Oak Cover
  • Platform
  • Partners
  • Integrations
  • About
  • Contact

Privacy Policy

Last Updated: January 2026

OakCover Ltd and our subsidiaries and affiliates ("OakCover", "we", "us", or "our") provide AI risk warranty and risk management services for businesses deploying artificial intelligence systems. OakCover Ltd is a company registered in England and Wales (Company No. 16948043). We are committed to protecting your privacy and handling your information responsibly. This Privacy Policy describes how we collect, use, disclose, and protect personal and business information when you use our services, website, and platform (collectively, the "Services").

1. Information We Collect

Business and Contact Information

We collect business and contact information necessary to provide our Services, including:

  • Company name, business address, and contact details
  • Names, titles, and contact information of authorised representatives
  • Email addresses, phone numbers, and mailing addresses
  • Industry, company size, and revenue information
  • Business registration and tax identification numbers

AI System Information

To provide accurate risk assessment and warranty protection, we collect information about your AI systems:

  • Types of AI models and systems in use (e.g., LLMs, computer vision, recommendation engines)
  • AI use cases and applications
  • Deployment environments and infrastructure details
  • Training data sources and data sensitivity classifications
  • AI governance practices and risk management controls
  • Historical AI-related incidents or claims
  • Performance metrics and monitoring data (when using our platform)

Financial Information

We collect financial information necessary for underwriting, billing, and payment processing:

  • Payment card information and billing details
  • Bank account information for warranty fee payments
  • Financial statements and credit information (for underwriting purposes)
  • Revenue and financial performance data

Platform Usage Data

When you use our risk management platform and demo tools, we collect:

  • Account credentials and authentication data
  • Usage patterns, feature interactions, and platform activity
  • Risk assessment results and dashboard configurations
  • Model and deployment data you input into the platform
  • Technical logs and error reports

Automatically Collected Information

We automatically collect certain information when you visit our website:

  • IP address, browser type, and device information
  • Website usage data, pages visited, and time spent
  • Referral sources and search terms
  • Cookies and similar tracking technologies (see our Cookie Policy)

2. How We Use Your Information

We use your information to:

  • Provide AI risk warranty quotes, assessment, and policy administration
  • Assess and evaluate AI-related risks using our proprietary risk models
  • Process warranty applications, issue policies, and manage protection
  • Process claims and provide claims support services
  • Deliver risk management platform services, including monitoring and analytics
  • Improve our AI risk assessment models and underwriting algorithms
  • Provide customer support and respond to enquiries
  • Send important policy updates, billing information, and service communications
  • Comply with legal, regulatory, and contractual obligations
  • Prevent fraud, ensure security, and protect against unauthorised access
  • Conduct business analytics and improve our Services
  • Send marketing communications (with your consent, where required)

3. Legal Basis for Processing (UK GDPR)

Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, we process your personal data on the following legal bases:

  • Contract: Processing necessary for the performance of a contract with you or to take steps at your request before entering into a contract
  • Legal Obligation: Processing necessary to comply with our legal obligations
  • Legitimate Interests: Processing necessary for our legitimate interests or those of a third party, provided those interests do not override your fundamental rights and freedoms
  • Consent: Where you have given consent to the processing of your personal data for specific purposes (e.g., marketing communications)

4. AI and Machine Learning

OakCover uses artificial intelligence and machine learning technology to:

  • Assess AI-related risks and calculate warranty fees
  • Analyse patterns in AI system deployments and incidents
  • Provide risk scoring and recommendations through our platform
  • Improve our underwriting models and risk assessment accuracy
  • Detect anomalies and potential security threats

Our AI models are designed with fairness, transparency, and accuracy in mind. We regularly audit our models to ensure they provide reliable risk assessments and do not introduce bias. We do not use discriminatory factors in our decision-making processes.

5. Information Sharing and Disclosure

We share your information with:

  • Warranty Providers: We share necessary information with our partner warranty providers to assess, issue, and administer your warranty policies
  • Service Providers: We work with third-party service providers who help us operate our platform, process payments, provide customer support, conduct analytics, and deliver other services. These providers are contractually obligated to protect your information
  • Legal and Regulatory Requirements: We may disclose information when required by law, regulation, court order, or legal process, or to respond to government requests
  • Business Transfers: In the event of a merger, acquisition, sale of assets, or other business transaction, your information may be transferred as part of that transaction
  • With Your Consent: We may share information with third parties when you explicitly consent to such sharing

We never sell your personal or business information to third parties for marketing purposes.

6. Data Security

We implement industry-standard security measures to protect your information, including:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Regular security audits, vulnerability assessments, and penetration testing
  • Access controls, authentication, and authorisation measures
  • Employee training on data protection, privacy, and security best practices
  • Incident response procedures and breach notification protocols
  • Secure data centres and cloud infrastructure with appropriate safeguards
  • Regular backups and disaster recovery procedures

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to maintaining reasonable safeguards.

7. Data Retention

We retain your information for as long as necessary to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. This includes:

  • Active policy information for the duration of your policy and applicable retention periods thereafter
  • Claims information as required by law and industry standards
  • Business records for accounting, legal, and regulatory compliance purposes
  • Platform usage data for service delivery and improvement

8. Your Rights

Under the UK GDPR and the Data Protection Act 2018, you have the following rights regarding your personal information:

  • Right of Access: Request access to the personal information we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete information
  • Right to Erasure: Request deletion of your information (subject to legal and contractual requirements, such as warranty record retention obligations)
  • Right to Data Portability: Request a copy of your information in a portable format
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Right to Restriction: Request restriction of processing in certain circumstances
  • Rights Related to Automated Decision-Making: Not be subject to decisions based solely on automated processing, including profiling, that produce legal effects

To exercise these rights, please contact us at privacy@oakcover.co.uk. We will respond to your request within one month, as required by law. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your rights have been violated.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own, including countries where our service providers operate. When we transfer data outside the UK, we ensure appropriate safeguards are in place to protect your information in accordance with UK data protection law, including:

  • Standard contractual clauses approved by the UK Information Commissioner
  • Transfers to countries with an adequacy decision from the UK Government
  • Other legally recognised transfer mechanisms
  • Contractual commitments from service providers to protect your information

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information about your preferences and usage of our website. You can control cookies through your browser settings, though disabling cookies may limit certain functionality. For more information, please see our Cookie Policy.

11. Children's Privacy

Our Services are designed for businesses and are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we learn that we have collected information from a child under 18, we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other reasons. We will notify you of material changes by:

  • Posting the updated policy on our website with an updated "Last Updated" date
  • Sending an email notification to registered users (for material changes)
  • Displaying a notice on our platform or website

Your continued use of our Services after changes are posted constitutes your acceptance of the updated policy. We encourage you to review this Privacy Policy periodically.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

OakCover Ltd
Company No. 16948043
Email: privacy@oakcover.co.uk

You may also contact our Data Protection Officer at privacy@oakcover.co.uk.

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Website: ico.org.uk

Products

  • AI Innovator Warranty
  • AI Adopter Warranty
  • Platform
  • Integrations

Partners

  • For Brokers & Insurers
  • Express Interest
  • Partner Login

Company

  • About
  • Contact
  • Demo

Legal

  • Terms of Use
  • Privacy Policy

Login

  • Insured Portal
  • Partners Portal
  • Sign Up

© 2026 OakCover Ltd. All rights reserved.

Registered in England and Wales (Company No. 16948043)

TermsPrivacyContact