How we handle your data.

ComplianceCrib ("we") completes client security questionnaires on behalf of managed service providers. We take the confidentiality of your information seriously, because the documents you share with us describe your security posture. This page explains what we handle and how.

What we collect

• The security questionnaire you ask us to complete.
• The supporting documents you choose to send (for example certificates, policies, and previously completed questionnaires).
• Your contact details (name, email, company) when you get in touch.

How we use it

We use your documents solely to complete the questionnaire you have asked us to complete, and to communicate with you about that work. We do not use your information for anything else.

How we store and protect it

• Your documents are held in a private, access-controlled account.
• They are never used to train any AI model.
• They are never shared with or sold to any third party.
• They are deleted once your questionnaire has been delivered, unless you ask us to retain your approved answers so future questionnaires are faster, in which case they are kept securely until you ask us to delete them.

Use of AI

We use AI tools to help draft answers from the documents you provide. These tools are configured so that your information is not used to train models. The output is always a draft for you to review, edit, and sign off; you remain responsible for the final submission.

NDAs and redaction

We are happy to sign a non-disclosure agreement before you send anything, and to work from a redacted set of documents if you would prefer to strip names and specifics.

Your rights

Under UK data protection law you can ask us to provide a copy of the information we hold about you, correct it, or delete it. To make a request, email hello@compliancecrib.co.uk and we will respond promptly.

Cookies

This website does not use tracking or advertising cookies.

Changes

We may update this page from time to time. The date at the top shows when it was last revised.

Contact

Questions about your data? Email hello@compliancecrib.co.uk.