Privacy Policy

Encelyte Ltd

Last updated: 30 June 2026

1. Introduction

This Privacy Policy explains how Encelyte Ltd ("Encelyte", "we", "us" or "our") collects, uses, shares and protects personal data when you visit our website at https://encelyte.com, contact us through our enquiry form, or book a call with us.

We provide AI consulting, automation and custom software services across Europe and the wider EMEA region. We work mainly with businesses and the professionals who work for them, and we also work with individual clients. Our website is intended for adults and is not directed at children.

We are committed to handling personal data carefully and lawfully, in line with the EU General Data Protection Regulation (Regulation (EU) 2016/679, "GDPR") and the relevant data protection laws of the Republic of Cyprus.

Please read this policy together with our Cookie Policy, which explains how we use cookies and similar technologies on this website.

A note on Pileform. Pileform is a separate product operated on its own domain, pileform.com. It has its own privacy and cookie policies, which apply to that service. This policy does not cover Pileform.

2. Who we are (data controller)

Encelyte operates through two separate companies, one registered in the Republic of Cyprus and one registered in the Republic of Lebanon. For this website and the personal data described in this policy, the Cyprus company, Encelyte Ltd, is the data controller. This means it decides why and how your personal data is processed.

Encelyte Ltd (Cyprus) is the data controller for this website. It is a private limited company registered in the Republic of Cyprus.

  • Company registration number: HE 481928
  • Registered office: P. Lordos Center, Block B, 3105 Limassol, Cyprus

Encelyte LLC (Lebanon) is an affiliated company that carries out engineering work for the group. It is registered in the Republic of Lebanon.

  • Commercial register number: 2078827
  • Office: Choueh Building, Mar Roukoz, Dekwaneh, Lebanon

Contact

If you have any questions about this policy or about how we handle your personal data, please contact us using the details above. For privacy questions, the best route is email to contact@encelyte.com.

Where personal data is handled by our Lebanon company, which is outside the EEA, we apply appropriate safeguards (see Section 9, International transfers).

3. What personal data we collect and how

We only collect personal data that you choose to give us, and that we need in order to respond to you and run our business. We do not currently use any advertising or web analytics tools to build profiles of visitors.

a) When you use our enquiry or contact form

When you fill in our enquiry or contact form, we collect:

  • your name;
  • your email address;
  • your company name; and
  • the content of your message and any other information you choose to include.

b) When you book a call with us

We use Cal.com (via the cal.eu platform) to let you schedule discovery and other calls. When you book a meeting, we collect:

  • your name;
  • your email address; and
  • scheduling details (such as the date, time, time zone and any information you add to the booking).

c) When you email or call us directly

If you contact us by email or telephone, we will process the contact details you use and the content of your message or call so that we can respond and keep a record of our correspondence.

d) Technical and server data

When you visit our website, our hosting and security provider (Cloudflare) processes limited technical information that is normal for operating a website securely, such as IP addresses and request data. This is used to deliver the site, keep it available, and protect it against abuse and attacks. See Section 7 (Cookies) and Section 8 (Who we share data with) for more.

We do not intentionally collect special categories of personal data (such as data revealing health, religion or political opinions) through this website. Please do not include such information in your messages to us.

Under the GDPR, we must have a valid legal basis for each way we use your personal data. The table below sets out what we do and why.

What we do Personal data used Legal basis (GDPR Article 6)
Respond to enquiries you send us through the form, by email or by phone Name, email, company name, message content, contact details Our legitimate interests (Art. 6(1)(f)) in responding to business enquiries and corresponding with potential and existing clients; and/or your consent (Art. 6(1)(a)) where you have voluntarily contacted us
Schedule and manage discovery and other calls Name, email, scheduling details Our legitimate interests (Art. 6(1)(f)) in arranging requested meetings; and/or your consent (Art. 6(1)(a)) when you submit a booking
Carry out ongoing business correspondence and manage our relationship with you or your organisation Name, email, company name, correspondence Our legitimate interests (Art. 6(1)(f)) in managing and developing our client relationships; and, where a contract is in place, performance of that contract (Art. 6(1)(b))
Operate, secure and maintain the website Technical and server data Our legitimate interests (Art. 6(1)(f)) in providing a secure, reliable website
Comply with legal obligations (for example, tax, accounting or responding to lawful requests) As required Compliance with a legal obligation (Art. 6(1)(c))

Where we rely on legitimate interests, we have considered the impact on your rights and freedoms and believe our processing is reasonable and proportionate in the context of providing and managing our services. You can ask us for more detail about this balancing exercise using the contact details in Section 2.

Where we rely on consent, you can withdraw it at any time (see Section 10). Withdrawing consent does not affect the lawfulness of processing carried out before you withdrew it.

5. Children

Our website and services are intended for adults. They are not directed at children, and we do not knowingly collect personal data from anyone under the age of 16. If you believe a child has provided us with personal data, please contact us and we will delete it.

