Privacy Policy

This Privacy Policy explains how ATLASSERVERS LTD ("we", "us", or "our"), a company registered in England and Wales (Company Number: 16900202), collects, uses, discloses, and protects your personal data when you use our website at atlasservers.net and our AI API services.

We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy describes your rights regarding your personal data and how you can exercise them.

Our registered address is 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ.

Account Information

When you create an account, we collect:

• Name and email address
• Company name and billing address (for business accounts)
• Password (stored securely using industry-standard hashing)

API Usage Data

When you use our APIs, we collect:

• API request metadata (timestamps, endpoints called, response codes)
• Input data processed through our services (voice synthesis text, images for processing, audio for transcription)
• Usage metrics and rate limiting information

Payment Information

For paid services, we collect:

• Billing name and address
• Payment card details (processed securely by our payment provider, Stripe)
• Transaction history

Technical Data

We automatically collect:

• IP addresses and geolocation data
• Browser type and version
• Device information
• Cookies and similar technologies (see our Cookie Policy)

We use your personal data to:

• Provide and maintain our AI API services
• Process your payments and manage your account
• Send you service-related communications and updates
• Improve and optimize our services
• Ensure security and prevent fraud
• Comply with legal obligations
• Respond to your enquiries and provide customer support

Under UK GDPR, we process your personal data based on the following legal grounds:

• Contract: Processing necessary to fulfil our contract with you (e.g., providing API services)
• Legitimate Interests: Processing necessary for our legitimate business interests (e.g., improving services, security)
• Legal Obligation: Processing required to comply with UK law
• Consent: Where you have given explicit consent (e.g., marketing communications)

We may share your personal data with:

• Payment Processors: Stripe, for processing payments securely
• Cloud Infrastructure Providers: For hosting and data storage
• Analytics Services: To understand how our services are used
• Legal Authorities: When required by law or to protect our rights

We do not sell your personal data to third parties. All third-party processors are bound by data processing agreements compliant with UK GDPR requirements.

We retain your personal data for as long as necessary to:

• Provide our services while your account is active
• Comply with legal, accounting, and reporting requirements
• Resolve disputes and enforce our agreements

Specifically:

• Account data: Retained while account is active, then 7 years for legal compliance
• API usage logs: Retained for 90 days for debugging, then aggregated/anonymised
• Input data (voice, images, audio): Processed in real-time and not retained unless explicitly requested for caching purposes
• Payment records: Retained for 7 years as required by UK tax law

Your data may be transferred to and processed in countries outside the UK. When we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Transfers to countries with adequacy decisions from the UK government
• Standard contractual clauses approved by the Information Commissioner's Office (ICO)
• Other lawful transfer mechanisms as permitted under UK GDPR

Under UK GDPR, you have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data in certain circumstances
• Right to Restrict Processing: Request limitation of how we use your data
• Right to Data Portability: Receive your data in a structured, commonly used format
• Right to Object: Object to processing based on legitimate interests or for marketing
• Rights Related to Automated Decision-Making: Not be subject to decisions based solely on automated processing

To exercise any of these rights, please contact us at [email protected].

We implement appropriate technical and organisational measures to protect your personal data, including:

• Encryption of data in transit (TLS 1.3) and at rest (AES-256)
• Regular security assessments and penetration testing
• Access controls and authentication mechanisms
• Employee training on data protection
• Incident response procedures

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

• Email: [email protected]
• Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

• Website: ico.org.uk
• Phone: 0303 123 1113

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on our website or sending you an email. The "Last updated" date at the top of this policy indicates when it was last revised.