OutaSense Privacy Policy
Privacy Policy
Company Information and Legal Notice
- Data Controller
- KByte IT Services Ltd
- Company
- KByte IT Services Ltd, trading as OutaSense (“we”, “us”, “our”)
- Trademark Notice
- OutaSense™ is a trademark of KByte IT Services Ltd
- Registered Office
- 71–75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ
- Company Registration
- Registered in England and Wales (Company No. 16325984)
- Phone
- +44 333 242 1511
- info@outasense.com
- Websites
- outasense.com, my.outasense.com
- EU Representative
- If Article 27 GDPR applies to our processing, we will appoint an EU representative and publish their contact details here.
- Effective Date
- 01/12/2025
- Last Updated
- 01/01/2026
This Privacy Policy applies to our websites, dashboards, APIs, and OutaSense devices that connect to
*.outasense.com (together, the “Services”).
Quick Summary
- We collect account and order information when you register, contact us, or buy.
- We collect technical device telemetry to operate, secure, and improve the Services.
- Routine telemetry does not include your name or email address.
- Payments are processed securely by Stripe.
- We do not sell personal data.
1) Information We Collect
1.1 OutaSense Devices
Account linking data (provided by you)
| Type | Description | Purpose |
|---|---|---|
| Email address | Provided during setup or account linking | Account access, service communications, alerts (if enabled) |
| Phone number (optional) | International format | SMS or call alerts (if enabled) |
| Device name | User-defined label | Device identification and management |
Telemetry and technical data (sent automatically)
| Type | Description | Purpose |
|---|---|---|
| Unique Device ID | Device identifier | Authentication and telemetry association |
| Sensor data | Power/internet state and metrics | Monitoring and alerting |
| Network information | Public IP and local (LAN/private) IP | Security, diagnostics, troubleshooting |
| Device logs | Error and status events | Reliability and service improvement |
Telemetry payloads are designed to include technical identifiers and metrics rather than direct identifiers such as names or email addresses. IP addresses may be considered personal data in some jurisdictions.
1.2 Websites and Dashboards
- Contact details submitted via forms
- Account login and usage activity
- Technical data (IP address, browser, OS, timestamps)
- Cookie and analytics identifiers
1.3 Accounts, Orders & Support
| Type | Purpose |
|---|---|
| Name, email, phone | Account management and communications |
| Billing and shipping address | Payments, tax compliance, delivery |
| Order and support history | Customer service and record keeping |
1.4 Payments
Payments are processed by Stripe. Card details are sent directly to Stripe and are not stored on our servers. We retain transaction references and billing details required for accounting, refunds, and compliance.
2) How We Use Personal Data
- Provide and operate the Services
- Authenticate devices and accounts
- Send alerts and service notifications
- Troubleshoot and secure the Services
- Process payments, refunds, and returns
- Detect fraud and abuse
- Comply with legal obligations
3) Legal Bases for Processing
- Contract: providing the Services and fulfilling orders
- Legitimate interests: security, diagnostics, service improvement
- Consent: optional alerts and non-essential cookies
- Legal obligation: tax, accounting, regulatory compliance
3.1 Sources of Personal Data
We collect personal data from the following sources:
- Directly from you when you create an account, purchase a product, contact us, or configure the Device
- Automatically from the Device and our Services (e.g. telemetry, logs, IP address)
- Payment and transaction references from payment processors (such as Stripe)
- Customer support interactions and communications
4) Data Retention
- Account data: retained while the account is active
- Telemetry and logs: typically retained up to 12 months
- Support records: typically retained up to 24 months
- Financial records: retained as required by law (commonly 6 years in the UK)
Retention periods are determined based on the purpose of processing, legal obligations, limitation periods for claims, and operational requirements. Data may be retained longer where required to comply with legal obligations, resolve disputes, or enforce agreements.
5) Sharing and Disclosure
We do not sell personal data. We share data only with service providers acting on our instructions, including:
- Cloud hosting and infrastructure providers
- Email, SMS, and notification providers
- Payment processors
- Analytics and advertising partners (subject to consent)
- Authorities where legally required
For clarity: we do not “sell” personal data, and we do not “share” personal data for cross-context behavioural advertising, as those terms may be defined under certain U.S. privacy laws.
6) Cookies and Tracking
We use cookies and similar technologies for essential functionality, analytics, and advertising. Where required by law, non-essential cookies are used only with your consent.
You can manage preferences via our cookie banner or your browser settings.
6.1 Global Privacy Control and Do Not Track
Our Services do not currently respond to browser “Do Not Track” signals. Where required by law, we honour Global Privacy Control (GPC) signals applicable to the sale or sharing of personal data.
7) Security
- Encrypted communications (HTTPS/TLS where supported)
- Access controls and monitoring
- Data minimisation
No system is completely secure. We take reasonable measures to protect data but cannot guarantee absolute security.
7.1 Personal Data Breach Notification
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify affected individuals and relevant supervisory authorities as required by applicable law.
8) Automated Processing and Profiling
We do not carry out automated decision-making or profiling that produces legal or similarly significant effects on individuals within the meaning of applicable data protection laws.
Automated systems may be used for operational purposes such as security monitoring, fraud prevention, abuse detection, and service reliability, which do not have significant effects on individuals.
9) Your Rights
You may have rights to:
- Access, correct, or delete your data
- Restrict or object to processing
- Data portability
- Withdraw consent at any time
To exercise your rights, contact info@outasense.com.
UK residents may complain to the Information Commissioner’s Office (ICO).
9.1 EU/EEA Residents
If you are located in the European Economic Area (EEA), you also have the right to lodge a complaint with your local data protection supervisory authority.
9.2 United States Privacy Rights
If you are a resident of certain U.S. states, you may have rights under applicable privacy laws, including the right to:
- Request access to personal data we hold about you
- Request deletion of personal data, subject to legal exceptions
- Correct inaccurate personal data
- Opt out of the sale or sharing of personal data (where applicable)
We do not sell personal data and do not share personal data for cross-context behavioural advertising as defined under applicable U.S. privacy laws.
Requests may be made using the contact details in this policy.
9.3 Sensitive Personal Data
We do not intentionally collect or process sensitive personal data as defined under applicable privacy laws, such as government identifiers, precise geolocation, biometric data, or health information.
10) International Transfers
Personal data may be processed outside your country. Where required, we use safeguards such as Standard Contractual Clauses and the UK International Data Transfer Agreement.
11) Children’s Privacy
Our Services are not intended for children. We do not knowingly collect personal data from children.
12) Changes to This Policy
We may update this Privacy Policy. The latest version will always be published here.
13) Contact
KByte IT Services LtdPrivacy Contact
71–75 Shelton Street, Covent Garden, London, WC2H 9JQ
Email: info@outasense.com