Privacy Policy – Scotsphere AI


Last updated: 14th April 2025

1. Overview

To provide our services and operate our business effectively, Scotsphere AI (Antony Slack Ltd) may need to collect and process certain information about you. This may include:

  • Information automatically collected from your browser when you visit our website (e.g. your IP address and browser type).

  • Usage data relating to your interaction with our website or services (e.g. pages visited, session duration).

This Privacy Policy outlines what information we collect, how it is used, and how it is protected.

2. Our Commitment to Data Privacy

We are committed to maintaining the confidentiality, integrity, and security of your personal data in accordance with the

UK General Data Protection Regulation (UK GDPR), the EU GDPR (where applicable), and the Data Protection Act 2018.

We apply the principle of data minimisation, meaning we only collect the minimum personal data necessary to provide our services. All personal data is processed lawfully, fairly, and transparently, and we implement technical and organisational measures to safeguard it at all times.

3. Who We Are

Data Controller:

Antony Slack Ltd (trading as Scotsphere AI)

Registered Address: Longformacus Road, Edinburgh, EH16 6SD, UK
Email: [email protected]

4. Definition of ‘Personal Data’

‘Personal data’ refers to any information relating to an identified or identifiable natural person. This may include, but is not limited to, your name, email address, and IP address.

We will only process personal data where we have a lawful basis for doing so, such as your consent, our legitimate interests, contractual necessity, or legal obligation.

5. Who We Share Data With


We restrict access to personal data on a strict “need to know” basis. Personal data may be shared only with:

  • Employees and authorised contractors of Antony Slack Ltd, for the sole purpose of providing our services.

  • Trusted third-party service providers, including:

    • Website hosting providers and IT infrastructure partners

    • Providers of analytics, CRM, and cloud services

Where third-party providers are based outside the UK or European Economic Area (EEA), we ensure appropriate safeguards are in place, such as UK International Data Transfer Agreements (IDTAs) or EU Standard Contractual Clauses (SCCs).

We have signed Data Processing Agreements (DPAs) with all relevant third parties to ensure ongoing GDPR compliance.

6. How Your Data Is Protected

We employ the following data security measures:

  • Access Controls: Access to data is limited to authorised personnel with role-based restrictions and strong password policies.

  • Encryption: Data is encrypted at rest and in transit. SSL is used for all web traffic.

  • VPN Usage: Our team accesses systems through secure Virtual Private Networks (VPNs).

  • Provider Due Diligence: We work only with providers who meet high data protection standards and have appropriate DPAs in place.

7. Your Data Rights

Under the UK GDPR, you have the following rights regarding your personal data:

  • Right of Access – to request a copy of the personal data we hold about you.

  • Right to Rectification – to request correction of inaccurate or incomplete data.

  • Right to Erasure – to request deletion of your personal data (‘right to be forgotten’).

  • Right to Restrict Processing – to request limited use of your data under certain conditions.

  • Right to Object – to object to data processing based on our legitimate interests.

  • Right to Data Portability – to request transfer of your data to another service provider.

  • Right to Withdraw Consent – at any time, where consent is the lawful basis for processing.

  • Right to Lodge a Complaint – with the Information Commissioner’s Office (ICO) at ico.org.uk.

To exercise any of these rights, please contact us at [email protected].

8. Types of Data Collected

a) Technical Data (e.g. IP Address)

Our web server logs your IP address and basic device/browser information. This is standard practice for detecting malicious activity and monitoring site performance.

This data is not used to personally identify you and does not require consent under the UK GDPR when collected for legitimate security purposes.

b) Cookies and Similar Technologies

We use cookies, pixel tags, and similar technologies to understand site usage and improve functionality.

Types of cookies used:

  • Essential cookies (required for functionality)

  • Analytics cookies (to measure usage)

  • Preference cookies (to remember user settings)

Users can manage cookie preferences through our cookie banner or their browser settings.

By continuing to use our site, you consent to our use of cookies as detailed in this policy.

9. Website Analytics

We use Google Analytics, configured to anonymise IP addresses and avoid storing personally identifiable information.

This data helps us understand user behaviour and improve our website, without identifying individuals.

10. Policy Updates

This policy may be updated periodically to reflect legal, regulatory, or operational changes. Where appropriate, significant changes will be communicated via email or on our website.

11. Contact Us

To exercise your rights or raise questions about this Privacy Policy or data protection practices, contact:


Data Controller: Antony Slack Ltd

Email: [email protected]

scotsphere.ai harnessing AI for small business

© 2025 scotsphere.ai All Rights Reserved