Back to home

Privacy Policy

Last updated: February 2026

🇪🇺GDPR Compliant🇬🇧UK DPA 2018🔒SOC 2 Ready🛡️ISO 27001 Aligned

Contents

1. Overview2. What We Collect3. How We Use Your Data4. Data Protection & Security5. Your Rights (GDPR)6. Cookies & Tracking7. Third-Party Services8. Changes to This Policy

1Overview

At Upcatch, privacy isn't just a feature—it's the foundation of everything we build. We believe that understanding collaboration patterns should never come at the cost of employee privacy. This policy explains how we collect, use, and protect your data.

2What We Collect

Communication Metadata

  • Who communicates with whom (sender/recipient relationships)
  • Frequency and timing of interactions
  • Communication channels used (email, Slack, Teams)
  • Team and department affiliations

What We Never Collect

  • Message content, subject lines, or attachments
  • Personal conversations or private messages
  • Keystroke data or screen activity
  • Location data or browsing history
  • Performance reviews or HR records

3How We Use Your Data

Team-Level Insights

We aggregate data to show collaboration patterns at the team level. Individual employees are never scored, ranked, or identified in reports.

Risk Detection

Our AI identifies patterns that indicate collaboration risks—like siloed teams or over-reliance on key connectors—so organisations can act before problems escalate.

Meetup Suggestions

We use anonymised matching to suggest coffee meetups that could strengthen team connections. Participation is always optional.

4Data Protection & Security

Encryption

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). We use enterprise-grade cloud infrastructure with SOC 2 Type II compliance.

Access Controls

Strict role-based access ensures only authorised personnel can access data. All access is logged and audited.

Data Residency

Data is stored in the EU (Ireland) by default. Enterprise customers can choose specific regions for data residency.

Retention

We retain data for the duration of your subscription plus 90 days. Upon request, we can delete all data within 30 days.

5Your Rights (GDPR)

Access

Request a copy of your personal data

Rectification

Correct inaccurate personal data

Erasure

Request deletion of your data

Portability

Receive your data in a structured format

Objection

Object to processing of your data

Restriction

Request limited processing of your data

6Cookies & Tracking

We use essential cookies to keep our platform running. Analytics cookies (optional) help us understand how our website is used. We never use cookies for advertising or cross-site tracking. You can manage your cookie preferences at any time using our cookie settings.

7Third-Party Services

Cloud Infrastructure

Microsoft Azure (EU region)

Analytics

Privacy-focused analytics (no personal data shared)

Communication

Integration with Slack, Microsoft Teams (metadata only)

8Changes to This Policy

We may update this policy from time to time. We'll notify you of significant changes via email and post updates on this page. Continued use of our services after changes constitutes acceptance.

Questions About Privacy?

We're happy to discuss our approach in detail. Reach out anytime.

hi@upcatch.co.ukData Protection Officer

Upcatch Ltd

Registered in England and Wales

ICO Registration: Pending