Privacy Policy

1. Introduction

HSCodeFinder.ai ("we," "our," or "us") is operated by StilFresh Limited, a company registered in England and Wales with its headquarters in London, United Kingdom. We are committed to protecting your personal data and respecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our HS code classification service. By using HSCodeFinder.ai, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

When you register for an account or use our services, we collect information that you voluntarily provide, including your name, email address, company name (if applicable), and payment information for subscription services. We also collect product images and descriptions you upload for HS code classification purposes.

2.2 Automatically Collected Information

When you access our platform, we automatically collect certain technical information, including your IP address, browser type and version, device information, operating system, referring URLs, pages viewed, and time spent on pages. We use cookies and similar tracking technologies to enhance your user experience and analyze platform usage patterns.

2.3 Classification Data

We store your classification history, including uploaded product images, AI-generated descriptions, HS codes, confidence scores, destination countries, and generated customs documentation packages. This data is retained to provide you with historical records and improve our AI classification accuracy.

3. How We Use Your Information

We use your personal data for the following purposes: to provide and maintain our HS code classification service; to process your subscription payments and manage your account; to generate accurate HS code classifications using AI vision technology; to create country-specific customs documentation packages; to communicate with you about service updates, security alerts, and support matters; to analyze platform usage and improve our services; to detect and prevent fraud, abuse, and security incidents; and to comply with legal obligations and enforce our Terms & Conditions.

4. Legal Basis for Processing (UK GDPR)

Under UK GDPR, we process your personal data based on the following legal grounds: performance of a contract (to provide our HS code classification services as agreed in our Terms & Conditions); legitimate interests (to improve our services, prevent fraud, and ensure platform security); legal obligation (to comply with tax, accounting, and regulatory requirements); and consent (where you have explicitly agreed to specific processing activities, such as marketing communications).

5. Data Sharing and Disclosure

We do not sell your personal data to third parties. However, we may share your information with trusted service providers who assist us in operating our platform, including cloud hosting providers (for secure data storage), payment processors (Stripe for subscription billing), AI service providers (for image analysis and HS code classification), and analytics providers (for platform performance monitoring).

We may also disclose your information when required by law, in response to valid legal requests from public authorities, to protect our rights and property, to investigate potential violations of our Terms & Conditions, or to protect the safety of our users and the public.

6. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy. Account information is retained for the duration of your active subscription and for seven years thereafter to comply with UK tax and accounting regulations. Classification history is retained for the duration of your active subscription and for two years after account closure, unless you request earlier deletion. Payment records are retained for seven years to comply with UK financial regulations. Technical logs and analytics data are retained for 12 months.

You may request deletion of your personal data at any time by contacting us at [email protected], subject to our legal obligations to retain certain information.

7. Your Rights Under UK GDPR

As a data subject under UK GDPR, you have the following rights: the right to access your personal data and receive a copy of the information we hold about you; the right to rectification of inaccurate or incomplete personal data; the right to erasure (right to be forgotten) in certain circumstances; the right to restrict processing of your personal data in specific situations; the right to data portability, allowing you to receive your data in a structured, machine-readable format; the right to object to processing based on legitimate interests or for direct marketing purposes; and the right to withdraw consent where processing is based on your consent.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month. If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encryption of data in transit and at rest using industry-standard protocols, secure authentication and access controls, regular security audits and vulnerability assessments, secure cloud infrastructure with redundancy and backup systems, and employee training on data protection and security best practices.

However, no method of transmission over the internet or electronic storage is completely secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee absolute security.

9. International Data Transfers

Your personal data may be transferred to and processed in countries outside the United Kingdom. When we transfer data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the UK authorities, adequacy decisions recognizing equivalent data protection standards, or other legally approved transfer mechanisms. Our primary data processing occurs within the UK and European Economic Area (EEA).

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our platform. Essential cookies are necessary for platform functionality, including authentication and security. Analytics cookies help us understand how users interact with our platform to improve our services. Preference cookies remember your settings and choices. You can control cookie preferences through your browser settings, though disabling certain cookies may affect platform functionality.

11. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected information from a child, please contact us immediately at [email protected], and we will take steps to delete such information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or platform features. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. For significant changes, we may provide additional notice through email or prominent platform notifications. Your continued use of HSCodeFinder.ai after such modifications constitutes your acceptance of the updated Privacy Policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please contact us:

For complaints or concerns about our data protection practices, you may also contact the Information Commissioner's Office (ICO) at ico.org.uk.