This policy explains how Roleplan collects, uses and protects your personal data when you visit roleplan.ai or work with us as a client. We process personal data under the UK GDPR and the UAE Personal Data Protection Law (PDPL).
1. Who we are
Roleplan is operated by Nowherenear FZCO, a company registered in Dubai, UAE. For privacy questions, email hello@roleplan.ai.
2. What we collect when you visit our website
Booking a call. When you book a call we collect your name, email and any context you provide. Bookings are handled by Cal.com and imported into our CRM (Salesforce or our internal CRM) and team inbox.
Contacting us. When you email hello@roleplan.ai or message us on WhatsApp, we receive your contact details and the contents of your message.
Email marketing. If you opt in to updates we add you to Resend and Loops for transactional and marketing emails. You can unsubscribe at any time from any email we send.
Analytics. We use Google Analytics 4 and PostHog to understand how the site is used. These tools collect anonymised usage data — pages viewed, referring source, device type, country. We don't use this data to identify you personally.
Cookies. The website doesn't currently set any non-essential cookies. We will update this policy and add a consent banner before introducing advertising or tracking cookies (for example, Meta Pixel or Google Ads).
3. What we collect when you become a client
When you engage Roleplan to build or operate AI agents, CRM systems or WhatsApp automation, we may process personal data belonging to you, your team and your customers. The exact data flow depends on the tools chosen for your build — you receive specific documentation describing what is collected, where it lives, and how to access or delete it.
In these engagements Roleplan acts as a data processor under your direction. We sign a Data Processing Agreement (DPA) on request.
4. Why we use your data
- To respond to enquiries and run discovery calls
- To send you relevant updates if you have subscribed
- To meet legal, accounting and tax obligations
- To improve our services through aggregated analytics
We will never sell your data.
5. Who we share data with
- The third-party tools listed above (Cal.com, Salesforce, Resend, Loops, Google Analytics, PostHog) — each as our processor under their terms
- Professional advisers (accountants, lawyers) where required
- Authorities where compelled by law
6. International transfers
Some of our processors are based outside the UAE and UK (notably the US). We rely on those providers' Standard Contractual Clauses, Data Privacy Framework certifications, or equivalent safeguards.
7. How long we keep your data
- Sales enquiries: up to 24 months from last contact
- Marketing list: until you unsubscribe
- Client engagement records: for the duration of the engagement plus 7 years for tax and audit purposes
8. Your rights
Under the UK GDPR and the UAE PDPL you have the right to:
- Access the data we hold about you
- Have inaccurate data corrected
- Have your data deleted (subject to legal obligations)
- Object to processing
- Withdraw consent
- Lodge a complaint with the UK ICO or the UAE Data Office
To exercise any of these, email hello@roleplan.ai. We aim to respond within 30 days.
9. Security
We use commercially reasonable measures including encrypted transit (TLS), least-privilege access, and audited third-party processors. No system is perfectly secure — if we ever suffer a breach affecting your data, we will notify you and the relevant authority within the legal timeframe.
10. Changes
We will update this page as our practices evolve. Material changes will be flagged at the top.