Home / Privacy Policy

Privacy Policy

Last updated: 20/02/2026

1. Introduction

Hollee (“Hollee”, “we”, “our”, “us”) is a Generative AI platform that enables organisations to create, configure and use AI agents for research, strategy, marketing, creative and operational work.

This Privacy Policy explains how we collect, use, process, store and protect personal data when you:

  • Visit our website

  • Create an account

  • Use our AI agents

  • Upload documents or data

  • Interact with our services

Hollee operates primarily in the United Kingdom and complies with:

  • UK GDPR

  • Data Protection Act 2018

  • Where applicable, EU GDPR

If you have any questions about this policy, please contact:
support@hollee.ai

2. Who We Are

Hollee is a UK-based SaaS platform providing AI-powered workspaces and agents.

For organisational accounts, your employer or organisation may act as the primary Data Controller for data uploaded to the platform, and Hollee acts as a Data Processor.

3. Categories of Data We Collect

We collect the following categories of data:

3.1 Account Information

  • Name

  • Email address

  • Organisation name

  • Role and permissions

  • Login credentials (securely encrypted)

  • Two-factor authentication metadata

3.2 Usage Data

  • Agent interactions and prompts

  • System logs

  • Workspace activity

  • Feature usage metrics

  • Model selection history

3.3 Uploaded Content

  • Documents (PDF, Word, spreadsheets, etc.)

  • Text inputs

  • Knowledge files

  • Structured data

  • Uploaded images or media

Uploaded files may be converted into Markdown format via our internal document processing service and stored as structured knowledge.

3.4 AI Processing Data

When you interact with AI agents:

  • Prompts may be processed through our LiteLLM gateway

  • Data may be routed to third-party model providers (e.g. OpenAI, Google Gemini, Anthropic Claude)

  • Responses are returned to Hollee and stored within your workspace

3.5 Agent Memory Data

Where enabled, conversation data may be processed by background memory extraction jobs to create structured, persistent “agent memories.”

3.6 Technical Data

  • IP address

  • Browser type

  • Device type

  • Operating system

  • Cookie identifiers

4. How We Use Your Data

We process personal data to:

  • Provide and operate the Hollee platform

  • Enable AI agent functionality

  • Convert and structure uploaded documents

  • Route AI requests via LiteLLM proxy

  • Maintain service stability and uptime

  • Improve product features

  • Detect abuse or misuse

  • Comply with legal obligations

We do not sell personal data.

5. Lawful Basis for Processing

We process personal data under the following lawful bases:

  • Contractual necessity – to provide our SaaS platform

  • Legitimate interests – to improve performance and security

  • Legal obligation – compliance with applicable laws

  • Consent – where required (e.g., marketing communications)

6. AI Model Processing & Sub-Processors

Hollee uses a unified AI gateway architecture that may route requests to external AI providers including but not limited to:

  • OpenAI

  • Google (Gemini)

  • Anthropic

Data sent to these providers is limited to the content required to generate a response.

We:

  • Do not permit providers to use your data to train public models unless explicitly enabled under your agreement

  • Use provider configurations designed to minimise data retention

  • Where possible, use enterprise-grade or API-based endpoints

A list of active subprocessors is available upon request.

7. Data Storage & Infrastructure

Hollee is deployed on a secured VPS infrastructure using:

  • Docker container isolation

  • Encrypted HTTPS (Let’s Encrypt SSL)

  • Restricted internal networks for AI services

  • Private model gateway

  • Internal-only document conversion services

Uploaded files are stored securely and processed internally before structured storage.

8. Data Retention

We retain personal data:

  • For the duration of your account

  • For the duration of your organisation’s subscription

  • As required for legal or regulatory obligations

Agent memory records may persist until deleted by the organisation or workspace owner.

Upon account deletion:

  • Workspace data may be deleted or anonymised

  • Backups may persist for a limited period

9. Data Sharing

We share data only with:

  • AI model providers (as processors)

  • Infrastructure providers (hosting, container services)

  • Payment processors

  • Professional advisers (legal/accounting)

  • Law enforcement (where legally required)

We do not sell or trade personal data.

10. International Transfers

Some AI providers operate outside the UK.

Where personal data is transferred internationally, we rely on:

  • UK International Data Transfer Agreements (IDTA)

  • Standard Contractual Clauses (SCCs)

  • Adequacy decisions where applicable

11. Security Measures

Hollee implements:

  • HTTPS encryption in transit

  • Isolated Docker networks for AI services

  • Internal-only document conversion microservices

  • Role-based access control

  • Two-factor authentication

  • Secure Laravel backend configuration

  • Background job isolation for memory processing

Despite our safeguards, no system is 100% secure.

12. Cookies

We use cookies for:

  • Session authentication

  • Security

  • Performance analytics

  • User preferences

You can control cookies via your browser settings.

A separate Cookie Policy may apply.

13. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data

  • Rectify inaccurate data

  • Request erasure

  • Restrict processing

  • Object to processing

  • Data portability

  • Withdraw consent

To exercise your rights, contact: support@hollee.ai

You may also lodge a complaint with the UK Information Commissioner’s Office (ICO).

14. Organisational Accounts

If you use Hollee through your employer:

  • Your organisation controls workspace data

  • Administrators may access logs and activity

  • Hollee acts as a processor on behalf of your organisation

Your organisation’s policies may also apply.

15. Children’s Data

Hollee is not intended for individuals under 18.
We do not knowingly collect data from minors.

16. Automated Decision Making

Hollee provides AI-generated outputs.

AI responses:

  • Are probabilistic

  • May be inaccurate

  • Should be reviewed by users

Hollee does not use automated decision-making to produce legal or similarly significant effects without human review.

17. Data Breach Notification

In the event of a personal data breach, we will:

  • Assess risk promptly

  • Notify affected customers where required

  • Notify the ICO where legally required

18. Changes to This Policy

We may update this Privacy Policy periodically.

Material changes will be:

  • Posted on this page

  • Notified via platform announcement or email

19. Contact Information

Hollee
26 Albert Square
Altrincham
United Kingdom

Email: support@hollee.ai