Privacy policy
Last updated: [DATE — update on launch]
Firstreply ("we", "us") is a London-based AI automation agency. This policy explains what personal data we collect through this website, why, and your rights under UK GDPR.
Who is the data controller?
Golam Rabbani, trading as Firstreply, London, United Kingdom. Contact: [CONTACT_EMAIL].
What we collect, and why
- Contact form: your name, business name, email address and message. Used solely to reply to your enquiry. Lawful basis: legitimate interest (responding to a request you initiated). Submissions go directly to our secure, UK-hosted automation pipeline; they are not added to any marketing list.
- Booking calendar: if you choose to load the booking calendar, Calendly (a third-party processor) handles the booking under its own privacy policy. It loads only after you click — nothing is loaded beforehand.
- WhatsApp: if you message us on WhatsApp, Meta processes that conversation under its own terms.
Cookies
This website sets no cookies and uses no tracking scripts. If that ever changes, we will ask for your consent first.
How long we keep data
Enquiry data is kept for up to 12 months after our last contact, then deleted, unless we enter into a contract (in which case records are kept as required by law).
Your rights
Under UK GDPR you can ask us to access, correct, delete, or stop processing your data, and you may lodge a complaint with the ICO. Email [CONTACT_EMAIL] and we will respond within one calendar month.
Data security
Data is transmitted over HTTPS only, stored with encryption at rest, and access is limited to the founder. Our pipelines are built on a data-minimisation principle: we only collect what is needed to reply to you.