BuildPipeline

Privacy Policy

Last updated: 29 September 2025

Who we are: BuildPipeline.io, London, United Kingdom.

Contact: alki@buildpipeline.io

1) What this policy covers

This Policy explains how we handle personal data when you visit buildpipeline.io and when you book time with us via the embedded Calendly scheduler. The website itself is a static marketing site; we do not run our own tracking or analytics and we do not operate a database on this site. All meeting bookings are processed by Calendly.

We comply with the UK GDPR and the Data Protection Act 2018.

2) The data we collect and why

We collect personal data only when you actively schedule a meeting.

A) When you book via Calendly

Data: name, email, (optional) phone, meeting preferences, scheduling metadata, and technical information (e.g., IP address, browser/OS).

Purpose & lawful basis:

  • To schedule and hold the meeting you requested (Contract/Steps to Contract).
  • To follow up on the meeting and manage the opportunity you opened (Legitimate Interests).
  • To keep basic records for legal/compliance purposes (Legal Obligation/Legitimate Interests).

Note: Calendly may set functional cookies to make scheduling work (see Cookie section). Calendly processes booking data on its own infrastructure.

B) Browsing our site

We do not run analytics, advertising pixels, or tracking beacons. We do not set our own cookies. Our host (Vercel) may transiently process IP addresses for security and delivery of the site as a processor; we don't receive or use those logs for profiling.

3) Who receives your data

  • Calendly (processor / sometimes independent controller) for meeting scheduling. Privacy: calendly.com/privacy and DPA/terms as published by Calendly.
  • Infrastructure: Vercel (hosting) acts as a processor for serving the site.

We do not sell or share your personal information (including under US "sell/share" definitions).

4) International transfers

Calendly and/or Vercel may process data outside the UK. Transfers use lawful safeguards such as the UK-US Data Bridge and/or the UK Addendum to the EU Standard Contractual Clauses/IDTA, as applicable by those providers.

5) Retention

  • Meeting records (names/contact details/notes): typically up to 24 months from last meaningful interaction, unless we must keep them longer for legal or auditing reasons.
  • If you ask us to delete your data sooner, we will do so unless we must retain it by law.

6) Your rights (UK GDPR)

You can request: access, correction, deletion, restriction, portability, and to object to processing based on legitimate interests.

To exercise rights, email alki@buildpipeline.io.

You also have the right to complain to the ICO (ico.org.uk). We'd appreciate the chance to resolve concerns first.

7) Children

This site and our services are for business users. We do not knowingly collect data from children.

8) Security

We use reasonable administrative, technical, and organisational measures. No online service is 100% secure; please do not include sensitive secrets in Calendly form fields.

9) Third-party links

Our site may link to third parties (e.g., Calendly). Their policies govern those properties.

10) Changes

We may update this Policy. The effective date above shows the latest version.