Athena AI Ltd. is a company registered in England and Wales. We build on-premises AI software that runs entirely on our customers' own infrastructure.

For the purposes of data protection law, Athena AI Ltd. is the data controller for the personal data described in this policy.

We collect only the information necessary to provide our services and communicate with you:

Contact details: name, email address, telephone number, and company name, provided when you book a demo, submit a contact form, or enter into a contract with us.

Contract and billing information: company address, purchase order references, and payment details necessary to process licence agreements and implementation fees.

Website analytics: we may collect anonymised, aggregated usage data (page views, referral sources) to improve our website. We do not use tracking cookies or third-party advertising pixels.

Our products (Athena, Hephaestus, Plutus, Hermes, Apollo, and Dionysus) run entirely on your infrastructure. We do not have access to, process, store, or transmit any of your organisation's data.

Specifically, we never collect or access: documents you index, search queries your users make, AI model outputs, personally identifiable information from your systems, or any data processed by our software on your hardware.

Our software contains no telemetry, usage tracking, or phone-home functionality. Once installed, it operates independently of Athena AI Ltd.

We use the contact and contract information we collect to: respond to demo requests and enquiries, deliver and support our products under licence agreements, send important product updates and security notices, and comply with our legal and regulatory obligations.

We do not sell, rent, or share your personal data with third parties for marketing purposes.

We process your personal data on the following legal bases under UK GDPR: performance of a contract (to deliver our products and services), legitimate interests (to respond to enquiries and improve our services), and consent (where you have opted in to receive communications from us).

We retain contact and contract information for the duration of our business relationship and for a reasonable period afterwards to comply with legal obligations (typically six years for financial records under HMRC requirements).

You can request deletion of your personal data at any time by contacting us. We will comply unless we are required by law to retain it.

Under UK GDPR, you have the right to: access the personal data we hold about you, request correction of inaccurate data, request deletion of your data, object to processing based on legitimate interests, request restriction of processing, and data portability.

To exercise any of these rights, contact us at the details below. We will respond within 30 days.

We protect the personal data we hold using appropriate technical and organisational measures, including encryption in transit and at rest, access controls, and regular security reviews.

We may update this policy from time to time. Material changes will be communicated via our website. The "last updated" date at the top of this page indicates when this policy was most recently revised.

If you have questions about this privacy policy or wish to exercise your data protection rights, please contact us at: hello@athenaai.uk