Last updated: 1 May 2026
Aspasia is committed to protecting the privacy of individuals who interact with our website and platform. This policy explains what data we collect, how we use it, and the rights you hold over it.
We collect information you provide directly — including your name, company, email address, job title, and any details submitted through our consultation request form. When you access our platform, we also collect technical data such as IP address, browser type, device identifiers, and usage patterns through standard server logs and analytics tools.
We do not collect sensitive personal data beyond what is required to operate our service and respond to your enquiry.
Information collected through our website is used to respond to consultation requests, communicate about our platform, and improve the quality of our service. We do not use your data for unsolicited marketing. We do not sell, rent, or trade personal data to third parties.
Platform data submitted by our enterprise clients — including claims information — is processed strictly in accordance with the data processing agreements in place with each client. We act as a data processor, not a data controller, in respect of that data.
Consultation and contact data is retained for as long as necessary to manage your enquiry and any resulting commercial relationship. Platform data is retained for the duration of the client agreement and deleted or returned upon termination in accordance with the terms of the applicable data processing agreement.
You may request deletion of your personal data at any time by contacting us at the address below.
Aspasia operates a security programme designed for sensitive claims data. Platform data is encrypted in transit and at rest. We support pooled, siloed, and dedicated deployment architectures to meet the data isolation requirements of individual enterprise clients.
Access controls and audit logging are applied across production systems. Production access is governed by role-based access control with multi-factor authentication enforced.
We use a small number of third-party sub-processors to operate our platform — including infrastructure providers, authentication services, and transactional email. All sub-processors are bound by data processing agreements and operate within jurisdictions or under transfer mechanisms that meet applicable data protection requirements.
A current list of sub-processors is available on request.
If you are located in the United Kingdom, the European Economic Area, or California, you have rights under applicable data protection legislation including the right to access, correct, delete, restrict, or port your personal data. You also have the right to object to processing and to lodge a complaint with a supervisory authority.
To exercise any of these rights, contact us at the address below. We will respond within the timeframes required by applicable law.
Our website uses a minimal set of cookies necessary for the site to function correctly. We do not use third-party advertising cookies or cross-site tracking. Analytics, where used, is configured to anonymise IP addresses and not to share data with advertising networks.
You may disable cookies in your browser settings. This may affect certain site functionality.
We may update this policy from time to time. Material changes will be communicated by updating the date at the top of this page. Continued use of our website or platform following such changes constitutes acceptance of the updated policy.
Questions or requests regarding this policy should be directed to:
Aspasia hello@getaspasia.com