6. Who we share data with

We do not sell your personal data. We share it only with the service providers (processors) we rely on to run our business, and only as far as needed for the purposes described above. Each of these providers acts on our instructions under appropriate data protection terms.

Provider Role What it processes
Cloudflare Website hosting, content delivery (CDN) and security Technical and server data needed to deliver and protect the website (for example, IP addresses and request data)
Resend Transactional email delivery Delivers your form submissions to us by email. This may include your name, email, company name and message. Resend may process data outside the European Economic Area (EEA) under appropriate safeguards (see Section 9)
Cal.com (via cal.eu) Meeting scheduling Name, email and scheduling details needed to arrange your call

We may also disclose personal data where we are legally required to do so, for example to comply with a court order, regulator, or other lawful request, or to establish, exercise or defend legal claims.

If our business is reorganised, sold or transferred, personal data may be shared with a successor or potential buyer as part of that process, subject to appropriate confidentiality and data protection safeguards.

7. Cookies

Our website uses cookies and similar technologies. Some are strictly necessary to operate the site and keep it secure, and others (where used) are only set with your consent, in line with the Cyprus ePrivacy rules (the Regulation of Electronic Communications and Postal Services Law, Law 112(I)/2004, as amended) and the GDPR.

For full details of the cookies we use, their purpose, and how to manage your preferences, please see our separate Cookie Policy at https://encelyte.com/cookies.

8. International transfers

We are based in Cyprus and operate within the EU/EEA where possible. However, some of our processing involves transfers of personal data outside the EEA.

  • Our Lebanon company operates outside the EEA. Where personal data is accessed or processed there, we put appropriate safeguards in place.
  • Resend, our transactional email provider, may process data outside the EEA.

Where personal data is transferred outside the EEA, we rely on appropriate safeguards recognised under the GDPR, such as the European Commission's Standard Contractual Clauses (SCCs), and we take additional measures where needed to protect your data. You can ask us for more information about these safeguards using the contact details in Section 2.

9. How long we keep data

We keep personal data only for as long as we need it for the purposes set out in this policy, and to meet our legal, accounting and record keeping obligations. As a general guide:

  • Enquiry and contact form data, and related correspondence: we keep this for as long as needed to respond to your enquiry and for a reasonable period afterwards in case you contact us again or a business relationship develops. Where no relationship develops, we aim to delete or anonymise this data within 24 months of our last contact.
  • Booking and scheduling data: we keep this for as long as needed to arrange and follow up on the meeting, and for 24 months afterwards.
  • Client relationship and contractual records: where you become a client, we keep relevant records for the duration of our relationship and for 6 years after it ends.
  • Technical and security data: retained for the short periods needed to operate and protect the website, as configured by our hosting and security provider.

When we no longer need personal data, we securely delete or anonymise it.

10. Your rights

Under the GDPR, and subject to the conditions and exceptions in the law, you have the following rights in relation to your personal data:

  • Access: to ask whether we hold personal data about you and to receive a copy of it.
  • Rectification: to ask us to correct personal data that is inaccurate or incomplete.
  • Erasure: to ask us to delete your personal data in certain circumstances (the "right to be forgotten").
  • Restriction: to ask us to limit how we use your personal data in certain circumstances.
  • Portability: to ask us to provide certain personal data to you, or to another controller, in a structured, commonly used and machine readable format.
  • Objection: to object to processing based on our legitimate interests, on grounds relating to your particular situation.
  • Withdraw consent: where we rely on your consent, to withdraw it at any time. This does not affect the lawfulness of processing carried out before withdrawal.
  • Complain to a supervisory authority: to lodge a complaint with a data protection authority if you believe your rights have been breached.

To exercise any of these rights, please contact us at contact@encelyte.com. We will respond within the time limits set by the GDPR (generally within one month, which may be extended for complex requests). We may need to verify your identity before acting on a request.

We hope to resolve any concerns directly. However, you also have the right to complain to the data protection authority in the country where you live or work, or where the issue arose. As our lead supervisory authority is in Cyprus, you may contact:

Office of the Commissioner for Personal Data Protection (Cyprus)

11. Data security

We take the security of personal data seriously and use appropriate technical and organisational measures to protect it against loss, misuse, unauthorised access, disclosure or alteration. These measures include using reputable service providers (such as Cloudflare for hosting and security), limiting access to personal data to those who need it, and protecting data in transit.

No method of transmission or storage is completely secure. While we work to protect your personal data, we cannot guarantee absolute security. If a personal data breach is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority, and you where required, in line with the GDPR.

12. Changes to this policy

We may update this policy from time to time to reflect changes in our practices, services, or legal obligations. When we make changes, we will update the "Last updated" date at the top of this page. Where changes are significant, we will take reasonable steps to bring them to your attention. We encourage you to review this policy periodically.

13. How to contact us

If you have any questions, concerns or requests about this Privacy Policy or your personal data, please contact us:

Encelyte Ltd