SideKickCo
Why UsHow it WorksTry NowPricingAbout Us
Login
New Customer OfferOver 20% OFF all plans
Draft for review. This is a starting template, not final legal advice. Launch Mode Ltd must have it reviewed by a qualified solicitor and complete the items marked [TO CONFIRM] before public launch.

Privacy Policy

Last updated: 3 June 2026 · Draft

This Privacy Policy explains how Launch Mode Ltd ("we"), operating the SideKickCo service, collects and processes personal data — both the data you provide about your business and account, and the personal data contained in calls your Sidekick handles.

Launch Mode Ltd is registered in England and Wales [TO CONFIRM: company number], based in Bristol, United Kingdom [TO CONFIRM: registered address]. [TO CONFIRM: ICO registration number.]

1. Data we collect

Account data: your name, business name, email, phone number, trade, and service configuration.

Call data: recordings, transcripts, caller phone numbers, and details captured during calls your Sidekick handles (e.g. name, address, the job described).

Billing data: handled by Stripe; we store subscription status and limited billing metadata, not full card numbers.

Usage data: minutes used, call counts, and outcomes, used to power your dashboard.

2. How we use it & legal bases

To provide the Service (performing our contract with you): answering and routing calls, booking jobs, notifying you, and showing your dashboard.

To take payment and prevent fraud (contract / legal obligation).

To improve and secure the Service and support you (legitimate interests).

[TO CONFIRM with solicitor/DPO: the controller/processor relationship for caller personal data — typically you are the controller of your callers' data and we are your processor; this Policy and the Terms should reflect a data-processing agreement.]

3. Call recording

Calls are recorded and transcribed to deliver the Service. Callers are informed at the start of the call that it is recorded. You are responsible for any additional notice or consent your circumstances require.

4. Sub-processors

We share data with trusted providers strictly to run the Service: Vapi (voice AI), Twilio (telephony), Supabase (database & auth), Stripe (payments), Resend (transactional email), Google (calendar integration), n8n (workflow automation), and Vercel (hosting).

[TO CONFIRM: maintain a current sub-processor list and ensure each has appropriate data-processing terms in place.]

5. International transfers

Some providers process data outside the UK. Where they do, we rely on appropriate safeguards (e.g. UK adequacy regulations or standard contractual clauses). [TO CONFIRM: per-provider transfer mechanisms.]

6. Retention

We keep account data for the life of your account and a reasonable period after. [TO CONFIRM: retention periods for call recordings and transcripts — recommend defining a clear default, e.g. 12 months, configurable on request.]

7. Your rights

Under UK GDPR you have rights to access, correct, delete, restrict, and port your personal data, and to object to certain processing. To exercise these, contact hello@sidekickco.co.uk.

You can complain to the Information Commissioner's Office (ico.org.uk) if you believe your data has been mishandled.

8. Cookies

Our website uses a small number of essential cookies — see our Cookie Policy for details.

9. Security

We use reputable infrastructure providers and access controls to protect data. No system is perfectly secure, but we take reasonable measures appropriate to the risk.

10. Contact

Privacy questions or requests: hello@sidekickco.co.uk. [TO CONFIRM: whether a named data protection contact / DPO is required.]