← Back to Blindspot AI

Privacy Policy

Last updated: 10/07/2026

1. Who we are

Blindspot AI ("we", "us", "our") provides an AI Adoption Audit service at lidigital.pro and blindspotai.app. We are the data controller for personal information you provide through this site.

2. What we collect

We collect: (a) information you submit through the audit form (company name, industry, team size, business processes, contact details); (b) email addresses submitted for the Time Theft Calculator or lead capture; (c) payment metadata processed via PayPal (we never see or store card details); (d) standard server and analytics logs (IP address, browser type, pages visited).

3. How we use it

To generate your personalised AI audit report; to deliver the report and related communications by email; to process payments; to improve our service in aggregated, anonymised form; to comply with legal obligations.

4. Legal basis (UK & EU GDPR)

We rely on: Contract (delivering the audit you purchased), Consent (marketing emails — you may withdraw at any time), and Legitimate interests (service improvement, fraud prevention).

5. Sharing with third parties

We use trusted processors to operate the service: Supabase (database/auth), Cloudflare (hosting), PayPal (payments), HubSpot (CRM), Google (analytics & Search Console), and Lovable AI providers (audit generation). These processors handle data under their own GDPR-compliant terms. We do not sell your data.

6. Data retention

Audit responses and reports: retained for up to 24 months. Lead/marketing contacts: until you unsubscribe. Payment records: kept for 7 years to meet UK tax law.

7. Your rights

You have the right to access, correct, delete, restrict, or port your personal data, and to object to processing or withdraw consent at any time. To exercise any of these rights, email us (see Contact). You may also complain to the UK ICO at ico.org.uk.

8. Cookies

We use essential cookies for the site to function and analytics cookies (Google Analytics) to understand usage. AdSense may serve interest-based ads on certain pages. You can disable non-essential cookies via your browser.

9. International transfers

Some processors are based outside the UK/EEA. Where this happens, transfers are protected by Standard Contractual Clauses or equivalent safeguards.

10. Security

We use industry-standard encryption in transit (TLS) and at rest, role-based access controls, and row-level security on our database.

11. Children

The service is intended for business owners and is not directed at children under 16.

12. Contact

Questions or data requests: lidigitalugc@gmail.com.