Privacy Policy
Privacy Policy — BrokerFlow AI LTD
Last Updated: 27th November 2025
BrokerFlow AI LTD (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our website, AI systems, lead automation services, or communicate with us.
By using our services, you agree to the practices described in this policy.
1. Who We Are
Business name: BrokerFlow AI LTD
Address: 6 Mayfield Road, East Cowes, Isle Of Wight, PO32 6DN
Website: www.brokerflowai.com/home
Contact email: [email protected]
Jurisdiction: United Kingdom (England)
We operate AI-driven SMS, chat, and automation tools to help businesses improve their lead follow-up, booking, and communication processes.
2. Information We Collect
We may collect the following categories of personal data:
Information You Provide Directly
Name
Email address
Phone number
Lead form submissions
Responses to qualification or onboarding questions
Information Collected Through AI Systems
AI chat or SMS conversation data
Automated lead follow-up interactions
Appointment-related information
Automatically Collected Information
Cookies
Website usage and browsing behaviour
Analytics data (such as from tracking pixels or built-in analytics tools)
We do not collect financial information or sensitive personal data unless explicitly provided.
3. How We Use Your Data
We use collected data for the following purposes:
Providing AI automation and lead-nurturing services
Following up with leads via AI SMS, chat, or automated workflows
Improving the performance and accuracy of our AI systems
Scheduling or managing appointments (when applicable)
Marketing and retargeting activities
Tracking website and service performance
Responding to enquiries and providing customer support
We do not use your data to train publicly available AI models.
4. Legal Basis for Processing (UK GDPR)
We process personal data under the following lawful bases:
Consent: when you submit a form, opt-in, or request information
Legitimate interests: providing lead-nurture tools essential for your business
Contract: data required to deliver purchased or requested services
Legal obligations: complying with applicable regulations
5. How We Share Your Data
We may share your data with trusted third parties only when necessary to operate our services:
Third-party processors
GoHighLevel (CRM, automation & communications)
(Additional processors may be added in future; this policy will be updated accordingly.)
We do not sell or rent your personal data.
All third-party services are required to follow GDPR-compliant security and data-handling practices.
6. International Data Transfers
We do not intentionally transfer your data outside the United Kingdom.
However, certain third-party processors (such as hosting or communication tools) may store or process data internationally. If that occurs, those providers must comply with GDPR transfer mechanisms such as Standard Contractual Clauses.
7. Data Retention
We retain personal data only as long as necessary to fulfil the purposes outlined in this Privacy Policy, including:
providing services
complying with legal obligations
resolving disputes
improving system performance
When data is no longer required, we securely delete or anonymise it.
8. Cookies & Tracking Technologies
We may use cookies and similar technologies to:
analyse website traffic
track performance
improve user experience
support marketing and retargeting
You may control cookie preferences through your browser settings.
9. Your Rights Under UK GDPR
As a user, you have the following rights:
Access: request a copy of the personal data we hold about you
Correction: request that inaccurate information be updated
Deletion (“Right to be forgotten”): request that your data be erased
Restriction: pause processing of your data in certain circumstances
Portability: request your data in a machine-readable format
Objection: object to processing based on legitimate interests
Withdraw consent: opt out of marketing or automated communication at any time
Opt-out of AI automation: request manual handling of communications
To exercise your rights, email [email protected].
10. Security Measures
We implement appropriate technical and organisational safeguards, including:
SSL encryption
Secure servers
User-level access controls
Data minimisation practices
Monitoring of system access
Secure deletion of outdated data
While no system is fully secure, we take all reasonable steps to protect your information.
11. Automated Decision-Making & AI Use
BrokerFlow AI uses automated systems to:
generate SMS/Chat responses
identify user intent
follow up with leads
schedule or encourage appointment booking
Human oversight is involved, and you may request human intervention at any time by emailing us.
We do not use your personal data to train external AI models.
12. Children’s Data
Our services are not intended for individuals under 18. We do not knowingly collect data from children.
13. Changes to This Privacy Policy
We may update this policy when necessary. If significant changes are made, we will post updates on this page.
14. Contact Us
For privacy questions, data requests, or GDPR enquiries, contact:
Email: [email protected]
Business: BrokerFlow AI LTD
Address: 6 Mayfield Road, East Cowes, Isle Of Wight, PO32 6DN