Privacy Policy

Last updated: 27 June 2026

This Privacy Policy explains how MYUSTADIA LTD ("MyUstadia", "we", "us") collects, uses, and protects personal data when you visit myustadia.com, request a demo, or use our course-generation service and API.

Who we are

MyUstadia is operated by MYUSTADIA LTD, a company registered in England and Wales (company number 17251967), registered office 128 City Road, London, EC1V 2NX, United Kingdom. MYUSTADIA LTD is the data controller for personal data processed through this website. For any privacy question or to exercise your rights, contact [email protected].

Information we collect

• Information you provide: your name, work email, company, and the details you share when you request a demo or contact us.
• Source material you submit: the URLs, documents, and text you provide so we can generate a course, plus the course outputs we produce for you.
• Usage data: basic, privacy-preserving information about how the site and service are used, and standard server logs.

How we use information

• To provide and operate the service, including generating courses from your sources.
• To respond to demo requests, support questions, and sales enquiries.
• To maintain security, prevent abuse, and improve the product.

Legal bases for processing

We process personal data on these lawful bases under UK GDPR:

• Performance of a contract: to provide the service you request.
• Legitimate interests: to operate, secure, and improve our website and service, where your rights do not override those interests.
• Consent: for non-essential cookies and any marketing, which you may withdraw at any time.
• Legal obligation: where the law requires it.

Cookies

We use only the cookies and local storage needed to run the site securely and remember your preferences, and we set non-essential cookies only with your consent. See our Cookie Policy for the full list.

Service providers and AI sub-processors

To deliver the service we use trusted third parties who process data on our behalf under written agreements, including cloud hosting and content delivery (Cloudflare), file and media storage, and artificial-intelligence providers (including Google) that generate course content from the source materials you submit. Source materials you upload may be transmitted to these AI providers solely to generate your course. We do not sell personal data, and we do not permit these providers to use your data for their own purposes. A current list of sub-processors is available on request.

International transfers

Some providers are located outside the United Kingdom, including in the United States and the European Economic Area. Where we transfer personal data outside the UK we use appropriate safeguards such as the UK International Data Transfer Agreement, the UK Addendum to the EU Standard Contractual Clauses, or transfers to countries the UK recognises as adequate.

Data retention

We keep account and contact data for the life of your account and for up to 6 years afterwards to meet legal and accounting obligations. Source materials and generated course assets are kept while your account needs them and are deleted or anonymised when no longer required. Usage logs are kept for 12 months.

Security

We use reasonable technical and organisational measures to protect your data, though no method of transmission or storage is completely secure.

Your rights

Depending on your location you have rights to access, correct, delete, restrict, or object to processing, and to data portability. To exercise these, contact [email protected]. If you are in the UK and believe we have mishandled your data, you may complain to the Information Commissioner's Office (ICO) at ico.org.uk.

Children

Our service is intended for businesses and is not directed at children under 16. We do not knowingly collect children's data.

AI and automated processing

We use AI to generate course content from the materials you provide. We do not use automated decision-making that produces legal or similarly significant effects on individuals.

Changes

We may update this policy from time to time. We will post the new version here with an updated date.

Contact

Questions about privacy? Email [email protected].

This page is provided for transparency and follows UK GDPR guidance. Please have it reviewed by legal counsel and confirm the retention periods, sub-processor list, and transfer mechanisms against your final practices before relying on it.