Privacy Policy







Last updated on 25 Jan 2026



Welcome to Tustra ("we" or "us"). This Privacy Policy is designed to help you understand how we collect, use, disclose, and safeguard your personal information when you use our website and related services.




1. Introduction



2. Data We Collect



3. How We Collect Data



4. Purpose and Legal Basis



5. Automated Processing



6. Data Sharing



7. International Transfers



8. Data Retention



9. Security



10. Your Rights



11. Changes to This Policy





1. Introduction



TUSTRA LIMITED (“Tustra”, “we”, “our”, “us”) respects your privacy and is committed to protecting personal data. This policy explains how we collect, use, store, and protect information through our website and services.



Company Details:

TUSTRA LIMITED

Registered in England & Wales (Company No. 16566433)

124–128 City Road, London, England, EC1V 2NX

Email: info@tustra.ai



We comply with the UK GDPR, Data Protection Act 2018, Privacy and Electronic Communications Regulations (PECR), and equivalent global laws.





2. Data We Collect



We may collect and process the following personal data:



Name



Email address



Phone number



Company information



Project and communication records



We do not collect sensitive (“special category”) personal data.





3. How We Collect Data



We collect information via:



• Website contact or submission forms

• Email correspondence

• Automated analytics tools, including Google Analytics 4 (GA4)



Google Analytics 4 uses cookies and similar technologies to collect information about how visitors use our website. This may include IP addresses (anonymised), device information, pages viewed, and interaction patterns. We use this data to understand website performance and improve user experience. We do not use GA4 to identify individual users, and all analytics data is processed in aggregate form.





4. Purpose and Legal Basis



We process data to:



Communicate with clients and prospective partners



Provide and improve services



Conduct analytics and performance measurement



Deliver marketing (with consent)



Automate business processes (AI-driven outreach and analytics)



Legal bases: Consent, Contract, and Legitimate Interest.





5. Automated Processing



We may use AI and automation tools (e.g., n8n workflows, AI scoring) to assist in lead generation and analysis.

We do not make fully automated decisions with legal or significant personal effects.





6. Data Sharing



We share data only with trusted processors necessary to provide our services, such as:



Hosting and infrastructure providers



AI and automation platforms (e.g., n8n, OpenAI)



Analytics and communication tools (e.g., Google Analytics, Mail services, CRM systems)



All third parties comply with data protection laws and act under our instructions.





7. International Transfers



Where data is transferred outside the UK or EEA (e.g., US-based processors), we use lawful mechanisms such as Standard Contractual Clauses (SCCs) to ensure protection.





8. Data Retention



We retain data only as long as necessary:



Client/project data - up to 6 years after the relationship ends



Leads/enquiries -up to 24 months



Financial records - 6 years (HMRC compliance)

After these periods, data is securely deleted or anonymised.





9. Security



We use HTTPS encryption, secure servers, and strict access control to protect data.





10. Your Rights



Under applicable law, you have the right to:



Access your data



Request correction or deletion



Object to processing



Withdraw consent



Lodge a complaint with the ICO (UK regulator)



Contact us at info@tustra.ai for requests.





11. Changes to This Policy



We may update this policy from time to time. The latest version will always be available on our website with a “Last Updated” date.