Legal Policies
This page contains important legal documents that govern your use of the Circlana platform, website, and services.
Please review the policies below carefully. By using our services, you agree to comply with these terms.
If you have any questions, please contact us at [email protected]
Circlana Terms & Conditions
Under the jurisdiction of Scots Law
Effective Date: Wednesday 10th September 2025
Version: 1.0
These Terms and Conditions (“Terms”) govern your access to and use of Circlana’s Platform and Services including but not limited to Website, landing pages, social media and emails. By subscribing to or using Circlana (“we”, “us”, or “our”), you agree to be legally bound by these Terms, our Privacy Policy, and any applicable Service Agreements or Data Processing Agreements.
If you do not agree to these Terms, you must not use our services or platform.
Circlana’s services are for business users only and are not intended for individual consumers.
1. Definitions
In these Terms:
“Users” means the individual (sole trader) or business that registers for a Circlana account or uses Circlana in any capacity.
“Platform” refers to Circlana’s white-label High Level software and associated services.
“Services” means all SaaS platform access, onboarding, technical support, automation setup, done-for-you work, training, and consultancy delivered by Circlana.
“Add-Ons” means optional features, integrations, or usage-based services that incur additional fees (e.g. SMS credits, WhatsApp templates, AI tools).
“Data Protection Laws” means the UK GDPR, Data Protection Act 2018, PECR, and all related laws applicable in Scotland.
“Third-Party Services” refers to external platforms integrated into Circlana, such as Meta, Google, Twilio, WhatsApp, Stripe, and other software.
2. Services and Subscription Plans
2.1 Core Services
Circlana provides multiple types of services including but not limited to:
SaaS access - Subscription to the Circlana platform (powered by High Level) with CRM, funnels, automations, reporting, and client management tools.
Done-for-You services - Setup, strategy, builds, email automations, integrations, and onboarding support.
Educational resources - Events, masterclasses, courses, templates, etc.
2.2 Membership Plans
Your subscription tier, usage limits, and inclusions are detailed on our “plans” section. These may include limits on:
Email allowance
Business accounts
Team members
Users are responsible for any third-party integration costs or additional services beyond their plan. Email allowances can be increased at the rate of £3 per 5,000 emails. For usage limit increases or additional services, contact [email protected]
Email allowance as of September 2025 is 10,000 for Core, 20,000 for Complete.
2.3 Third-Party Integrations
Our platform may integrate with Third-Party Services (e.g. WhatsApp, Facebook, Google). We are not responsible for their availability, security, pricing, or data handling. Users are responsible for reviewing and accepting the terms of any Third-Party Services you connect.
3. Payment, Billing and Renewals (updated)
3.1 Fees
All subscription fees (“Fees”) are displayed at checkout and on our website. Fees are payable:
Monthly in advance, or Annually in advance (if selected).
3.2 Automatic Renewal
Subscriptions automatically renew unless cancelled in line with Clause 11. Renewal reminders will be sent to users on annual plans at least 30 days prior to their renewal date.
3.3 Payment Method
You authorise us to charge your nominated payment method on each billing date. It is the sole responsibility of the user to ensure that all payment methods are up to date.
3.4 Price Changes
We may update subscription fees or Add-On pricing by giving you at least 30 days’ notice by email. Continued use after the effective date means you accept the new fees.
3.5 Add-Ons & Usage-Based Billing
Some services (e.g. SMS, WhatsApp services, AI content, call forwarding) are billed separately on a pre-paid credit wallet basis or per-use pricing. Email allowances can be increased at the rate of £3 per 5,000 emails.
Users are responsible for all additional service costs and third-party integration fees. Contact [email protected] to increase usage limits or discuss additional services.
*Email allowance as of September 2025 is 10,000 for Core, 20,000 for Complete.
3.6 Refunds
Users are purchasing as business customers (i.e. not as a consumer), and therefore acknowledge that there is no automatic right to cancel or request a refund once payment has been made. All fees are non-refundable unless otherwise agreed in writing.
3.7 VAT Status
As of the publication date of these Terms, Circlana Ltd is not registered for Value Added Tax (VAT), and accordingly, subscription fees are exempt from VAT charges. Should the company obtain VAT registration status in future, we will:
a) Notify users via email at least 30 days before VAT is applied;
b) Honour any legacy subscription rates agreed before VAT registration, meaning your base subscription fee will remain the same; however, VAT will be added on top of your existing subscription fee where legally required.
