Privacy Policy

Who we are

This website and the WP AI Explainer plugin are operated by Next Big Leap Ltd, a company registered in England and Wales (company number 06388862, VAT number GB 917 2994 89). Our registered office is Phoenix Square, Business Lounge, 4 Midland Street, Leicester, LE1 1TG. Next Big Leap Ltd is the data controller for personal data collected through this website.

For any privacy-related enquiry, write to [email protected].

What information we collect

Information you provide

• Email address when you download the plugin or sign up for updates
• Messages you send us through support, feedback or survey forms

Information we collect automatically

• Technical information recorded in server logs (IP address, browser, device, referrer, timestamps)
• Opt-in telemetry from the plugin once it is installed, only where you have enabled it

Providing your email is not a statutory or contractual requirement, but without it we cannot send you the plugin download, product updates or respond to a support request.

Why we process your information and the legal basis

Under UK GDPR, we must tell you the purpose of each processing activity and the lawful basis we rely on:

• Send the plugin and related updates: performance of a contract you have asked us to enter into (UK GDPR Article 6(1)(b))
• Product updates, news and tips by email: your consent, which you can withdraw at any time (Article 6(1)(a))
• Respond to support requests: performance of a contract and our legitimate interest in helping users (Article 6(1)(b) and (f))
• Improve our product and website: our legitimate interest in understanding how our service is used and keeping it reliable (Article 6(1)(f)). You can object at any time.
• Prevent fraud, abuse and security incidents: our legitimate interest in keeping our service safe (Article 6(1)(f))
• Meet legal obligations: compliance with a legal duty we are subject to, such as tax and accounting (Article 6(1)(c))

How long we keep your information

• Email subscribers: until you unsubscribe or ask us to delete your record, then removed within 30 days
• Support and enquiry emails: up to 3 years from the last message, so we can follow up on related issues
• Server and security logs: up to 90 days
• Records we must keep for tax or accounting purposes: 6 years, as required by HMRC

Who we share your information with

We never sell your personal information. We share it only with processors who help us run the service, on a contract that restricts them to using the data for us:

• MailerLite: delivers transactional and marketing emails and stores subscriber records
• Our hosting provider: runs the servers this website is delivered from
• Google (Fonts): serves web fonts used in our design; this causes your IP address to be transmitted to Google
• Our payment partner: handles premium licence sales as merchant of record and sends us proof-of-purchase information
• Professional advisers: our accountants and lawyers when required

We may also disclose information where we are required to by law, or in connection with a merger, acquisition or sale of our business (with advance notice where possible).

International transfers

Some of our processors are based outside the UK. Where that is the case, we rely on a transfer mechanism approved under UK GDPR: either the UK International Data Transfer Agreement, the UK Addendum to the EU Standard Contractual Clauses or a UK adequacy decision. You can ask for a copy of the safeguards applying to any specific transfer by writing to [email protected].

Automated decision-making

We do not carry out automated decision-making, including profiling, that produces legal or similarly significant effects on you.

Data security

We take reasonable measures to protect your information from unauthorised access, loss or misuse, including encryption in transit, access controls and periodic reviews. No method of transmission over the internet is entirely secure, so we cannot guarantee absolute security.

Your rights

Under UK GDPR you have the right to:

• Ask for a copy of the personal information we hold about you
• Ask us to correct information that is inaccurate or incomplete
• Ask us to delete your personal information (in certain circumstances)
• Ask us to restrict or object to how we process your information
• Receive your information in a portable format so you can move it to another provider
• Withdraw your consent at any time, where we rely on consent, without affecting processing carried out before you withdrew it

To exercise any of these rights, write to [email protected]. We respond within one month. We may ask you to verify your identity before we act.

If you think we have handled your personal information unfairly, you have the right to complain to the Information Commissioner's Office at ico.org.uk or on 0303 123 1113. We would appreciate the chance to address your concerns first.

Cookies and similar technologies

We use only strictly necessary cookies and local storage to make the website and the on-page plugin demo work. These include session cookies set by WordPress and small entries that remember whether you have completed the demo introduction.

We do not run third-party advertising, analytics or tracking cookies on this site. You can block or delete cookies through your browser settings, but some parts of the site may not work correctly if you do.

Children's privacy

Our service is not intended for children. Under UK GDPR the age of consent for information society services is 13. Some EU member states set a higher age (up to 16). We do not knowingly collect personal information from anyone below the applicable age. If you believe we have, please contact us and we will delete it.

Changes to this policy

We may update this privacy policy from time to time. We'll post the new version on this page and update the "Last updated" date above. Where a change is material we will give you reasonable notice by email before it takes effect.

Contact us

For any question about this privacy policy or our data practices: