1. Who we are
WFDR Ltd, a company registered in England and Wales, trades as andCompute and operates the website at andcompute.com. We are the "controller" of personal data collected through the Site and during the course of providing our Services.
You can reach us about anything in this policy at hello@andcompute.com.
2. What this policy covers
This policy describes the personal data we collect, why we collect it, how we use it, and your rights in relation to it. It applies to visitors to the Site, prospects, clients, and other people we deal with in connection with our Services.
3. Personal data we collect
- Information you give us. When you complete the compute intake form or otherwise contact us, you may provide your name, work email, company, role, and details of your compute requirement.
- Information about engagements. If we engage to advise or broker on your behalf, we will hold records of the engagement, communications, and any documents you share with us.
- Site usage data. When you visit the Site, our analytics provider records limited, aggregated information about page views and device type. We use Vercel Analytics in its cookieless configuration, so we do not place tracking cookies on your device.
- Server logs. Standard request information such as IP address, user agent, and timestamp is recorded by our hosting provider for security and reliability purposes.
4. Why we use it (lawful basis)
- To respond to enquiries and provide our Services. Lawful basis: contract, or steps prior to entering a contract.
- To send relevant business communications to existing clients about their engagements, or to prospects who have asked to hear from us. Lawful basis: legitimate interests (running our business) or consent where required.
- To improve the Site and our Services. Lawful basis: legitimate interests.
- To meet legal and regulatory obligations (e.g. accounting, tax). Lawful basis: legal obligation.
5. Who we share it with
We share personal data only with parties that help us run our business and only as far as is necessary, including:
- Hosting and analytics. Vercel Inc. (US) hosts the Site and provides analytics. Vercel offers Standard Contractual Clauses for international transfers from the UK/EEA.
- Email and productivity tools used in the ordinary course of business.
- Suppliers we broker with. Where you authorise us to obtain quotes or place an order on your behalf, we will share the minimum necessary information with the relevant supplier.
- Professional advisers such as accountants and lawyers, under appropriate duties of confidentiality.
- Authorities where we are required to do so by law.
We do not sell personal data, and we do not use personal data for advertising.
6. International transfers
Some of our suppliers (notably hosting) are based outside the UK and EEA. Where personal data is transferred internationally, we rely on appropriate safeguards such as the UK’s International Data Transfer Agreement, the EU Standard Contractual Clauses, or the UK–US Data Bridge, as applicable.
7. How long we keep it
We keep personal data only as long as we need it for the purposes set out above. Typical retention periods:
- Intake form submissions that do not lead to an engagement: 24 months.
- Engagement records, contracts, and invoices: 7 years (to meet accounting and tax obligations).
- Server and analytics data: retained per our providers’ defaults, typically up to 12 months.
8. Your rights
If you are in the UK or EEA, you have rights under UK and EU data protection law to:
- request access to the personal data we hold about you;
- ask us to correct inaccurate data;
- ask us to erase data we no longer need;
- ask us to restrict or object to certain processing;
- ask us to provide data you gave us in a portable form (where applicable); and
- withdraw any consent you have given us.
To exercise any of these rights, email hello@andcompute.com. You also have the right to complain to a data protection authority. In the UK that is the Information Commissioner’s Office: ico.org.uk.
9. Security
We take reasonable technical and organisational measures to protect personal data, including transport-layer encryption, access controls, and choosing reputable infrastructure providers. No system can be made perfectly secure; please tell us if you believe your data has been compromised.
10. Changes to this policy
We may update this policy from time to time. The latest version is always available on this page, with the "last updated" date at the top.
11. Contact
For any privacy question, contact us at hello@andcompute.com.