Privacy Policy

Last updated: 12th March 2026

1. Introduction

AiDEN ("we", "us", "our") is a technology platform registered with the Jersey Financial Services Commission (163986). We are committed to protecting the privacy and personal data of our users ("you", "your"). This Privacy Policy explains how we collect, use, store, and protect your information when you use our website at aiden.je and our platform services.

We comply with the Data Protection (Jersey) Law 2018 and, where applicable, the EU General Data Protection Regulation (GDPR). We are registered with the Jersey Office of the Information Commissioner (JOIC).

2. Data Controller

The data controller responsible for your personal data is AiDEN, based in Jersey, Channel Islands. For any data protection enquiries, please contact us at privacy@aiden.je.

3. Information We Collect

We collect the following categories of personal data:

  • Account information: Name, email address, phone number, and password (stored as a cryptographic hash) when you register.
  • Business information: Company name, registration number, business address, and industry sector when you create a business profile.
  • Transaction data: Records of services purchased, payment amounts, invoice details, and payment method references. We do not store full card numbers. Payment processing is handled by our PCI-compliant payment provider.
  • Usage data: IP address, browser type, device information, pages visited, session duration, and interactions with our platform.
  • Communication data: Messages sent through our support system, contact forms, and any correspondence with our team.
  • AI interaction data: Conversations with our AI avatar and chatbot systems to improve service quality.

4. How We Use Your Information

We process your personal data for the following purposes:

  • To create and manage your account and provide our platform services.
  • To process payments and manage subscriptions.
  • To communicate with you about your services, orders, and support requests.
  • To send you service updates, notifications, and (with your consent) marketing communications.
  • To comply with legal and regulatory obligations, including Jersey financial services regulations.
  • To detect and prevent fraud, abuse, and security incidents.
  • To improve our platform, services, and AI systems.

5. Legal Basis for Processing

We process your data on the following legal bases:

  • Contract: Processing necessary to provide the services you have requested.
  • Legitimate interest: Platform security, fraud prevention, and service improvement.
  • Legal obligation: Compliance with Jersey law, including anti-money laundering regulations.
  • Consent: Marketing communications and non-essential cookies (which you can withdraw at any time).

6. Data Sharing

We may share your data with:

  • Service providers: Third-party providers who deliver services on our platform (only the information necessary to fulfil your order).
  • Payment processors: To process transactions securely.
  • Cloud infrastructure providers: For hosting and data storage (AWS, located in the EU/UK region).
  • Regulatory authorities: Where required by Jersey law or regulation.

We do not sell your personal data to third parties.

7. Data Retention

We retain your personal data for as long as your account is active or as needed to provide our services. After account closure, we retain data for up to 6 years to comply with Jersey legal and regulatory requirements. Usage data and logs are retained for up to 12 months.

8. Data Security

We implement industry-standard security measures including:

  • Encryption of data in transit (TLS 1.2+) and at rest.
  • Password hashing using PBKDF2 with SHA-256 and per-user salts.
  • Session management with secure, HttpOnly, SameSite cookies.
  • Rate limiting and brute-force protection.
  • Regular security reviews and monitoring.

9. Your Rights

Under the Data Protection (Jersey) Law 2018, you have the right to:

  • Access the personal data we hold about you.
  • Rectify inaccurate or incomplete data.
  • Request erasure of your data (subject to legal retention requirements).
  • Restrict or object to certain processing activities.
  • Data portability to receive your data in a structured, machine-readable format.
  • Withdraw consent at any time (where processing is based on consent).

To exercise any of these rights, contact us at privacy@aiden.je.

10. Cookies

We use essential cookies to maintain your session and remember your preferences. We do not use third-party tracking or advertising cookies. Our session cookie is HttpOnly, Secure, and set with the SameSite=Strict attribute.

11. International Transfers

Your data is processed and stored in the EU/UK region of our Azure Data Centre. Your data is never transferred outside this region. We ensure appropriate safeguards are in place in accordance with Jersey data protection law.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified via email or through a notice on our platform. Continued use of our services after changes constitutes acceptance of the updated policy.

13. Contact

If you have any questions about this Privacy Policy or our data practices, please contact us:

You also have the right to lodge a complaint with the Jersey Office of the Information Commissioner.