Privacy policy.
This site runs no analytics, no trackers, and sets no cookies. The list of what we collect is short enough to read in full, and it is below.
Who we are
Sigilbase Ltd, a company registered in England and Wales under company number 17332548 with its registered office at 66 Paul Street, London, England, EC2A 4NA, United Kingdom, is the data controller for the personal data described on this page. Contact: hello@sigilbase.io.
What this website collects
One thing, and only if you choose to give it: an email address, if you join the waitlist. The form also records which page you joined from (for example "pricing"), so we know which use case brought you.
Waitlist emails are used to send one announcement when access opens, and nothing else. No marketing lists, no sharing, no profiling, no enrichment. To have your email removed at any time, write to hello@sigilbase.io.
The legal basis for holding a waitlist email is your consent, given when you submit the form, and withdrawable at any time by asking us to delete it.
The waitlist form's anti-abuse challenge
To protect the waitlist form from automated abuse we use Cloudflare Turnstile, a privacy-preserving challenge from our hosting provider. It may set a temporary cookie strictly for that purpose; it is not used to track or profile you, and it is the only third-party request this site makes. Strictly-necessary anti-abuse of this kind requires no consent banner under UK PECR, which is why there is none.
What this website does not do
- No analytics or measurement of any kind, first or third party.
- No advertising, no pixels, no fingerprinting.
- No cookies beyond the temporary one Turnstile may set for the waitlist form. No analytics cookies, no preference cookies.
- No third-party scripts, fonts, CDNs or embeds beyond that one challenge. Everything else a page loads comes from this site.
Ordinary web server logs (IP address, requested page, time) may exist transiently at our hosting provider for operating and defending the service; they are not used to identify visitors.
Once the service is live: account data
When Sigilbase the product opens, creating an account will involve the data an account needs: your name, email address, organisation, authentication details, and billing information handled by our payment processor. Audit events you send to the service are customer data you control; their contents are redacted from our operator tooling, as described on the security page. This policy will be updated before launch to describe account data fully, with the "Last updated" date below changed to say so.
Who else processes data
The current list of subprocessors, what they see and where they run, is published on the security page and kept in one place deliberately. Payments are processed by Stripe; hosting and transactional mail providers are still being selected and are marked TBD there until decided.
Retention
Waitlist emails are kept until the launch announcement has been sent, then deleted unless you have become a customer. Anything you ask us to delete is deleted without argument.
Your rights
Under UK data protection law you can ask for a copy of the personal data we hold about you, ask for it to be corrected or deleted, object to processing, and complain to the Information Commissioner's Office (ico.org.uk) if you think we have handled your data badly. For any of these, one email to hello@sigilbase.io is the whole procedure.
Changes
If this policy changes, the change will be visible here with a new "Last updated" date. We will not weaken the no-tracking stance quietly; it is a stated feature of the product.