GENERAL
This Privacy Policy is intended to meet the transparency requirements of applicable data protection laws, including the UK GDPR and EU GDPR as applicable. It explains how Onalytica collects, uses, shares, stores and protects personal data, and the rights available to individuals.
Onalytica Ltd is a social media data analytics company specialised in analysing online influence and content.
This Privacy Policy sets out how Onalytica uses and protects personal data. The personal data we have is either gathered from public online sources to build our influencer database or provided by individuals who wish to subscribe to our newsletters or provided by individuals who wish to use our software.
ROLES (CONTROLLER / PROCESSOR)
For website visitors, newsletter subscribers, event/webinar registrants, and individuals included in our influencer database, Onalytica Ltd generally acts as a data controller (we decide how and why the data is used). For our SaaS services, Onalytica typically acts as a processor for customer account data and end-user data processed on our customers’ instructions, and as a controller for account administration, billing, security, and our own product analytics, as described below. Where we act as a processor, customers are responsible for providing privacy information to their end users and for determining the lawful basis for their processing.
INTERNATIONAL CUSTOMERS
We provide Services to customers in the UK/EEA and internationally, including the United States. Where local laws require additional disclosures, we provide them in this Privacy Policy or in supplementary notices.
Onalytica is committed to ensuring that your privacy is protected. Should we ask you to provide personal data when using this website, then you can be assured that it will only be used in accordance with this privacy statement.
This Privacy Policy explains how we process personal data. Where we rely on consent (for example, for optional marketing emails or non-essential cookies), we will ask for it and you can withdraw it at any time.
We may update this Privacy Policy from time to time. We will update the “Last updated” date at the end of this document. If changes are material, we will take appropriate steps to bring them to your attention (for example, by email to customers or by prominent notice on our website).
HOW TO CONTACT US
If you have questions about this Privacy Policy or how use personal data, you can contact us at data@onalytica.com or by post addressed to the Data Protection lead, Onalytica Ltd, 167-169 Great Portland Street, 5th Floor, London W1W 5PF. If we have appointed a Data Protection Officer (DPO), we will provide their contact details upon request.
HOW WE COLLECT DATA
We collect personal data in the following ways:
- When you subscribe to one or more of our products
- When you sign up for our Onalytica email newsletters
- When you register to attend one of our events or webinars
- Via openly available public sources (e.g. Twitter, Instagram, Blogs).
WHAT DATA WE COLLECT
The data we collect differs depending on whether you are a user of our products, a subscriber to our newsletter or an influencer in our database.
USERS OF OUR WEBSITE
If you subscribe to our Newsletter, or download some of our content we may require some or all of the following personal information from you:
- First Name
- Last Name
- Company
- Job Title
- Work Email
- Country
- Company Size (Number of Employees)
- Industry
- How you heard about us
A phone number can also be provided but this is not mandatory.
You can unsubscribe from our Newsletters at any time.
COOKIES
We use cookies and similar technologies to operate our website and, where you agree, to understand how visitors use it and to improve our services. Under UK/EU e-privacy rules, non-essential cookies (including analytics and advertising cookies) generally require your consent. Essential cookies are used where necessary to provide the website/service you request (for example, security and basic functionality). You can manage your cookie preferences at any time via our cookie settings and/or browser settings. See our separate Cookie Policy details of cookies used, purposes, providers, and retention (available upon request).
CUSTOMERS WHO USE OUR SOFTWARE PRODUCTS
If you register as a user of one or more of our products, we will ask you, as a minimum, to provide your name and email address in order to create a profile for you as a user of our services. Additional, optional information include contact telephone number, the organisation you work for and your location.
If you contact our customer success teams, we will collect the information we need to categorize your question and respond to it. We also use this information to track potential issues with our Application Services and customise our support responses to improve our service to end users.
We use third-party analytics and session replay tools to understand how users interact with our website and application, to diagnose issues, and to improve performance and usability. Current providers may include Hotjar, Google Analytics, and Microsoft Clarity. Use of these tools is configured to be proportionate and, where required by law, is subject to your consent via cookie controls:
hotjar, Google Analytics, and Microsoft Clarity.
We may also collect information about how you interact with emails we send (for example, delivery, opens and clicks) using email delivery providers (e.g., Amazon SES). You can opt out of marketing emails at any time using the unsubscribe link.
We may collect device and connection information used to access our Services (for example, browser type, operating system, and IP-derived approximate location) to maintain security, diagnose issues, and improve service reliability. Where we use cookies or similar. technologies for analytics, we do so in line with the Cookies section above.
We may infer limited information (such as likely time zone) from usage data to improve the usability of the Services. We do not use this information to make decisions that produce legal or similarly significant effects about individuals.
INFLUENCERS IN OUR DATABASE
We collect openly sourced data on individuals to determine if they are influential online on a range of topics and provide a contextual ranking of their influence on those topics. We may include your data in the context of being an influencer in our database. The data we collect varies depending on the source of the data, what the source or platform chooses to make available to us, plus what you choose to make available. It could include the following:
- your name, username, handle, or other identifier;
- the content of the information you have published via that name, username, handle, or other identifier, including comments, expressions, opinions, posts, etc.;
- your profile picture or other images or videos that you post or interact with;
- your job title or profession or category of profession
- your interests;
- your location;
- your gender; and
- any other information you publish on an Internet website we crawl or on a third-party platform that provides us with data.
