Privacy notice.


1. Who We Are

Marsden_Mee (“we”, “us”, “our”) operates this platform [Mabel] on behalf of your organisation.

Your organisation provides access to the platform for employees. We operate the technology that enables this platform and implement appropriate safeguards to protect information processed within it.

For privacy-related questions, contact:
[anna@marsdenmee.co.uk]

 

2. How the Platform Works

The platform allows you to submit work-related questions and receive AI-generated guidance aligned with your organisation’s values and policy frameworks.

You are in control of what information you choose to share. You are encouraged to avoid including names or unnecessary personal details.

Your individual question content is not visible to your employer.

Your organisation may receive aggregated insights showing general themes and trends across users. These insights do not include individual submissions and are only available where there are at least 30 active users.

 

3. Information We Process

Account Information

  • Name

  • Work email address

  • Organisation identifier

Submitted Content

  • Questions you submit

  • AI-generated responses

  • Conversation timestamps and technical metadata

Organisational Configuration Data

Your organisation may provide business information such as:

  • Values

  • Tone of voice

  • Policy overviews

  • Brand guidance

This does not include employee personnel records.

 

4. How We Use Information

We process information to:

  • Provide secure access to the platform

  • Generate AI-based responses

  • Categorise general themes for aggregated insight reporting

  • Maintain, monitor, and improve platform performance

  • Ensure system security

Individual submissions are not shared with your employer.

 

5. AI Processing

Artificial intelligence is used to:

  • Generate responses to submitted questions

  • Identify broad thematic categories for aggregated reporting

Message content and associated conversation data are encrypted at rest.

For topic analysis, encrypted content is decrypted securely in memory and processed to reduce personal identifiers before categorisation. Only category labels and counts are stored for reporting purposes. Raw message content is not included in insight reports.

We use third-party AI service providers who process information on our behalf under contractual safeguards designed to protect confidentiality and security.

 

6. Data Retention and Deletion

  • Account information is retained while your organisation maintains access to the platform.

  • Submitted questions remain available within your account unless deleted by you.

  • If you delete a submission, it is removed from your account and excluded from future aggregated insights. Usage statistics are updated promptly, and topic-based analytics are corrected during the next scheduled analysis cycle.

  • Aggregated, non-identifiable insight data may be retained for analytical purposes.

We regularly review retention practices to ensure information is not kept longer than necessary.

 

7. Security

Appropriate technical and organisational measures are in place to protect personal information against unauthorised access, loss, misuse, or alteration.

These measures include:

  • Encryption of message content and associated conversation data at rest

  • Encryption of data in transit using HTTPS

  • Restricted access to decrypted content

  • Tenant separation between organisations

  • Aggregation thresholds to prevent identification of individuals in insight reporting

Raw message content is not logged. Operational logs may contain system-generated outputs (such as thematic category tags) necessary for monitoring, maintenance, and improving the service.

Access to decrypted content is restricted to authorised backend processes and, where strictly necessary, authorised personnel.

 

8. Lawful Basis

Processing is carried out on the basis of:

  • Legitimate interests in providing and improving a workplace guidance platform

  • Performance of contractual obligations to your organisation

  • Compliance with applicable UK data protection law

We do not rely on employee consent as the primary legal basis due to the nature of employment relationships.

If individuals voluntarily include information relating to health or other special category data, processing is limited to what is necessary to provide the service and subject to appropriate safeguards, including encryption and restricted access.

 

9. Your Rights

Depending on applicable law, you may have rights to:

  • Access your personal information

  • Request correction

  • Request deletion

  • Object to certain processing

You may delete submissions at any time within the platform.

 

For additional rights requests, contact:
[anna@marsdenmee.co.uk

 

You also have the right to lodge a complaint with the UK Information Commissioner’s Office.

 

[Updated 18.02.2026]