Back to home

Privacy Policy

Last updated: 24 March 2026

1. Introduction

This Privacy Policy explains how AI Enhanced Solutions Ltd ("we", "us", "our") collects, uses, and protects your personal data when you use Crime Insights ("Service"). We are committed to protecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data Controller

AI Enhanced Solutions Ltd is the data controller for your personal data. For data protection enquiries, contact our Data Protection Officer at aienhancedsolutions@gmail.com.

3. Data We Collect

3.1 Account Data

  • Name and email address (from Google Sign-In)
  • Profile picture URL
  • Account creation and last login dates

3.2 Payment Data

  • Stripe customer ID and subscription ID
  • Transaction history (amounts, dates, credit purchases)
  • We do not store card numbers or bank details — these are held by Stripe

3.3 Usage Data

  • Postcodes, districts, and postcode comparison inputs you search
  • Reports generated, purchased, downloaded, or deleted
  • Credit usage history

3.4 Technical Data

  • IP address (for rate limiting and security)
  • Browser type and version
  • Application Insights telemetry (anonymised performance data)

4. Legal Basis for Processing (GDPR Art. 6)

  • Contract (Art. 6(1)(b)): Processing your account data and payments to provide the Service.
  • Legitimate Interest (Art. 6(1)(f)): Analytics, security monitoring, and service improvement.
  • Consent (Art. 6(1)(a)): Optional cookies for analytics. You can withdraw consent at any time.
  • Legal Obligation (Art. 6(1)(c)): Retaining transaction records as required by UK tax law.

5. Third-Party Services

We share data with the following third parties, all of which process data under appropriate safeguards:

  • Google — Authentication via Google Sign-In. Google Privacy Policy
  • Stripe — Payment processing. Stripe Privacy Policy
  • Police UK API — Crime data source (no personal data shared). data.police.uk
  • Microsoft Azure — Cloud hosting and data storage. Microsoft Privacy Statement
  • Azure Application Insights — Performance monitoring (anonymised telemetry)
  • AI processing services — Used to generate summaries and comparison commentary from report data

6. Data Retention

  • Account data: Retained while your account is active. Deleted upon account deletion request.
  • Transaction records: Retained for 7 years as required by UK tax regulations (HMRC).
  • Generated reports: Retained while your account is active unless you delete them earlier through the Service. Remaining reports are deleted upon account deletion.
  • Technical logs: Retained for up to 90 days, then automatically purged.

7. Your Rights

Under the UK GDPR, you have the following rights:

  • Right of Access (Art. 15): Request a copy of your personal data.
  • Right to Rectification (Art. 16): Request correction of inaccurate data.
  • Right to Erasure (Art. 17): Request deletion of your account and data. You can do this directly from the billing page.
  • Right to Data Portability (Art. 20): Request your data in a machine-readable format.
  • Right to Restrict Processing (Art. 18): Request limitation of processing in certain circumstances.
  • Right to Object (Art. 21): Object to processing based on legitimate interest.

To exercise any of these rights, contact us at aienhancedsolutions@gmail.com. We will respond within 30 days.

8. Cookies

We use essential cookies required for the Service to function (authentication tokens, session management). We also use optional analytics cookies with your consent. You can manage your cookie preferences at any time via the cookie consent banner.

9. Data Security

We implement appropriate technical and organisational measures to protect your data, including encryption in transit (TLS), secure cloud hosting on Microsoft Azure, and access controls. However, no method of transmission over the internet is 100% secure.

10. International Transfers

Your data is primarily processed within the UK and EU. Where data is transferred outside these regions (e.g., to Google or Stripe US operations), appropriate safeguards such as Standard Contractual Clauses are in place.

11. Children's Privacy

The Service is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service.

13. Complaints

If you are unhappy with how we handle your data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

14. Contact

For any privacy-related queries, contact our Data Protection Officer at aienhancedsolutions@gmail.com or visit our contact page.