Skip to main content
VeratoAI

Privacy Policy

Last updated: March 2026

1. Who we are

VeratoAI ("we", "us", "our") provides AI governance advisory services to UK businesses. This privacy policy explains how we collect, use, store, and protect your personal data when you use our website or engage with our services.

For any privacy-related questions, contact us at privacy@veratoai.com.

2. What data we collect

We collect the following types of personal data:

Information you provide directly

  • Name, email address, company name, job title
  • Phone number (if provided)
  • Number of employees and industry sector
  • Any information you share via our contact forms, discovery calls, or email correspondence

Information collected automatically

  • IP address, browser type, device information
  • Pages visited, time spent on pages, referring URLs
  • Cookie data (see our Cookie section below)

3. How we use your data

We use your personal data to:

  • Respond to your enquiries and schedule discovery calls
  • Provide our AI governance advisory services
  • Send you relevant information about AI governance, regulatory changes, and our services (only with your consent)
  • Improve our website and understand how visitors use it
  • Comply with legal and regulatory obligations

4. Legal basis for processing

We process your data under the following legal bases under UK GDPR:

  • Consent — When you submit a contact form or opt in to marketing communications
  • Legitimate interests — To respond to enquiries, improve our services, and operate our business
  • Contractual necessity — To deliver services you have engaged us for
  • Legal obligation — To comply with applicable laws and regulations

5. How we store and protect your data

Your data is stored securely using industry-standard encryption and access controls. We do not store data longer than necessary — typically no more than 24 months after our last interaction, unless we have an ongoing service agreement with you.

We do not sell, rent, or share your personal data with third parties for their marketing purposes.

6. Third-party services

We may share data with the following categories of service providers, all of whom are bound by data processing agreements:

  • Website hosting and analytics providers
  • Email and scheduling tools (e.g. Calendly, email service providers)
  • Payment processors (if applicable)

We ensure all third parties process data in compliance with UK GDPR and have appropriate safeguards in place for any international transfers.

7. Cookies

Our website uses cookies to ensure it functions properly, to analyse how visitors use the site, and to improve your experience. You can manage your cookie preferences at any time using the cookie banner that appears when you first visit the site.

Essential cookies

Required for the website to function. These cannot be disabled.

Analytics cookies

Help us understand how visitors interact with the site. These are only set with your consent.

8. Your rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict processing
  • Data portability
  • Withdraw consent at any time

To exercise any of these rights, email us at privacy@veratoai.com. We will respond within 30 days.

9. Changes to this policy

We may update this privacy policy from time to time. Any changes will be posted on this page with an updated "last updated" date. We encourage you to review this page periodically.

10. Contact us

If you have any questions about this privacy policy or how we handle your data, please contact us at privacy@veratoai.com.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.