4. Support and Onboarding (updated)
4.1 Standard Support
All Circlana users receive access to:
Email support (responses within 2 business days)
Live group support calls (depending on your plan)
Educational resources such as (but not limited to) masterclasses, online and in-person events, social media and FB group posts
4.2 Priority Support (Complete Plan Users)
Users on the Complete plan receive priority support for ticket-based requests. While we aim to resolve all tickets as quickly as possible, Complete users are placed as priority in the support queue.
4.3 Done-for-You Projects
Where we provide setup, builds, or automations, these are governed by a separate Service Agreement which may include milestones, timelines, and deliverables.
5. Your Responsibilities
As a user you hereby agree to:
Keep your account details secure and confidential. It is strictly forbidden to share your login credentials and any other person who is accessing an account must have their own registered login credentials.
Comply with all relevant Data Protection Laws when uploading or processing personal data through the platform.
Obtain all necessary consents before uploading customer data into the Circlana platform.
Not use the platform for any unlawful, abusive, or harmful purposes, including spam, fraudulent activity, or sending unauthorised marketing communications.
6. Data Protection and Privacy
6.1 Compliance
Both parties must comply with all applicable UK Data Protection Laws.
6.2 Controller vs Processor
Where you control the data uploaded into the Circlana platform, you are the Data Controller.
Circlana acts as a Data Processor and will process data only under your instructions.
6.3 Data Processing Agreement
Where we act as a Data Processor on your behalf (as defined in Clause 6.2), our processing of personal data is governed by a separate Data Processing Agreement (DPA), which forms part of our agreement with you. This DPA sets out the scope, nature, and purpose of processing, the duration, the types of personal data and categories of data subjects, as well as our obligations under UK GDPR and the Data Protection Act 2018. You must agree to the DPA prior to using our Platform and Services.
6.4 International Transfers
When we transfer data outside the UK, we ensure appropriate safeguards are in place, such as UK Addendum SCCs or ICO-approved International Data Transfer Agreements.
6.5 Data Breaches
We will notify you without undue delay if we become aware of a personal data breach involving your information.
6.6 Full Details
Our Privacy Policy explains in more detail how we handle personal data.
6.7 Your Data Rights
Under UK GDPR, you have rights to access, rectify, erase, port, and object to processing of your personal data. Contact [email protected] to exercise these rights.
6.8 Data Backup and Recovery
Users are responsible for maintaining backups of data.
7. Intellectual Property
7.1 Platform Ownership
All intellectual property rights in the Circlana platform remain ours or our licensors’.
7.2 Licence
We grant you a non-exclusive, non-transferable licence to use the platform for your business purposes during your subscription.
7.3 Content You Provide
You retain full ownership of your content. You grant us a limited licence to process and store it solely for delivering our services.
8. Third-Party Services
8.1 You acknowledge that:
Third-Party Services are governed by their own terms and policies.
Circlana is not liable for downtime, changes to pricing, rejected approvals, or data handling practices of Users or Third-Party Services.
Integrations are provided “as-is” and we make no warranties regarding their performance.
Sometimes the Circlana platform might go down for maintenance or experience technical issues. If our servers have problems, you might temporarily lose access to your account, and/or if we need to update our systems, there could be brief interruptions to service. If our platform experiences downtime, some or all features might be unavailable to users.
What we're not responsible for:
We do our best to keep Circlana running smoothly, but we cannot guarantee 100% uptime. We're not liable for any business losses, missed opportunities, or problems caused by platform downtime or technical issues.
What we’ll do:
We work quickly to restore service when problems occur and will communicate with you about any planned maintenance or unexpected outages.
If the platform is down:
Check our status page or contact support for updates on when service will be restored.
8.2 Social Media Scheduler Disclaimer
Our social media scheduling tool integrates with third-party platforms (e.g. Facebook, Instagram, LinkedIn, Google Business, etc). While we aim for all scheduled posts to publish as expected, Circlana cannot guarantee that posts will publish at the exact scheduled time due to third-party API delays, platform restrictions, or service outages and is not liable for any direct or indirect loss, damage, or missed engagement arising from delayed, failed, or incorrectly published posts.
8.3 Account Access and Privacy
Circlana will only access your account data in the following limited circumstances:
a) To provide technical support at your request
b) Where legally required by court order or regulatory authority
All access is logged, monitored, and subject to confidentiality obligations. We do not monitor, access, or review your account data for any other purpose.
