Back to Home

Last updated: 28 February 2026

Privacy Policy

1. Who We Are

Noctara ("we", "us", "our") is the data controller for personal data collected through this website and waitlist workflow.

2. Data We Collect

  • Waitlist form data: name, company name, company email address.
  • Operational data: submission status, timestamps, source, and related workflow IDs.
  • Security and anti-abuse data: IP-derived hashed fingerprints used for rate limiting and bot prevention.
  • Captcha verification data from Cloudflare Turnstile, including verification outcome, hostname, and action metadata.
  • Basic analytics and diagnostic events used to understand site performance and usage.

3. Why We Use Your Data

  • To manage and operate the waitlist.
  • To send confirmation emails and waitlist updates.
  • To prevent spam, abuse, and fraudulent submissions.
  • To maintain security, reliability, and service quality.
  • To sync confirmed waitlist records into our CRM workflow.

4. UK GDPR Lawful Bases

  • Consent: when you submit your details to join the waitlist and confirm your email.
  • Legitimate interests: for platform security, abuse prevention, and operational analytics.
  • Legal obligations: where we must retain or disclose data under applicable law.

5. Data Retention

We retain waitlist personal data, including waitlist email addresses, for up to 3 years from submission or last meaningful interaction. We then delete or anonymise it unless we are required to retain it by law.

6. Processors and Sharing

We use service providers to process data on our behalf, including:

  • Supabase (database and backend infrastructure)
  • Cloudflare Turnstile (bot/captcha verification)
  • SendGrid (email delivery)
  • Linear (CRM/customer workflow)
  • Vercel (hosting and analytics)

Some processing may occur outside the UK. Where this happens, we rely on appropriate transfer safeguards under UK data protection law.

7. Your Rights

Under UK GDPR, you may have rights to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion
  • Restrict or object to processing
  • Request data portability
  • Withdraw consent at any time (where processing relies on consent)

8. Contact

For privacy requests, contact: noctarasoftware@gmail.com