Ofeux
ProductHow it worksFor executivesTrust
Sign inSign upSchedule a demo

Privacy policy

How QaudFesh Technologies Ltd handles personal data when you visit our website or use Ofeux.

1. Who we are

Ofeux is a software-as-a-service (SaaS) narrative intelligence platform operated by QaudFesh Technologies Ltd("we", "us", "our"). We help organisations detect emerging narratives, assess reputation risk, and manage governed response workflows.

QaudFesh Technologies Ltd is a company incorporated in England and Wales.

For the purposes of UK GDPR, EU GDPR, and other applicable data protection laws, QaudFesh Technologies Ltd is the data controller for personal data processed through this website and the Ofeux service, except where we process data solely on behalf of a customer organisation that acts as data controller for its own users and configured subjects.

Privacy contact: hello@ofeux.io

2. Who this policy applies to

This policy applies if you:

  • Visit the Ofeux marketing website
  • Register for or use an Ofeux account
  • Are invited to use Ofeux by a customer organisation
  • Receive alerts or communications from Ofeux at your organisation's direction
  • Contact us about the service, a demo, or support

3. Personal data we collect

Depending on how you interact with Ofeux, we may collect the following categories of personal data:

  • Identity and contact data: name, email address, organisation name, and role
  • Account and access data: login identifiers, authentication records, and role-based permissions
  • Configuration data: profile settings, handles, context, and other information your organisation provides about people, brands, topics, or events tracked in Ofeux
  • Intelligence and workflow data: narrative assignments, risk and sentiment assessments, claim verification outputs, drafts, approvals, audit entries, and outcome measurements generated in the platform
  • Public content signals: publicly available posts and related metadata from connected platforms that your organisation authorises, used for narrative detection and reputation analysis
  • Alert and notification data: contact details and delivery preferences for recipients configured to receive alerts (for example via email, Slack, Teams, webhook, or WhatsApp where enabled)
  • Technical and usage data: IP address, browser type, device information, log files, and usage events necessary to operate, secure, and improve the service
  • Communications: messages you send us, demo requests, and support correspondence

We do not intentionally collect special category data unless you or your organisation choose to include it in configuration or content processed through the platform.

4. How we use personal data

We use personal data to:

  • Provide narrative intelligence, emerging narrative detection, and reputation risk assessment
  • Support alerting, governed response workflows, and outcome measurement
  • Authenticate users and enforce role-based access within each organisation
  • Maintain audit trails for governance and accountability
  • Operate, maintain, secure, and improve the Ofeux platform
  • Respond to enquiries, provide support, and manage billing or contractual matters
  • Comply with legal obligations and protect our rights and those of our users

We do not sell personal data. AI-assisted analysis is used to deliver features within customer accounts; we do not use customer data to train general-purpose or public AI models.

5. Lawful basis for processing

Where UK GDPR or EU GDPR applies, we rely on one or more of the following lawful bases:

  • Contract — processing necessary to provide Ofeux and related support under our agreement with you or your organisation
  • Legitimate interests — to secure and improve the platform, prevent misuse, and deliver narrative intelligence features, where those interests are not overridden by your rights
  • Consent — where required, such as for optional marketing communications or integrations you explicitly enable
  • Legal obligation — where we must comply with applicable law or valid legal process

You may withdraw consent at any time where processing is consent-based. Where we rely on legitimate interests, you have the right to object as set out in Section 12.

6. Connected platforms and integrations

Ofeux may connect to third-party platforms when your organisation chooses to enable them. This can include, for example:

  • Official Facebook Pages — to retrieve public Page content, support narrative analysis, and publish responses your organisation explicitly approves
  • WhatsApp alert delivery — to send alert notifications to opted-in recipients your organisation registers (name label, phone number, opt-in, and verification status)
  • Other channels — such as X, Slack, Microsoft Teams, email, or webhooks, where configured for alerting or workflow integration

Data obtained through connected platforms is processed only for the purposes described in this policy and in accordance with your organisation's configuration. Where a platform provider imposes additional terms — for example Meta's Platform Terms for Facebook or WhatsApp integrations — your use of that integration is also subject to those provider terms.

We do not sell data obtained through connected platforms, use it to build unrelated marketing profiles, or use it to train public AI models.

7. Sharing personal data

We may share personal data with:

  • Service providers who help us host, secure, authenticate, analyse, notify, and support the platform (subprocessors), under contract and only on our instructions
  • Connected platform providers where necessary to deliver an integration your organisation has enabled
  • Professional advisers, regulators, or authorities where required by law or to protect legal rights
  • Successors in connection with a merger, acquisition, or reorganisation, subject to appropriate safeguards

A current subprocessor list is available on request during procurement or enterprise evaluation.

8. International transfers

Personal data may be processed in the United Kingdom, the European Economic Area, and other countries where we or our service providers operate. Where data is transferred outside the UK or EEA, we implement appropriate safeguards — such as the UK International Data Transfer Agreement, EU Standard Contractual Clauses, or equivalent mechanisms — in line with applicable data protection law.

9. Retention

We retain personal data for as long as necessary to provide the service, fulfil our contractual obligations, resolve disputes, and comply with legal, audit, or regulatory requirements. When data is no longer required, we delete or anonymise it, subject to backup cycles and legal holds.

Retention periods may vary by data type and customer configuration. You may request deletion as described in Section 12.

10. Security

We apply technical and organisational measures appropriate to the nature of the data we process, including encryption of credentials at rest, encrypted transmission (TLS), organisation-scoped access controls, and append-only audit logging for key workflow events. No method of transmission or storage is completely secure; we work continuously to maintain and improve our controls.

Further detail is available on our Trust & governance page.

11. Cookies and similar technologies

Our marketing website may use essential cookies and similar technologies required for basic functionality and security. The Ofeux application may use session and authentication cookies to keep you signed in. We do not use advertising cookies on the marketing site. If we introduce non-essential analytics cookies in future, we will update this policy and, where required, seek consent before placing them.

12. Your rights

Depending on your location, you may have the right to:

  • Access a copy of personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of personal data
  • Restrict or object to certain processing
  • Request data portability where applicable
  • Withdraw consent where processing is based on consent
  • Lodge a complaint with a supervisory authority

UK residents may contact the Information Commissioner's Office (ICO). EEA residents may contact their local supervisory authority.

To exercise your rights or request deletion of personal data we hold about you, email hello@ofeux.io with the subject line "Privacy request — Ofeux" and include:

  • Your full name and contact email
  • Your organisation name, if applicable
  • A clear description of your request
  • Any information that helps us locate the relevant data (for example account email, alert recipient details, or a connected Page name)

We will verify your request and respond within one month, or inform you if we need additional time. If you are an Ofeux user, your organisation may also be able to action certain requests directly through the platform.

13. Children

Ofeux is a business service and is not directed at children. We do not knowingly collect personal data from anyone under 16. If you believe we have collected such data, please contact us and we will take appropriate steps to delete it.

14. Changes to this policy

We may update this policy from time to time. When we make material changes, we will post the updated version on this page and, where appropriate, notify active customers before changes take effect.

Last updated: June 2026 (draft)