9. Limitation of Liability
9.1 What We’re Liable For
We are liable for:
Death or personal injury caused by our negligence, as per the Unfair Contract Terms Act 1977
Fraud or fraudulent misrepresentation.
Any liability which cannot be excluded under Scots Law.
9.2 What We’re Not Liable For
We are not liable for:
Loss of profits, revenue, contracts, or goodwill
Business interruption or reputational damage
Third-party service failures
Indirect, incidental, or consequential losses
9.3 Liability Cap
Our total liability under these Terms is limited to the total subscription fees paid by you in the 12 months preceding the claim.
9.4 High Level Dependency
Circlana's platform is built on High Level's infrastructure. In the event of High Level service interruptions, outages, or discontinuation:
a) Circlana is not liable for any losses, damages, or business interruption resulting from High Level downtime or service failures.
b) We will make reasonable commercial efforts to communicate known outages and estimated restoration times.
c) No refunds, credits, or compensation will be provided for service interruptions caused by High Level or other third-party infrastructure providers.
d) Our liability is limited to our own actions and omissions, not those of our underlying service providers.
10. Confidentiality
Both parties agree to keep confidential information secure and not disclose it to third parties, except where legally required or to deliver agreed services.
11. Cancellation and Termination
11.1 Your Right to Cancel
You may cancel your subscription at any time by emailing us at [email protected]
Access to the platform continues until the end of your billing period and no further payments will be taken.
11.2 Our Right to Terminate
We may suspend or terminate your access immediately if you:
Breach these Terms.
Fail to pay outstanding fees.
Misuse the platform.
Become insolvent.
11.3 Post-Termination
After termination:
Access to the platform will cease
Outstanding balances become immediately due
Data handling is managed in accordance with our Privacy Policy and applicable law
12. Governing Law and Jurisdiction
12.1 These Terms are governed by and construed under the laws of Scotland.
12.2 Any disputes shall be subject to the exclusive jurisdiction of the Scottish courts.
13. Business Continuity and Data Portability
13.1 Service Discontinuation
In the event Circlana ceases operations, we will:
a) Provide at least 90 days' written notice
b) Maintain platform access during the notice period unless outwith our control
c) Provide technical documentation to facilitate transition
13.2 Data Export Rights
You may export your data at any time in standard formats (CSV, XML, JSON).
13.3. Force Majeure
Neither party shall be liable for delays or failures due to events beyond reasonable control, including natural disasters, government actions, or third-party service outages.
14. Changes to These Terms
We may update these Terms from time to time to reflect changes to our services, legal requirements, or business needs. If we make material changes, we will notify you by email (where possible) and/or by posting a notice on our website or platform.
Your continued use of the Platform or Services after the effective date of any changes will constitute your acceptance of the updated Terms. If you do not agree to the revised Terms, you should stop using our services.
15. Entire Agreement
These Terms, together with our Privacy Policy, Data Processing Agreement, and any applicable Service Agreements, constitute the entire agreement between you and Circlana Ltd relating to the use of our Platform and Services. They supersede any prior agreements, understandings, or communications (whether oral or written) relating to the subject matter.
You confirm that you have not relied on any statement, promise, or representation not expressly set out in these Terms.
16. Contact Us
For any queries, please contact us at:
Circlana Ltd
2nd Floor
48 West George Street
Glasgow
G2 1BP
[email protected]
Circlana Privacy Policy
UK GDPR-Compliant
Effective Date: Wednesday 10th September 2025
Version: 1.0
1. Introduction
Circlana Ltd (“we”, “us”, “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains:
What personal data we collect
How we use it
Your rights under UK data protection laws
How we secure your data
This policy applies to:
Circlana users in all capacities, including but not limited to using the Circlana platform (powered by High Level).
Users receiving done-for-you services, including onboarding, builds, funnel setups, and consultancy.
By using our website and services you agree to this Privacy Policy.
2. Data We Collect
We may collect the following types of personal data:
2.1 Account & Contact Information
Full name, email, phone number
Company name, job title, billing details
2.2 Platform Usage Data
CRM contact information entered by you
Calendar bookings, forms, surveys, and automation data
Email, SMS, and WhatsApp logs (content, delivery status, timestamps)
User behaviour data, such as login times and feature usage
All other relevant platform usage data
2.3 Technical Data
IP address, device type, operating system, and browser details
Platform cookies and analytics data
All other relevant technical data
2.4 Marketing Data
Preferences for receiving marketing communications
Interactions with our campaigns, emails, and social content
All other relevant marketing data
We do not collect sensitive personal data unless required by law.
