retention

We enforce strict security procedures to keep all corporate information isolated and safe. Data is stored within secure hosting configurations and retained only as long as necessary to manage consulting partnerships or comply with standard UK accounting and statutory records rules.

7. Your Statutory Rights

Under UK data laws, you have comprehensive rights regarding your personal information, including the right to request access, correction, erasure, object to specific processing contexts, or completely withdraw any marketing consent previously granted. To execute these rights, please email us directly.

8. Contact Details & Regulatory Support

For questions regarding your data privacy or options, reach out directly at:

AIniseFlow
Email: hello@ainiseflow.co.uk

You retain the right to elevate any grievance to the Information Commissioner's Office (ICO) at any point (www.ico.org.uk). We would, however, welcome the opportunity to resolve your concerns directly before you make an official approach.