Privacy Policy – Lilah

Last updated: March 2026

1. Introduction

Lilah is an AI-powered meeting assistant operated by Strategic Automation Ltd ("we", "our", or "us"). This Privacy Policy explains how we collect, use, store, and protect personal data when you use the Lilah website and application.

We are committed to protecting your privacy and handling your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data Controller

The data controller responsible for your personal data is:

Strategic Automation LtdRegistered in England and Wales
ICO Registration Number: ZC099902

If you have questions about this policy or your data, you can contact us at:

Email: privacy@lilah.app

3. Information We Collect

We may collect and process the following types of personal data.

3.1 Account Information

When you create an account or sign up for Lilah:

  • Name
  • Email address
  • Organisation name
  • Login credentials
  • Account preferences

3.2 Meeting Data

When you use Lilah to assist with meetings, we may process:

  • Audio recordings of meetings
  • Transcripts generated from audio
  • Speaker identification data
  • Meeting summaries
  • Action items and notes
  • User prompts or queries submitted to the AI assistant

Meeting data may contain personal information depending on the content of the conversation.

3.3 Usage Data

We automatically collect certain technical information including:

  • Device type
  • Browser type
  • IP address
  • Operating system
  • Log data
  • Interaction with features

This helps us improve the performance and reliability of the service.

3.4 Website Analytics

When you visit the Lilah website, we may collect limited analytics data such as:

  • Pages visited
  • Time spent on pages
  • Referral source
  • Device information

This data is used to improve our website and user experience.

4. How We Use Your Data

We process personal data for the following purposes:

  • To provide and operate the Lilah service
  • To generate meeting transcripts and summaries
  • To enable AI-powered research and analysis features
  • To maintain account functionality
  • To improve system performance and reliability
  • To provide customer support
  • To ensure security and prevent misuse
  • To comply with legal obligations

5. Legal Basis for Processing

Under UK GDPR, we rely on the following legal bases:

Contract

Processing necessary to provide the Lilah service to users.

Legitimate Interests

Improving the service, maintaining system security, and preventing fraud.

Consent

Where required, such as optional analytics cookies.

Legal Obligations

Where we must retain or disclose data to comply with legal requirements.

6. AI Processing

Lilah uses artificial intelligence technologies to generate summaries, insights, and research results.

These systems analyse meeting transcripts and user queries to provide helpful outputs.

AI-generated content is intended to assist users and should not be relied upon as professional advice.

7. Data Processors and Third Parties

To operate Lilah, we use trusted service providers who process data on our behalf.

These may include providers for:

  • Cloud hosting
  • AI processing
  • Transcription services
  • Analytics
  • Authentication

Examples of processors may include providers of AI models, transcription systems, or hosting infrastructure.

We ensure that all processors are subject to appropriate data protection obligations.

8. International Data Transfers

Some of our service providers may process data outside the United Kingdom.

Where this occurs, we ensure appropriate safeguards are in place, such as:

  • UK International Data Transfer Agreements
  • Adequacy regulations
  • Standard contractual clauses

9. Data Retention

We retain personal data only for as long as necessary to provide the Lilah service and fulfil the purposes outlined in this policy.

Users may delete meeting recordings or transcripts within their account.

Account data may be retained for administrative, legal, or security purposes.

10. Data Security

We implement appropriate technical and organisational measures to protect personal data.

These include measures such as:

  • Encrypted data transmission
  • Secure authentication systems
  • Access controls
  • Monitoring for suspicious activity

No system can guarantee absolute security, but we take reasonable steps to protect your information.

11. Your Rights

Under UK GDPR you have the following rights:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restrict processing
  • Right to data portability
  • Right to object
  • Rights relating to automated decision-making

To exercise your rights, contact: privacy@lilah.app

12. Complaints

If you are not satisfied with how we handle your personal data, you may lodge a complaint with the Information Commissioner’s Office (ICO).

ICO Website: https://ico.org.uk

13. Cookies

The Lilah website may use cookies and similar technologies to improve functionality and analyse website usage.

A separate Cookie Policy explains how cookies are used and how users can manage their preferences.

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in the service or legal requirements.

The latest version will always be available on the Lilah website.

15. Contact

For privacy-related questions or requests:

Strategic Automation LtdEmail: privacy@lilah.app