The short version: We collect the data we need to run the service, we don't sell it to anyone, we don't share it beyond the suppliers we need to run the business, and you can ask us to delete it any time. The rest of this page is the detail.
Who we are
This website and service is operated as "doneable." — an unincorporated trading name. If that changes we'll update this page. You can contact us any time about privacy matters at hello@doneable.ai.
For the purposes of UK GDPR, we are the data controller for the personal data we collect through this site and service.
What we collect, and why
When you take the profile assessment
- Your name and email address
- Your answers to the profile questions
- Your generated profile type and report
We need this to give you your results, deliver the service you paid for, and make Able useful to you.
When you chat with Able
- The messages you send
- The responses Able gives you
- Any context you share about your business
We store these so Able can remember your previous conversations — that's the whole point of the service.
When you pay us
- Stripe handles all payment processing
- We never see or store your card details
- We do receive a record of the transaction (amount, date, last 4 digits of card, your email)
When you use the website
- Basic analytics (pages visited, device type, approximate location)
- Technical logs (IP address, browser type) for security and debugging
Why we're allowed to use your data
Under UK GDPR we need a legal basis for processing your data. Ours are:
- Contract — to deliver the service you bought
- Legitimate interest — to keep the service secure, improve it, and run the business
- Consent — for things like marketing emails, which you can opt out of any time
- Legal obligation — to comply with UK law (for example, keeping tax records)
Who we share it with
We use a small number of trusted suppliers to run the service. They only see the data they need, and they're contractually bound to protect it.
- Stripe — for payment processing
- Our hosting provider — to run the website and service
- Our email provider — to send you account and service emails
- AI model providers — to power Able (your messages are processed through their systems but not used to train their models)
We don't sell your data to anyone. Ever.
Where your data lives
Our primary hosting is in the UK or EU. Some of our suppliers (like Stripe and AI providers) may process data outside the UK/EU. Where that happens, we only use providers that meet UK GDPR requirements — either through Standard Contractual Clauses or an equivalent approved mechanism.
How long we keep it
- While you're a customer: for as long as you have an active account or subscription
- After you leave: we keep financial records for 6 years (legal requirement), and anonymised service data for product improvement. Personal data is deleted within 30 days of account closure unless we have a legal reason to keep it.
Your rights
Under UK GDPR you have the right to:
- Access the personal data we hold about you
- Ask us to correct anything that's wrong
- Ask us to delete your data (subject to legal obligations)
- Ask us to export your data in a portable format
- Object to how we use your data
- Withdraw any consent you've given
- Complain to the Information Commissioner's Office (ico.org.uk) if you think we've got something wrong
To exercise any of these rights, email hello@doneable.ai. We'll respond within one month — usually much faster.
Cookies
We use a minimal set of cookies: essential ones to make the site work (logging you in, remembering your session) and basic analytics cookies so we can see how the site is used. We don't use advertising cookies or tracking pixels. Your browser can block or delete cookies any time you like.
Security
We take security seriously. All data is encrypted in transit (HTTPS) and at rest. Payments are handled by Stripe, a PCI-DSS certified provider. We restrict access to personal data to the people who need it. We'll tell you (and the ICO) within 72 hours if we ever have a data breach that affects you.
Children
The service is for adults running businesses. We don't knowingly collect data from anyone under 18. If you think we have, tell us and we'll delete it.
Changes to this policy
If we make material changes we'll tell you — either by email or a clear notice on the site. The "last updated" date at the top of this page will always be current.
Getting in touch
Questions, requests, complaints — all welcome. Email hello@doneable.ai and we'll get back to you.