Privacy Policy

Privacy Policy

Privacy Policy

Effective Date XX-Mar-2026

Effective Date XX-Mar-2026

This Privacy Policy describes the policies of AMPLIFYR, 71-75 Shelton Street, London WC2H 9JQ, United Kingdom of Great Britain and Northern Ireland (the "Company"), email: selman@amplifyr.me, phone: +447770088358 on the collection, use and disclosure of your information that we collect when you use our website (https://www.amplifyr.me/) and our AI analytics integration service, including the Amplifyr MCP (Model Context Protocol) connector which allows AI assistants such as Claude to access Amplifyr analytics on your behalf (collectively, the "Service"). By accessing or using the Service, you are consenting to the collection, use and disclosure of your information in accordance with this Privacy Policy. If you do not consent to the same, please do not access or use the Service.


We may modify this Privacy Policy at any time without any prior notice to you, and will post the revised Privacy Policy on the Service. The revised Policy will be effective 180 days from when the revised Policy is posted in the Service, and your continued access or use of the Service after such time will constitute your acceptance of the revised Privacy Policy. We therefore recommend that you periodically review this page.


This Privacy Policy describes the policies of AMPLIFYR, 71-75 Shelton Street, London WC2H 9JQ, United Kingdom of Great Britain and Northern Ireland (the "Company"), email: selman@amplifyr.me, phone: +447770088358 on the collection, use and disclosure of your information that we collect when you use our website (https://www.amplifyr.me/) and our AI analytics integration service, including the Amplifyr MCP (Model Context Protocol) connector which allows AI assistants such as Claude to access Amplifyr analytics on your behalf (collectively, the "Service"). By accessing or using the Service, you are consenting to the collection, use and disclosure of your information in accordance with this Privacy Policy. If you do not consent to the same, please do not access or use the Service.


We may modify this Privacy Policy at any time without any prior notice to you, and will post the revised Privacy Policy on the Service. The revised Policy will be effective 180 days from when the revised Policy is posted in the Service, and your continued access or use of the Service after such time will constitute your acceptance of the revised Privacy Policy. We therefore recommend that you periodically review this page.


1. Your Rights:

1. Your Rights:

Depending on the law that applies, you may have a right to access and rectify or erase your personal data or receive a copy of your personal data, restrict or object to the active processing of your data, ask us to share (port) your personal information to another entity, withdraw any consent you provided to us to process your data, a right to lodge a complaint with a statutory authority and such other rights as may be relevant under applicable laws. To exercise these rights, you can write to us at selman@amplifyr.me. We will respond to your request in accordance with applicable law.

Do note that if you do not allow us to collect or process the required personal information or withdraw the consent to process the same for the required purposes, you may not be able to access or use the services for which your information was sought.


Depending on the law that applies, you may have a right to access and rectify or erase your personal data or receive a copy of your personal data, restrict or object to the active processing of your data, ask us to share (port) your personal information to another entity, withdraw any consent you provided to us to process your data, a right to lodge a complaint with a statutory authority and such other rights as may be relevant under applicable laws. To exercise these rights, you can write to us at selman@amplifyr.me. We will respond to your request in accordance with applicable law.

Do note that if you do not allow us to collect or process the required personal information or withdraw the consent to process the same for the required purposes, you may not be able to access or use the services for which your information was sought.


2. Cookies Etc.

2. Cookies Etc.

We use only essential cookies required for authentication and session management. We do not use tracking or advertising cookies

We use only essential cookies required for authentication and session management. We do not use tracking or advertising cookies

3. Security:

3. Security:

The security of your information is important to us and we will use reasonable security measures to prevent the loss, misuse or unauthorized alteration of your information under our control. However, given the inherent risks, we cannot guarantee absolute security and consequently, we cannot ensure or warrant the security of any information you transmit to us and you do so at your own risk.

The security of your information is important to us and we will use reasonable security measures to prevent the loss, misuse or unauthorized alteration of your information under our control. However, given the inherent risks, we cannot guarantee absolute security and consequently, we cannot ensure or warrant the security of any information you transmit to us and you do so at your own risk.

4. Grievance / Data Protection Officer:

4. Grievance / Data Protection Officer:

If you have any queries or concerns about the processing of your information that is available with us, you may email our Grievance Officer at AMPLIFYR, 71-75 Shelton Street, email: selman@amplifyr.me. We will address your concerns in accordance with applicable law.

If you have any queries or concerns about the processing of your information that is available with us, you may email our Grievance Officer at AMPLIFYR, 71-75 Shelton Street, email: selman@amplifyr.me. We will address your concerns in accordance with applicable law.

