Privacy Policy
Effective date: 8 July 2026
Company Identity
The service is operated by SZLK LTD, a company registered in England and Wales under company number 16843016, with registered office at 128 City Road, London EC1V 2NX, United Kingdom. References to "SZLK", "we", "us", or "our" mean SZLK LTD unless a product-specific supplement states otherwise.
Applicable Products
This document is designed as the ecosystem-level legal text for SZLK products. A product may add a product-specific supplement for its service description, data flows, pricing model, content risks, or jurisdictional scope. If there is a conflict, the product-specific supplement applies only to that product and only to the extent of the stated conflict.
Controller and Privacy Contact
SZLK LTD is the controller for personal data processed through its products unless a product-specific supplement states another role. Privacy questions and rights requests may be submitted through the relevant product privacy request route or by using the privacy contact displayed in the product.
Personal Data We Process
Depending on the product, SZLK may process account identifiers, email address, authentication data, billing identifiers, usage logs, device and browser data, cookie preferences, support messages, user inputs, uploaded files, generated outputs, workspace data, public research targets selected by the user, and records needed for security, fraud prevention, legal compliance, accounting, and audit.
Sensitive or Special-Category Data
SZLK products are not designed to collect special-category data unless a product-specific supplement clearly says otherwise. Users should not submit health, biometric, financial account credentials, government identifiers, children's data, or other sensitive data unless the product specifically asks for it and explains why.
Purposes of Processing
SZLK processes personal data to provide accounts and sessions, deliver product features, generate requested outputs, process payments, manage subscriptions or credits, provide support, communicate service notices, secure systems, prevent abuse and fraud, comply with legal obligations, maintain accounting and audit records, improve product reliability, and respond to user rights requests.
Lawful Bases
Where UK GDPR or EU GDPR applies, SZLK relies on contract where processing is necessary to provide the product, consent for optional cookies or marketing, legitimate interests for security, fraud prevention, service improvement, and business administration, and legal obligation for tax, accounting, consumer, regulatory, and lawful request handling.
Processors and Third Parties
SZLK may use providers for hosting, databases, authentication, payment processing, email delivery, analytics, AI model routing, search, storage, security, logging, and workflow execution. Product supplements should list the material providers used by that product and the categories of data they process.
International Transfers
Personal data may be processed in the United Kingdom, the European Economic Area, the United States, or other countries where SZLK or its providers operate. Where a restricted transfer occurs, SZLK will rely on an adequacy regulation, the UK International Data Transfer Agreement, the UK Addendum to EU Standard Contractual Clauses, EU Standard Contractual Clauses, or another appropriate safeguard where required.
Retention
SZLK keeps personal data only for as long as needed for the relevant purpose, product delivery, security, legal compliance, accounting, dispute handling, audit, and backup. Product supplements should state specific retention periods for account data, generated outputs, uploaded files, logs, payment records, consent records, and deletion backups where applicable.
User Rights
Depending on location, users may have rights to be informed, access, correct, delete, restrict processing, object, portability, withdraw consent, opt out of sale or sharing, limit certain uses, and complain to a supervisory authority. SZLK will not discriminate against users for exercising applicable privacy rights.
Security
SZLK uses organisational and technical measures intended to protect personal data, including access controls, encrypted transport, provider controls, least-privilege practices, logging, and operational review. No online service can guarantee absolute security, and users should protect their own account credentials.
Children
Unless a product-specific supplement expressly supports younger users with appropriate safeguards, SZLK products are intended for users aged 18 or older. If SZLK learns that it has collected personal data from a child contrary to the applicable product terms, it will take reasonable steps to delete or restrict that data.
Changes to This Policy
SZLK may update this policy when products, providers, laws, processing purposes, or risk controls change. Material changes should be reflected in the product display and, where appropriate, notified through the product or by email.