IN7AI

Legal

Privacy Policy

Last updated: 12 March 2026

1. Overview

IN7AI Ltd (“we”, “us”, “our”), a company registered in England and Wales under company number 16010816, with its registered office at 71–75 Shelton Street, Covent Garden, London, WC2H 9JQ, is committed to protecting your privacy and the privacy of your patients. This Privacy Policy explains what data we collect, how we use it, and how we safeguard it — in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Our core principle is simple: your patient data never leaves your device.

2. Data We Do Not Collect

Because IN7AI runs entirely on your local hardware, we have no access to:

  • Patient records, clinical notes, or assessment data
  • AI queries, prompts, or generated outputs
  • Documents imported into the Software
  • Any Protected Health Information (PHI) or special category data

No telemetry, analytics, or usage tracking is performed on patient data. The Software does not phone home.

3. Data We Do Collect

We collect a limited amount of personal data in the following circumstances:

3.1 Waiting List & Account Registration

When you sign up for our waiting list or create an account, we collect:

  • Email address
  • Name (if provided)
  • Organisation and role (if provided)

Lawful basis: Consent (Article 6(1)(a) UK GDPR) and legitimate interests (Article 6(1)(f)) for delivering the service you have requested.

3.2 Feedback Questionnaire

If you choose to complete the optional feedback questionnaire at the end of your free trial, we collect your responses regarding product usability and feature satisfaction. This data is collected under consent (Article 6(1)(a) UK GDPR) and is used solely to improve the Software.

3.3 Software Licence Verification

The Software may periodically verify your licence status. This verification transmits only a licence key and does not include any patient data, usage data, or file contents.

4. How We Use Your Data

  • To provide and manage your access to the Software
  • To communicate product updates, security patches, and service notices
  • To improve the Software based on aggregated, anonymised feedback
  • To comply with legal obligations

We will never sell your personal data to third parties.

5. Data Storage & Security

The limited personal data we collect (email, feedback responses) is stored securely using industry-standard encryption and access controls. Data is hosted within the United Kingdom or the European Economic Area (EEA). We do not transfer personal data outside of the UK/EEA without appropriate safeguards.

6. Data Retention

  • Waiting list data: Retained until you request removal or until we no longer require it for the stated purpose.
  • Feedback data: Retained for up to 24 months, then anonymised or deleted.
  • Account data: Retained for the duration of your subscription, plus 12 months for legal and accounting purposes.

7. Your Rights

Under the UK GDPR, you have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate or incomplete data
  • Erase your data (“right to be forgotten”)
  • Restrict or object to processing
  • Data portability — receive your data in a structured, machine-readable format
  • Withdraw consent at any time where processing is based on consent

To exercise any of these rights, please contact us at lucaruschetti@in7ai.com. We will respond within 30 days.

8. Cookies

Our website uses only essential cookies required for the website to function correctly. We do not use tracking cookies, advertising cookies, or third-party analytics. No cookie consent banner is required as we only use strictly necessary cookies. For full details, see our Cookie Policy.

9. Third-Party Services

We use a limited number of third-party services for our website and communications:

  • Hosting: Website hosting infrastructure — no patient data passes through these services.
  • Email: For sending service communications. Only your email address is shared with our email provider.

These third parties process only the minimal data necessary and are bound by data processing agreements compliant with UK GDPR.

10. Supervisory Authority

If you are not satisfied with how we handle your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Telephone: 0303 123 1113

11. Contact Us

For any privacy-related questions or requests:

Back to Home