5. Information We Collect

When you use the Amplifyr platform or MCP connector, we collect and process the following information:

a. Account credentials: When your organisation signs up for Amplifyr, we create a user account for you in our authentication system (AWS Cognito). This includes your email address and name, which are provided by your organisation administrator — not directly collected from you. These credentials are used solely to authenticate you and scope your data access to your organisation.

b. Authentication tokens: When you connect an AI assistant (such as Claude) to Amplifyr via the MCP connector, an OAuth 2.0 authentication flow is initiated. During this flow, your email address and name from your Cognito account are included in a short-lived access token used to verify your identity.

c. Usage metadata: We log which tools were called (e.g. KPIs, Share of Voice), by which authenticated identity, and at what time. We do not log the content of AI prompts or the data returned in tool responses.

d. Analytics data: The analytics data you access via Amplifyr (brand mentions, share of voice, KPIs) relates to your organisation's brand performance and does not contain personal data of individuals.


When you use the Amplifyr platform or MCP connector, we collect and process the following information:

a. Account credentials: When your organisation signs up for Amplifyr, we create a user account for you in our authentication system (AWS Cognito). This includes your email address and name, which are provided by your organisation administrator — not directly collected from you. These credentials are used solely to authenticate you and scope your data access to your organisation.

b. Authentication tokens: When you connect an AI assistant (such as Claude) to Amplifyr via the MCP connector, an OAuth 2.0 authentication flow is initiated. During this flow, your email address and name from your Cognito account are included in a short-lived access token used to verify your identity.

c. Usage metadata: We log which tools were called (e.g. KPIs, Share of Voice), by which authenticated identity, and at what time. We do not log the content of AI prompts or the data returned in tool responses.

d. Analytics data: The analytics data you access via Amplifyr (brand mentions, share of voice, KPIs) relates to your organisation's brand performance and does not contain personal data of individuals.


6. How We Use Your Information

6. How We Use Your Information

We use the information described above to:

a. Authenticate you and verify you are an authorised user of your organisation's Amplifyr account

b. Scope all data queries to your organisation only, preventing access to other organisations' data

c. Maintain audit logs for security and compliance purposes

d. Provide and improve the Amplifyr Service

We use the information described above to:

a. Authenticate you and verify you are an authorised user of your organisation's Amplifyr account

b. Scope all data queries to your organisation only, preventing access to other organisations' data

c. Maintain audit logs for security and compliance purposes

d. Provide and improve the Amplifyr Service

7. Third-Party Services

7. Third-Party Services

To deliver the Service, we use the following third-party providers. Each provider processes data only as necessary to perform their function:

To deliver the Service, we use the following third-party providers. Each provider processes data only as necessary to perform their function:

Provider

Purpose

Location

Safeguards

Amazon Web Services (AWS)

Authentication (Cognito), data storage (S3), query execution (Athena), application hosting (ECS)

EU (Ireland, eu-west-1)

AWS GDPR DPA; UK adequacy decision covers EEA transfers

AI model providers (including Anthropic, OpenAI, and others depending on which AI assistant the user connects via)

AI model inference when users query Amplifyr data through an MCP-compatible AI assistant

USA (primary)

Each provider maintains their own Data Processing Addendum and Standard Contractual Clauses (UK Addendum) for international transfers. Links: Anthropic DPA, OpenAI DPA

Provider

Purpose

Location

Safeguards

Amazon Web Services (AWS)

Authentication (Cognito), data storage (S3), query execution (Athena), application hosting (ECS)

EU (Ireland, eu-west-1)

AWS GDPR DPA; UK adequacy decision covers EEA transfers

AI model providers (including Anthropic, OpenAI, and others depending on which AI assistant the user connects via)

AI model inference when users query Amplifyr data through an MCP-compatible AI assistant

USA (primary)

Each provider maintains their own Data Processing Addendum and Standard Contractual Clauses (UK Addendum) for international transfers. Links: Anthropic DPA, OpenAI DPA

8. Data Retention

8. Data Retention

A. Authentication tokens are session-based and are not stored by Amplifyr beyond the active session.

B. Account credentials (email, name in Cognito) are retained for as long as your organisation holds an active Amplifyr account. Upon account termination, credentials are deleted within 30 days.

C. Audit logs (tool call metadata) are retained for as long as necessary for security and compliance purposes.

D. Analytics data is retained per the terms of your organisation's service agreement with Amplifyr.


A. Authentication tokens are session-based and are not stored by Amplifyr beyond the active session.

B. Account credentials (email, name in Cognito) are retained for as long as your organisation holds an active Amplifyr account. Upon account termination, credentials are deleted within 30 days.

C. Audit logs (tool call metadata) are retained for as long as necessary for security and compliance purposes.

D. Analytics data is retained per the terms of your organisation's service agreement with Amplifyr.


Home

Features

How it works

Pricing

Contact

Get Started

Home

Features

How it works

Pricing

Contact

Get Started