3. How We Collect Your Data
We collect data:
When you create an account on the Circlana platform
When you purchase a subscription or done-for-you package
When you interact with our emails, support systems, or live chat
Automatically through cookies, analytics, and third-party integrations
From authorised third-party referrals (with consent)
From newsletter/other marketing sign ups you opt in to
4. How We Use Your Data
We use your data to:
Provide and manage your SaaS subscription
Deliver done-for-you services and onboarding
Process payments and send invoices
Send important service updates and security notifications
Respond to support requests and technical issues
Improve our platform and client experience
Deliver relevant marketing communications (where you’ve consented)
4.1 Automated Decision-Making and Profiling
We may use automation, including profiling and AI tools, within the Circlana platform to deliver features such as campaign triggers, lead scoring, and personalised content recommendations. These processes are designed to improve your experience and optimise business efficiency.
We do not carry out any automated decision-making that produces legal effects concerning you or similarly significantly affects you, as defined under UK GDPR Article 22.
Where profiling or automation is used to deliver tailored experiences, it is based on your interactions with the platform or services and does not result in decisions without human involvement.
You may object to such profiling at any time by contacting us at [email protected]
5. Legal Basis for Processing
5.1 Processing your Data
Under UK GDPR, we process your data on the following legal bases:
Performance of a contract - to provide SaaS services and done-for-you deliverables
Consent - for email marketing and optional communications
Legitimate interests - to improve services, enhance security, and send essential updates
Legal obligation - to comply with UK laws, such as tax reporting
You may withdraw consent for marketing at any time by clicking unsubscribe or contacting us.
We rely on legitimate interests to process personal data for certain purposes such as improving our services, maintaining platform security, and understanding how users interact with our platform. We ensure that this processing is proportionate, has minimal privacy impact, and is aligned with your rights and expectations.
5.2 Marketing Communications and Consent
We may send you marketing communications about our services and updates that we think will be of interest to you. We rely on one of the following lawful bases to do so:
Consent – where you have actively opted in to receive marketing via our website forms, pop-ups, or sign-up processes.
Soft opt-in – if you are an existing or recent customer (or are acting on behalf of a business), and we are marketing similar products or services, we may rely on the soft opt-in exemption under PECR. You will always be given the opportunity to opt out in every marketing message.
All marketing preferences are recorded and stored securely within our CRM system, and you can update your preferences or withdraw consent at any time by clicking the unsubscribe link in our emails or contacting us at [email protected].
We do not send marketing messages without a clear opt-in or soft opt-in basis and never sell or share your marketing data with third parties.
6. Third-Party Tools & Sub-Processors
For transparency, a current list of our key Sub-processors, including their country and role, is available at:
https://www.gohighlevel.com/sub-processors
All Sub-processors are subject to written agreements requiring UK GDPR-equivalent protections. We remain responsible for their compliance with data protection obligations when processing data on our behalf.
We ensure all third-party providers are UK GDPR-compliant and have appropriate safeguards in place.
Important: Circlana is not liable for downtime, API delays, or service limitations caused by third-party tools.
7. International Data Transfers
Some of our Sub-processors are based outside the UK. Where data is transferred internationally, we ensure appropriate safeguards are in place, including:
UK Addendum to EU Standard Contractual Clauses (SCCs), or
Adequacy decisions approved by the UK Information Commissioner’s Office (ICO)
8. Data Retention
We keep your personal data only as long as necessary:
Active SaaS subscriptions - retained for the contract term
Closed accounts - deleted within 30 days, with encrypted backups retained for up to 90 days
Financial records - stored for six years to comply with UK tax laws
9. Your Rights
Under the UK GDPR, you have the right to:
Access your personal data
Correct inaccurate or incomplete information
Request deletion of your data (subject to legal retention obligations)
Restrict processing of your data
Object to processing based on legitimate interests
Withdraw consent at any time
Request data portability
To exercise any of these rights, please contact us at: [email protected]
If you are not satisfied with our response to a data protection query or complaint, you have the right to lodge a complaint with the UK’s Information Commissioner’s Office (ICO).
You can contact the ICO via their website at https://ico.org.uk or by calling 0303 123 1113.
