Privacy Policy

1. Introduction

UPHOS Ltd. (“UPHOS”, “we”, “us”, or “our”) is a company registered in England and Wales. We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal information when you visit our website at uphos.dev or use any of our products and services, including Meemar, Sphere DSP, Multiband, and Glounce.

We process personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. For the purposes of data protection law, UPHOS Ltd. is the data controller.

2. Information We Collect

Information you provide

• Contact information (name, email address) when you use our contact form or subscribe to updates
• Messages and enquiries you send us through our website
• Account information if you register for any of our products

Information collected automatically

• Device and browser information (type, version, operating system)
• IP address and approximate geographic location
• Pages visited, time spent on pages, and navigation patterns
• Referring website or source
• Cookies and similar technologies (see Section 10 below)

Product usage data

If you use our software products, we may collect anonymised usage data such as feature usage patterns, error reports, and performance metrics to improve our services. This data is collected only with your consent or where we have a legitimate interest to do so.

3. How We Use Your Information

We use the information we collect for the following purposes:

• To provide, maintain, and improve our website and products
• To respond to your enquiries and provide customer support
• To send you updates, newsletters, or marketing communications (only where you have given consent)
• To analyse website usage and trends to improve user experience
• To detect, prevent, and address technical issues or security threats
• To comply with legal obligations

4. Legal Basis for Processing

Under the UK GDPR, we rely on the following legal bases to process your personal data:

• Consent: where you have given clear consent for us to process your personal data for a specific purpose, such as subscribing to our newsletter
• Contract performance: where processing is necessary to fulfil a contract with you or to take steps at your request before entering into a contract
• Legitimate interests: where processing is necessary for our legitimate interests (such as improving our products and website), provided these are not overridden by your rights and interests
• Legal obligation: where processing is necessary to comply with a legal obligation to which we are subject

5. Data Sharing and Third Parties

We do not sell, rent, or trade your personal data to third parties. We may share your information with:

• Service providers: trusted third parties who assist us in operating our website and delivering our services (e.g. hosting providers, analytics services, email delivery platforms). These providers are contractually obligated to process data only on our behalf and in compliance with applicable data protection laws
• Legal requirements: where we are required to disclose information by law, regulation, legal process, or governmental request
• Business transfers: in connection with a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction

6. International Data Transfers

Some of our service providers may be located outside the United Kingdom. Where we transfer personal data outside the UK, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses approved by the Information Commissioner's Office (ICO) or transfers to countries that have been deemed to provide an adequate level of data protection.

7. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. Contact form submissions are retained for up to 24 months unless you request earlier deletion. Analytics data is retained in anonymised form.

8. Your Rights

Under the UK GDPR, you have the following rights regarding your personal data:

• Right of access: request a copy of the personal data we hold about you
• Right to rectification: request correction of inaccurate or incomplete data
• Right to erasure: request deletion of your personal data in certain circumstances
• Right to restrict processing: request that we limit how we use your data
• Right to data portability: receive your data in a structured, commonly used, machine-readable format
• Right to object: object to processing based on legitimate interests or for direct marketing purposes
• Right to withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal

To exercise any of these rights, please contact us at hello@uphos.dev. We will respond to your request within one month of receipt.

9. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

10. Cookies

Our website uses cookies and similar technologies. Cookies are small text files placed on your device to help us provide a better user experience. We use the following types of cookies:

• Strictly necessary cookies: essential for the website to function properly. These cannot be disabled
• Analytics cookies: help us understand how visitors interact with our website by collecting information anonymously
• Functional cookies: enable enhanced functionality and personalisation, such as remembering your preferences

You can manage your cookie preferences through your browser settings. Please note that disabling certain cookies may affect the functionality of our website.

11. Children's Privacy

Our website and services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without appropriate parental consent, we will take steps to delete that information promptly. If you believe we may have collected data from a child, please contact us at hello@uphos.dev.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the “Effective” date at the top of this page. We encourage you to review this page periodically.

13. Contact and Complaints

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us:

• Email: hello@uphos.dev
• Location: London, United Kingdom

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection. You can contact the ICO at ico.org.uk or by calling 0303 123 1113.