Privacy Policy
How MarketPilot handles data.
Last updated: 29 May 2026. This policy explains how MarketPilot OS collects, uses and protects personal data.
1. Who we are
MarketPilot OS is operated by GK STUDIO LTD, a company registered in England and Wales with company number 16048293. Our registered office is London, UK. For privacy requests, contact privacy@marketpilotos.com.
2. Information we collect
We may collect account details, authentication information, business profile information, campaign settings, uploaded media, generated marketing content, leads, messages, booking information, integration settings, usage data, billing records and support communications.
3. How we use information
We use information to provide the MarketPilot service, create and manage accounts, generate campaign recommendations, process uploads, manage leads and inbox activity, support connected integrations, process payments, maintain security, provide support, improve the product and comply with legal obligations.
4. AI processing
MarketPilot uses AI systems to help generate recommendations, marketing content, image prompts, campaign plans and other outputs. Information you provide may be processed by AI providers only for the purposes of delivering the service. You remain responsible for reviewing and approving outputs before use.
5. Third-party services
We use trusted providers including authentication, hosting, database, payment, email delivery, AI, storage, analytics, monitoring and advertising-platform integration providers. These may include Clerk, Vercel, Neon, Stripe, Resend, OpenAI, Cloudflare R2, Google and Meta where enabled by you.
6. Legal bases
Where UK GDPR applies, we process personal data on the basis of contract performance, legitimate interests, consent where required, legal obligation, and in limited cases the establishment or defence of legal claims.
7. Data retention
We retain account and business data while your account is active. Lead, campaign and operational records may be retained for up to 24 months unless a longer period is required for legal, billing, security or dispute purposes. You may request deletion subject to lawful retention requirements.
8. Your rights
You may have rights to access, correct, delete, restrict or object to processing of your personal data, and to request portability. You may also withdraw consent where processing is based on consent. Contact privacy@marketpilotos.com to exercise these rights.
9. International transfers
Some providers may process data outside the United Kingdom. Where this happens, we take steps designed to protect personal data through appropriate contractual safeguards or recognised transfer mechanisms.
10. Security
We use reasonable technical and organisational measures including secure authentication, encrypted token storage where applicable, access controls, audit logs and operational monitoring. No system is completely secure and users must keep account credentials safe.
11. Changes to this policy
We may update this Privacy Policy as the service evolves. Material changes will be reflected on this page and, where appropriate, communicated through the product or by email.