10. Cookies and Tracking Technologies
Our website uses cookies and similar technologies to deliver essential features and to analyse traffic and performance.
Non-essential cookies (such as analytics and marketing cookies) are only used if you provide consent via our cookie banner when you first visit the site.
You can change your cookie preferences at any time through the banner settings or your browser controls.
We comply with the Privacy and Electronic Communications Regulations (PECR) and UK GDPR when using cookies.
For full details about the cookies we use, their purpose, and how long they are stored, please refer to our Cookie Policy. If you have any questions, you can contact us at [email protected]
You can manage your cookie preferences via your browser settings. Blocking essential cookies may prevent the platform from functioning correctly.
11. Data Security
We implement appropriate technical and organisational measures to protect your data, including:
Encrypted data storage and transmission
Role-based access controls
Multi-factor authentication for admin accounts
Regular security testing and monitoring
You are responsible for keeping your login credentials secure and for ensuring authorised access to your account.
12. Acting as a Data Processor
When you upload customer data into the Circlana platform, you are the Data Controller, and Circlana acts as your Data Processor.
We process personal data strictly according to your instructions.
Our processing obligations are set out in our Data Processing Agreement (DPA).
You remain responsible for ensuring that all necessary consents are obtained from your customers before uploading their data.
13. Children’s Data
Our website, platform, and services are intended for use by individuals aged 18 and over. We do not knowingly collect or process personal data relating to children.
If you believe that we have inadvertently collected data from a person under the age of 18, please contact us immediately at
[email protected] so we can delete the information.
14. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, or data processing practices.
If we make material changes, we will notify you by email (where possible), via a notice on our platform, or through other appropriate means.
We encourage you to review this policy periodically to stay informed about how we protect your personal data.
The “Effective Date” at the top of this policy will be updated whenever changes are made.
15. Contact Us
If you have any questions or wish to exercise your rights, contact us:
Circlana Ltd
2nd Floor
48 West George Street
Glasgow
G2 1BP
[email protected]
Data Protection Policy
UK GDPR Compliant
Effective Date: Wednesday 10th September 2025
Version: 1.0
This Data Processing Agreement (“DPA”) forms part of the agreement between:
Circlana Ltd (“Processor”, “we”, “us”, “our”)
Registered in Scotland: SC855230
Circlana Ltd
2nd Floor
48 West George Street
Glasgow
G2 1BP
[email protected]
And
User (“Controller”, “you”, “your”).
This DPA governs the processing of personal data carried out by Circlana when providing SaaS platform access and related services.
1. Definitions
For the purposes of this DPA:
“Controller” means you, the user, who determines the purposes and means of processing personal data.
“Processor” means Circlana Ltd, which processes personal data on your behalf.
“Data Protection Laws” means the UK GDPR, Data Protection Act 2018, PECR, and any other applicable Scottish or UK data privacy legislation.
“Personal Data” means any information relating to an identified or identifiable individual.
“Sub-processor” means any third party engaged by Circlana to process personal data on your behalf.
“Services” means Circlana’s SaaS platform (powered by High Level) and any associated onboarding, automation setup, or done-for-you services.
2. Roles and Responsibilities
2.1 Your Role as Controller
You are responsible for ensuring that any personal data uploaded into the platform has a valid legal basis for processing.
You must ensure all required consents from your customers and leads are obtained before importing or using their data.
2.2 Our Role as Processor
Circlana will process personal data only on your documented instructions, except where required by law.
We will not process personal data for our own purposes unless explicitly authorised by you.
2.3 Instructions from the Controller
You agree that your initial instructions to Circlana for processing personal data are set out in this DPA and our main service agreement. Unless otherwise agreed in writing, Circlana will only process personal data as necessary to deliver the agreed services.
If you provide additional instructions, they must be in writing, lawful under applicable data protection laws, and within the scope of the agreed services.
If Circlana believes an instruction infringes data protection laws, we will notify you without undue delay and may suspend processing until the issue is resolved.
These instructions include processing data that you or your authorised users may share with us for the purposes of technical support or account troubleshooting.
2.4 Handling of Instructions
Circlana will process personal data only in accordance with your documented instructions, as set out in this DPA and any relevant service agreements, unless required to do so by law.
If we believe that any instruction infringes UK Data Protection Laws or is unclear, we will promptly notify you and suspend the affected processing until the issue is clarified or the instruction is amended.
