Select Page
View Categories

Privacy Policy

5 min read

Effective Date: 20 August 2025

This Privacy Policy explains how The Xdemor Group Limited, Company No. 14456444, with its registered office at 86-90 Paul St., London, EC2A 4NE, United Kingdom (“Xdemor”, “We”, “Us”, or “Our”) collects, uses, stores, and shares personal data in compliance with the UK Data Protection Act 2018, the General Data Protection Regulation (EU) 2016/679 (“GDPR”), and other applicable data protection laws.

1. Scope #

This Privacy Policy applies to (but is not limited to):

  • Users of Xdemor’s infrastructure, tools, and platforms

  • Clients and partners operating under Xdemor’s environments (e.g. portals, dashboards, microsite builders)

  • Visitors to domains operated by Xdemor (e.g. oneview.zone, paneldesk.zone, yourweb.zone, workview.cc, linkview.zone, services.support, xdorable.com, fludnox.com)

If You access Xdemor’s services via a third party (e.g. your service provider or agency), they are the Data Controller of your personal data and Xdemor acts as their Data Processor or Subprocessor, depending on the context.

2. What Personal Data We Collect #

A. Data You Provide Directly

  • Name, email address, phone number

  • Company and job title

  • Login credentials (encrypted)

  • Payment details (processed via third-party processors)

B. Automatically Collected Data

  • IP address, device type, browser

  • Usage logs (access time, clicks, page views)

  • Behavioural data (scroll depth, time on page, UTM source)

  • Chatbot interaction logs (messages, timestamps, response metadata) when engaging with automated assistants within the Xdemór Infrastructure, including information used for analytics, service improvement, and AI training where anonymised or pseudonymised.

C. Data from Third Parties

  • If you register or sign in through a third party (e.g. Google, Meta, Microsoft, TikTok, LinkedIn and others)

  • If your freelancer, employee, agency, partners or platform provides you access to a white-labelled service.

3. Legal Basis for Processing #

Purpose Legal Basis
Account registration & access Contractual necessity
Communications & notifications Legitimate interest / Consent
Analytics & usage improvement Legitimate interest
Marketing Consent
Security and fraud prevention Legitimate interest / Legal obligation

You may withdraw consent at any time via settings or by contacting us (see Section 11).

4. How We Use Your Data #

We use your personal data to:

  • Provide access to portals, dashboards, forms, and microsites

  • Deliver customer and technical support

  • Enable behavioural tracking and analytics

  • Manage user permissions, licensing, and billing

  • Improve our systems and interfaces

  • Comply with legal and regulatory requirements

  • This includes the processing of chatbot interactions for the purposes of providing support, improving response accuracy, analysing service demand, and training AI models using anonymised or pseudonymised data.

Processing for Algorithm and AI Development
We may process anonymised or pseudonymised data generated within the Xdemór Infrastructure to develop, train, test, and optimise algorithms, including artificial intelligence (AI) models, for the legitimate purpose of improving the accuracy, efficiency, and quality of our services. Such processing follows the principles of data minimisation, purpose limitation, and proportionality, and excludes any activity that would identify individual data subjects without additional information kept separately and securely.

Where third-party processors (e.g. AI API providers) are engaged for this purpose, they are bound by contractual obligations and data protection agreements, ensuring compliance with the UK Data Protection Act 2018, the UK GDPR, and other applicable laws. No personal data is sold, and all processing activities are documented and subject to appropriate technical and organisational safeguards.

For more details on business data analytics and processing, see our Client Data Usage Policy.

5. Data Retention #

We retain your personal data only as long as necessary for the purposes for which it was collected, including:

  • Account and contractual data: up to 6 years after service termination

  • Analytics and behavioural logs: up to 26 months

  • Legal data (invoices, support): up to 7 years

  • Data uploaded for testing, automation, or AI: up to 180 days in its original identifiable form, unless otherwise agreed in writing, for the legitimate purpose of developing, testing, and validating automated systems and AI models.

Anonymised or aggregated derivatives may be retained indefinitely, provided they contain no personal data as defined under applicable data protection laws.

6. Sharing with Third Parties #

We do not sell your data. We share personal data only in the following situations:

  • With trusted subprocessors providing cloud hosting, analytics, and support services (see Section 7)

  • With authorised partners or agencies (if you use Xdemor via a third party)

  • With public authorities when legally required

  • In case of a merger, acquisition, or asset transfer

7. Subprocessors and International Transfers #

We engage third-party service providers (“subprocessors”) to support infrastructure, analytics, communications, and customer support. The list of subprocessors is available at: Subprocessors ↗

We ensure appropriate safeguards for international transfers such as:

  • Standard Contractual Clauses (SCCs)

  • UK Addendum to SCCs

  • Adequacy decisions where applicable

8. Your Rights #

You may:

  • Request access, update, delete, restrict, or correct your personal information

  • Request information about third parties your data was shared with

  • Request data portability or transfer

  • Object to marketing communications

  • Withdraw consent where used

Submit requests via email to privacy@xdemor.com or use the online request form.

9. Security #

We implement measures such as:

  • End-to-end encryption (TLS/SSL)

  • Role-based access control

  • Two-factor authentication

  • Daily backups

  • Internal audit logging

10. Use by Third-Party Platforms (Sub-Providers) #

If your data is processed through a third-party partner using Xdemor’s infrastructure:

  • They act as Data Controllers

  • Xdemór acts as Subprocessor or Data Processor

  • They are responsible for notices and consents

  • Xdemór does not validate their legal basis

11. Contact and Complaints #

Contact our Data Protection Officer:

The Xdemor Group Limited
86-90 Paul St., London, EC2A 4NE, United Kingdom
Email: dpo@xdemor.com

Other contacts:

You may also file a complaint with the UK Information Commissioner’s Office: https://ico.org.uk/

12. Changes to This Policy #

We may update this Privacy Policy periodically. You are responsible for reviewing the latest version. If significant changes are made, we will notify you via email or prominent notice.

Major update effective 20 August 2025: Added explicit AI processing purpose, extended retention period for testing/automation/AI data from 30 to 180 days, and clarified handling of anonymised derivatives.