Privacy Policy

Effective Date: [24/02/2026]

This Privacy Policy describes how UNIFIRA Limited (“Unifira”, “we”, “us”, or “our”) collects, uses, processes, and protects personal data.

UNIFIRA Limited is a company registered in England and Wales with its registered office at:

30 Avenue Road
Sutton, England
SM2 6JB
United Kingdom
Email: info@unifira.com

Unifira provides enterprise software solutions including:

  • UNICUS (ERP and AI platform)
  • AIOps Admin (cloud operations and cost optimization platform)

1. Scope of This Policy

This Privacy Policy applies to:

  • Visitors to www.unifira.com
  • Individuals submitting demo or contact requests
  • Customers and authorized users of UNICUS and AIOps Admin
  • Integration-related processing performed by our platform

This policy does not govern data processed solely within a customer’s infrastructure outside the scope of our Services.

2. Roles Under Data Protection Law

Depending on context, Unifira acts as:

  • Data Controller for website visitors, demo requests, and marketing communications
  • Data Processor when processing customer data within UNICUS or AIOps Admin

Where Unifira acts as a Data Processor, processing is governed by contractual agreements with the customer.

3. Personal Data We Collect

A. Website and Pre-Sales Interactions

We may collect:

  • Name
  • Email address
  • Phone number
  • Company name
  • Job title
  • Website usage data (via analytics tools)

B. Account and Billing Information

For subscribed customers, we may collect:

  • Account administrator details
  • Billing contact information
  • Transaction metadata

Payments are processed by Stripe. Unifira does not store full payment card numbers.

C. Platform Integration Data (AIOps Admin)

When customers integrate their cloud environments, we may process:

  • Cloud resource usage metrics
  • Cost and billing metadata
  • Infrastructure configuration metadata
  • Monitoring and performance indicators
  • System-level logs related to cloud services

We do not access or process application-level business content unless explicitly required for agreed services.

4. Integration and Credential Handling

AIOps Admin operates using a secure integration model:

  • Customers provide API credentials or access tokens
  • Access is configured with read-only permissions
  • No write operations are performed under the current service scope
  • Customers retain full control over permission scope

Integration credentials:

  • Are encrypted at rest
  • Are transmitted securely
  • Are restricted to authorized system components
  • May use temporary internal authentication tokens for session security

Customers may revoke access at any time.

5. Bring Your Own Key (BYOK) and Encryption Controls

Where supported, Unifira enables customer-controlled encryption mechanisms, including BYOK models.

Key management controls may include:

  • Encryption of data in transit
  • Encryption of stored credentials
  • Logical tenant isolation
  • Segregation of customer environments

Unifira does not claim ownership of customer encryption keys.

6. Agent-Based Integration Model

Where implemented, Unifira may deploy an agent-based integration mechanism that:

  • Operates within customer-controlled environments
  • Transmits authorized monitoring data securely
  • Does not expose broader infrastructure access
  • Operates under customer-defined permissions

This model is designed to minimize data exposure and enhance operational control.

7. Legal Basis for Processing (UK GDPR)

We process personal data based on:

  • Contractual necessity (service delivery)
  • Legitimate interests (security, platform integrity)
  • Consent (analytics cookies)
  • Legal obligations (financial compliance)

8. International Data Transfers

Unifira serves customers globally. Data may be processed in the United Kingdom or other jurisdictions where service providers operate. Where required, appropriate safeguards are implemented in accordance with UK GDPR.

9. Data Retention

We retain personal data only as long as necessary to:

  • Fulfill contractual obligations
  • Provided services
  • Meet legal and regulatory requirements

Integration credentials are retained only for the duration of active service unless otherwise required.

10. Security Measures

We implement technical and organizational safeguards including:

  • Encrypted credential storage
  • Logical tenant isolation
  • Role-based access controls
  • Secure infrastructure hosting
  • Secure transmission protocols
  • Internal authentication controls

No system can guarantee absolute security. However, Unifira applies commercially reasonable safeguards to protect data.

11. Your Rights

Under applicable data protection law, you may have rights to:

  • Access your personal data
  • Request correction
  • Request deletion
  • Restrict processing
  • Object to processing
  • Data portability

Requests may be submitted to:
info@unifira.com

12. Changes to This Policy

We may update this Privacy Policy periodically. Updates will be published with a revised effective date.

13. Contact Information

UNIFIRA Limited
30 Avenue Road
Sutton, England
SM2 6JB
United Kingdom
Email: info@unifira.com