We do not access or store private/non-public profile data. We do not intentionally collect special category data (such as health data, political opinions, religious beliefs, or sexual orientation) for the purpose of profiling influencers. If such information appears in public content, it may be present as part of that content; we apply data minimisation and provide mechanisms for individuals to exercise their rights.
In addition to sharing influencer data with our customers, we may share influencer data with our data partners or include your influencer profile in our marketing material.
If an individual is a customer or newsletter subscriber and an influencer in our influencer database personal data is not shared between these profiles and the records are kept separate. Information submitted to us in the context of a user or newsletter subscriber is not used to supplement data we have on the influencer profile record unless explicit consent is given to do so.
HOW WE USE YOUR PERSONAL DATA
We may use your personal data for the following purposes:
|
Purpose |
Lawful basis for processing |
|
To fulfil a query, request for services and/or to administer our services |
For the performance of a contract or agreement |
|
To facilitate your attendance at one of our events or webinars |
For the performance of a contract or agreement |
|
To maintain records of prospective, current and past clients, our suppliers and our partners |
Our Legitimate Interests, which we have balanced with the interests of the data subject |
|
To analyse your use of public social media networks and blog posts to determine your topics of interest and level of online influence on those topics |
Our Legitimate Interests, which we have balanced with the interests of the data subject |
|
To contact you to ask if you might be interested in being a guest speaker at one of our events or webinars or to participate in one of our blog articles or whitepapers |
Our Legitimate Interests, which we have balanced with the interests of the data subject |
|
To track your use of our website and interaction with our newsletters. (Please also see our Cookie Policy below). |
Our Legitimate Interests, which we have balanced with the interests of the data subject |
|
To send email newsletters to you, if you have signed up via our website |
Your consent |
HOW LONG WE STORE YOUR PERSONAL DATA FOR
We will only retain personal data for as long as is necessary for the purposes we are using it for. How long we retain data will vary depending on the purposes it is used for. We routinely update our email newsletter lists to ensure those who are not engaged are removed.
DATA STORAGE
INTERNATIONAL TRANSFERS
We may transfer personal data to countries outside the UK and/or EEA (for example, to service providers or customers located in the United States). Where required, we put in place appropriate safeguards such as the UK International Data Transfer Agreement (IDTA) and/or the UK Addendum to the EU Standard Contractual Clauses, and EU Standard Contractual Clauses (as applicable). You can ask us for more information about the safeguards we use.
SECURITY
We implement technical and organisational measures designed to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access. These measures include access controls, multi-factor authentication for administrative access, encryption in transit, logging/monitoring, vulnerability management, and incident response procedures. No method of transmission or storage is completely secure, but we take proportionate steps to reduce risk.
COMPLAINTS
If you have concerns about our use of personal data, please contact us first so we can try to resolve the issue. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO). If you are in the EEA, you may also lodge a complaint with your local supervisory authority.
Onalytica uses third party vendors and hosting partners to provide the necessary hardware, software, networking, storage, and related technology required to run our application. Although Onalytica owns the code, databases, and all rights to the Onalytica application, you retain all rights to your data as a user of our products.
USAGE BY MINORS PROHIBITED
Onalytica’s Services are not intended for and should not be used by anyone under the age of 18.
PRIVACY PRACTICES OF THIRD PARTIES
This Privacy Statement only addresses our collection, processing and use (including disclosure) of your personal information. Our customers and other third parties may have access to your personal information and use it in other ways in accordance with their own privacy practices. We encourage you to familiarize yourself with the privacy statements provided by any platform you use to publish any information.
YOUR RIGHTS REGARDING YOUR PERSONAL INFORMATION
We do not sell personal data in the ordinary meaning of “sell”. We share personal data with service providers (processors) and, where relevant, with customers or partners as described in this Privacy Policy, subject to safeguards.
You have a number of rights under data protection law, which have been strengthened under the General Data Protection Regulation (GDPR):
- Access: You have the right to request a copy of personal data we hold about you and information about how we use it. We may need to verify your identity. We aim to respond within one month, subject to legal extensions where applicable.
- Rectification: You have the right to request correction of inaccurate personal data, and complete incomplete data.
- Erasure: You have the right to request deletion of your personal data in certain circumstances. We will assess each request against applicable legal requirements (for example, where we need to retain some information for legal claims or compliance). We aim to respond within one month, subject to legal extensions where applicable.
- Restriction: You have the right to request that we restrict processing of your personal data in certain circumstances.
- Portability: Where applicable, you have the right to receive certain personal data in a structured, commonly used and machine-readable format, and to have it transmitted to another controller.
- Objection: You have the right to object to processing based on legitimate interests, and you can always object to direct marketing.
If you believe that any information we are holding on you as a user, newsletter subscriber or influencer is incorrect or incomplete, please email us at data@onalytica.com and we will promptly correct any information found to be incorrect.
LAST UPDATED 9th January 2026