Privacy Policy

Finteli Software Limited operates this public website and the Finteli application. Our registered address is Finteli Software Limited (company registration pending), United Kingdom.

• Privacy (website and general enquiries): privacy@finteli.co
• Security: security@finteli.co
• Legal / DPA: legal@finteli.co

This marketing website

Applies when you:

• Browse pages on this site (home, about, legal pages, and similar).
• Submit a "Get in contact" or demo request through the forms on this site (processed via our website API and form handling provider).
• Follow links from this site to https://app.finteli.co to sign in or register.

We do not run third-party advertising or product analytics scripts on this website. Our site code does not use browser storage (localStorage / sessionStorage) for tracking.

The Finteli application

The signed-in product at https://app.finteli.co is used by authorised staff at accountancy practices under your organisation's licence. It processes substantially more data than this website - including client records, uploaded files, AI-assisted job outputs, and optional calendar integrations. Section 7 summarises that processing; your software licence agreement and DPA with us govern use of the product in detail.

Information you provide

When you use our contact or demo forms, we collect:

• Name
• Email address
• Message content
• Company name (demo requests only, if you provide it)
• A label indicating whether the submission was contact or demo

We do not collect payment details, government ID, or account credentials through these forms.

Information collected automatically

When you visit this site, technical data may be processed, including:

• IP address and approximate location derived from it
• Browser type, device type, and operating system
• Pages viewed, referring URL, and request timestamps

This arises mainly from our hosting provider in server and security logs. We do not use third-party advertising or product analytics tools on this website.

Contact and demo forms

When you submit a form, your browser sends data to our website API and loads Cloudflare Turnstile to verify the submission. Turnstile may process your IP address and browser signals under Cloudflare's policy.

Fonts

We load typography from a third-party font provider. Your browser may request font files from that provider, which may receive your IP address. We do not send your form contents through font requests.

We use personal data from this website to:

• Respond to enquiries and demo requests
• Operate, secure, and troubleshoot the website
• Meet legal and regulatory obligations where they apply
• Understand general site reliability (hosting logs only)

We do not use website form data for advertising profiles or to sell personal data.

Where UK GDPR applies to this website, we rely on:

• Legitimate interests - to run and protect the website and respond to business enquiries.
• Contract / pre-contractual steps - when you ask for a demo or discuss using Finteli.
• Consent - only where we explicitly ask for it (for example, optional marketing sign-up if we add it later).
• Legal obligation - where we must retain or disclose information by law.

Legal bases for processing inside the Finteli application (employee users, client data, AI workflows) are set out in your software licence agreement and DPA.

Categories of service providers for this website process data on our instructions:

• Form handling - receives form submissions after server-side security checks and forwards them to us (name, email, message, optional company).
• Bot protection - verifies contact and demo form submissions using a challenge widget loaded from your browser (see section 3).
• Hosting and infrastructure - hosts this site, our form API, and may process technical and security logs.
• Font delivery - supplies typography loaded by your browser (see section 3).

We may share information with professional advisers, regulators, or law enforcement when required by law.

This section is a high-level summary for transparency. It does not replace your organisation's software licence agreement, DPA, or in-product notices.

Who uses it

Authorised staff at UK accountancy practices who sign in at https://app.finteli.co under your organisation's licence.

Categories of data processed

Depending on how your practice uses Finteli, we may process:

• Staff profiles (name, email, phone) and organisation details for the practice
• End-client business data (names, contacts, addresses, company/VAT identifiers, uploaded files such as PDF and Excel)
• Agent and job configuration, AI-generated drafts, run summaries, and approval records
• Optional calendar connection data (where your practice connects a calendar provider) and manual calendar events
• Billing and usage identifiers where licence and usage-based commercial terms apply

AI processing

Job and agent features may send parsed excerpts from uploaded files and your instructions to third-party AI inference providers for processing. Text is limited before sending. Completed AI work is placed in a human review state before approval where that workflow is enabled. We do not train our own models on your data without a separate agreement; provider terms govern their use of API inputs.

Storage, hosting, and service providers

The application is delivered via our cloud platform. Personal data is processed using third-party providers that support authentication, data storage, file storage, AI inference, billing, optional calendar integrations, and application hosting. These providers act on our instructions as processors or sub-processors.

A current list of subprocessors, purposes, and locations is available in your organisation's DPA or on request from legal@finteli.co.

Retention (application)

Retention periods for application data are set out in your software licence agreement and DPA. Contact privacy@finteli.co or your account administrator for practice-specific questions.

Application security

We apply technical and organisational measures appropriate to the application, including access controls scoped to your organisation, limits on uploads, and human review for AI-assisted outputs where enabled. Report security issues to security@finteli.co.

Providers for both this website and the application may process data outside the UK (including the US). Where required, we use appropriate safeguards such as standard contractual clauses. Contact privacy@finteli.co or legal@finteli.co for transfer details relevant to your organisation.

Website

• Form enquiries - as long as needed to handle your request and for a reasonable period for business records (typically up to 24 months unless a longer period is required).
• Hosting logs - limited operational period per our hosting settings.

Application

Governed by your software licence agreement, DPA, and operational needs. See section 7 for a summary.

Under UK GDPR you may have the right to:

• Access, correct, or erase personal data in certain circumstances
• Restrict or object to processing in certain circumstances
• Data portability where applicable
• Withdraw consent where processing is based on consent
• Lodge a complaint with the ICO (ico.org.uk)

Website: email privacy@finteli.co.

Application: contact your practice administrator or privacy@finteli.co (we may need to coordinate with your organisation as controller for end-client data).

This website is served over HTTPS. Form submissions are sent to our website API over encrypted connections, verified with bot protection, then forwarded to our form handling provider.

The application uses additional controls described in section 7. No transmission method is completely secure; we apply appropriate technical and organisational measures for each service.

Our website and product are aimed at business users. They are not directed at children under 16, and we do not knowingly collect children's personal data through the website forms.

We update this page when our website, application, or providers change. The "Last updated" date at the top reflects the latest revision. Material changes to product processing may also be communicated through customer channels.