O
OpalEdgeSign in →

Privacy Policy

Last updated: 26 April 2026

1. Who We Are

OpalEdge is operated by Opal Business Solutions. This policy explains how we collect, use, and protect your personal data in accordance with the UK GDPR and the Data Protection Act 2018. Our contact address for all data-related enquiries is matt@opalbusiness.co.uk.

2. What Data We Collect

  • Account data: name, email address, company name, trade type, password (hashed and never stored in plain text)
  • Business data: quotes, jobs, invoices, customers, materials, price sheets, and supplier invoices you create or upload within the platform
  • Documents: files uploaded by Premium plan subscribers to AskEdge (e.g. supplier agreements, certifications, price lists)
  • Billing data: processed by Stripe — we store only your Stripe customer ID and subscription status, not full card details
  • Usage data: feature usage counts (e.g. quotes generated, AI messages sent) used to enforce plan limits and improve the Service
  • Technical data: session tokens, browser type, and basic request logs retained for security and debugging purposes

3. How We Use Your Data

  • To provide, operate, and improve the Service
  • To process payments and manage your subscription
  • To send transactional emails (account verification, welcome, invoices, alerts, and weekly business summaries on Pro and Premium plans)
  • To generate AI-powered quotes, reports, and insights using your business data
  • To enforce subscription plan limits and monitor for abuse
  • To comply with legal and regulatory obligations

4. AI Processing

AI features in OpalEdge are powered by OpenAI and Anthropic. When you use AI-powered features (quote builder, AskEdge, analytics reports), relevant portions of your business data are sent to these APIs to generate responses. This data is processed only for the purpose of fulfilling your request. We do not permit these providers to use your data to train their models under our agreements with them. The AskEdge web search feature (Pro and Premium plans) may retrieve content from third-party websites via Anthropic’s built-in web search capability.

5. Data Sharing

We do not sell your data. We share data only with the following trusted processors, solely to operate the Service:

  • Supabase — database and file storage
  • Vercel — hosting and serverless functions
  • Stripe — payment processing and subscription management
  • OpenAI — AI quote generation and analytics reports
  • Anthropic — AskEdge AI business advisor
  • Resend — transactional and notification email delivery

6. Data Retention

We retain your data for as long as your account is active. On account deletion, your personal data and business data are permanently removed within 30 days, except where retention is required by applicable law (e.g. financial records).

7. Your Rights

Under UK GDPR, you have the right to:

  • Access a copy of the personal data we hold about you
  • Correct inaccurate or incomplete data
  • Request deletion of your data (“right to be forgotten”)
  • Port your data to another service
  • Object to or restrict processing in certain circumstances

To exercise any of these rights, contact us at matt@opalbusiness.co.uk. We will respond within 30 days.

8. Cookies

See our Cookie Policy for details on how we use cookies and local browser storage.

9. Security

We implement appropriate technical and organisational measures to protect your data, including encrypted connections (HTTPS), hashed passwords, and access controls. In the event of a data breach that affects your rights, we will notify you and the relevant supervisory authority as required by law.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you by email of any material changes. The “last updated” date at the top of this page will always reflect the most recent revision.

11. Contact

Data controller: Opal Business Solutions. For all privacy enquiries: matt@opalbusiness.co.uk.

Terms of ServicePrivacy PolicyCookie Policy