We are not responsible for any delay or failure to perform the services resulting from your provision of incomplete, ambiguous, or unlawful instructions.
3. Sub-processors
3.1 Approved Sub-processors
Circlana delivers its services via the Go High Level platform, which is managed and hosted by GHL. As such, GHL determines the sub-processors involved in the provision of the core platform infrastructure.
A current list of GHL’s sub-processors, including their country and role, is available at: https://www.gohighlevel.com/sub-processors
While Circlana does not control the appointment of these sub-processors, we have taken reasonable steps to ensure that GHL contractually requires them to comply with UK GDPR-equivalent protections.
3.2 Sub-processor Obligations
Circlana ensures Sub-processors are bound by written agreements requiring compliance with UK GDPR-equivalent protections.
We remain fully responsible for any Sub-processor’s performance as per Article 28(4) of the UK GDPR.
3.3 Notification of Changes
If we add or replace Sub-processors, we’ll notify you at least 30 days in advance.
You may object on reasonable data protection grounds, and we’ll work with you in good faith to resolve concerns.
4. International Data Transfers
4.1 If personal data is transferred outside the UK:
Circlana ensures appropriate safeguards are in place, including:
a) UK adequacy decisions, or
b) Standard Contractual Clauses (SCCs) and the UK Addendum approved by the ICO.
A list of third-country transfers can be provided upon request
4.2 Special Category Data:
You agree not to upload or instruct us to process any special category personal data (as defined in Article 9 of UK GDPR) unless we have agreed in writing and the appropriate lawful basis and safeguards are in place.
5. Security Measures
5.1 Technical & Organisational Measures
Circlana is a white label of High Level, High Level implements appropriate measures to protect personal data, including:
Data encryption in transit and at rest
Role-based access controls
Multi-factor authentication for admin accounts
Regular vulnerability scanning and platform monitoring
5.2 Your Security Obligations
You are responsible for maintaining secure account credentials.
You must restrict platform access to authorised users only.
Where required, you must be registered and compliant with ICO regulations and registrations.
6. Data Breach Notifications
6.1 Circlana’s Obligations
If we become aware of a personal data breach, we will notify you without undue delay, including:
Nature and scope of the breach
Likely consequences
Steps taken to mitigate risks
6.2 Your Obligations
You are responsible for notifying affected data subjects and the ICO where required by law, unless agreed otherwise.
7. Data Subject Rights
Circlana will assist you, as far as reasonably possible and technically feasible, in responding to data subject requests made under UK data protection laws (including requests for access, rectification, erasure, restriction, portability, or objection).
You remain responsible for verifying the identity of the data subject and for determining the validity and scope of any request. Where technically feasible, Circlana may provide assistance with identity verification and responding to such requests, but this does not transfer legal responsibility to Circlana.
Any requests received directly by Circlana will be promptly forwarded to you without delay, unless we are legally required to respond independently.
8. Data Retention and Deletion
Upon termination of your Circlana account, we will delete or return all personal data processed on your behalf within 30 days, unless we are required by law to retain it for longer. You may request early deletion in writing.
Deleted data will be permanently removed from our active systems and databases. However, encrypted copies of personal data may remain in system backups for up to 90 days following deletion.
Such backup data will be securely stored and will not be actively processed except for the purposes of maintaining system integrity, complying with legal obligations, or disaster recovery.
You may request early deletion of your data by writing to [email protected], and we will action this within a reasonable period unless legal retention requirements apply.
9. Audit Rights
Circlana shall make available to you all information reasonably necessary to demonstrate compliance with our obligations under this Data Processing Agreement and applicable UK Data Protection Laws.
Subject to reasonable advance notice (minimum 14 days) and appropriate confidentiality undertakings, you may conduct an audit or inspection of our data processing activities, either yourself or through a mutually agreed independent auditor, not more than once per 12-month period unless required by a data protection authority or in the event of a material breach.
Audits shall be conducted during regular business hours and in a manner that minimises disruption to our operations.
10. Liability
10.1 Circlana’s total aggregate liability under this DPA is limited to the total subscription fees paid by you in the 12 months prior to the claim.
10.2 We are not liable for:
Losses caused by your failure to comply with Data Protection Laws.
Actions of third-party Sub-processors beyond our control, provided we have taken reasonable steps to secure compliance.
10.3 Mutual Indemnity
Each party (the "Indemnifying Party") shall indemnify and keep indemnified the other party (the "Indemnified Party") against any losses, liabilities, damages, costs, or expenses (including reasonable legal fees) incurred by the Indemnified Party arising from:
a) any breach by the Indemnifying Party of its obligations under this Data Processing Agreement or applicable UK Data Protection Laws; or
b) any processing of personal data outside the scope of the Indemnified Party’s lawful instructions (in the case of Circlana), or
c) the provision of unlawful, inaccurate, or unauthorised instructions (in the case of the Controller).
This indemnity shall not apply to the extent that the relevant claim arises as a result of the Indemnified Party’s own negligence or breach of this Agreement.
11. Term and Termination
This DPA remains in effect for as long as Circlana processes personal data on your behalf.
Either party may terminate this DPA by giving 30 days’ written notice if the other party is in material breach and fails to remedy it. This means if either Circlana or the user seriously breaks the terms of the Data Processing Agreement (this is known as a material breach),
The other party must give written notice of that breach,
The breaching party then has up to 30 days to fix (remedy) the issue,
If they don’t fix it within those 30 days, the non-breaching party can terminate the DPA.
12. Cooperation with Supervisory Authorities
Circlana will cooperate, on request, with the Information Commissioner’s Office (ICO) or any other competent supervisory authority in the UK in relation to its data processing obligations under this Agreement.
This includes assisting with investigations, audits, or enforcement actions, to the extent required by applicable data protection laws.
13. Governing Law and Jurisdiction
This DPA is governed by the laws of Scotland and any disputes shall be subject to the exclusive jurisdiction of the Scottish courts.
14. Entire Agreement
This Data Processing Agreement constitutes the entire agreement between the parties in relation to its subject matter and supersedes all prior discussions, negotiations, or agreements (whether written or oral) relating to data processing.
Each party acknowledges that it has not relied on any representation or warranty that is not expressly set out in this DPA.
15. Contact
For any data protection queries, please contact:
Circlana Ltd
2nd Floor
48 West George Street
Glasgow
G2 1BP
[email protected]
Acceptable Use Policy
Effective Date: Wednesday 10th September 2025
Version: 1.0
This Acceptable Use Policy (“Policy”) forms part of your agreement with Circlana Ltd (“we”, “us”, “our”) and applies when using the Circlana SaaS platform (powered by High Level) and related services (“Platform”).
By using our Platform, you agree to comply with this Policy. Failure to do so may result in suspension or termination of your account in line with our Terms & Conditions.
1. Purpose of This Policy
This Policy exists to
Protect Circlana, our clients, and their end-users
Ensure compliance with UK law, UK GDPR, and third-party provider terms
Prevent misuse of the Platform that could result in reputational damage or service disruption
2. Prohibited Activities
When using the Circlana Platform, you must not:
2.1 Unlawful or Harmful Use
Use the Platform for any illegal, fraudulent, or harmful activity.
Send or store content that is obscene, defamatory, threatening, abusive, discriminatory, or otherwise unlawful.
Upload, distribute, or link to malicious software, viruses, or harmful code.
2.2 Email, SMS, and WhatsApp Messaging
To comply with PECR, the UK GDPR, and third-party provider requirements (e.g. Twilio, Meta), you must:
Obtain valid consent (or rely on a valid lawful basis) before sending marketing communications
Not send unsolicited bulk emails (“spam”)
Not send misleading or deceptive content
Not use unauthorised sender IDs or phone numbers
Not impersonate another business, individual, or organisation
If a high volume of complaints is received against your account, Circlana reserves the right to suspend your messaging capabilities immediately.
Soft Opt-In and Marketing Compliance
You are responsible for ensuring that you rely on an appropriate lawful basis for any direct marketing activity carried out through the Platform, including where applicable, the soft opt-in exemption under the Privacy and Electronic Communications Regulations (PECR).
The soft opt-in exemption may only be used where:
You obtained the contact details during the course of a sale (or negotiation for a sale) of a product or service
You are marketing similar products or services
You gave the recipient a clear opportunity to opt out at the time of collection and in every subsequent message
You must not use the Platform to send marketing communications that breach PECR or data protection laws.
2.3 Payment and Financial Services
You must not use the Platform to process unauthorised or fraudulent transactions via Stripe or other payment gateways.
You are responsible for ensuring all payment activities comply with relevant financial regulations.
2.4 Third-Party Integrations
Any integrations with Meta, Google, LinkedIn, TikTok, or other platforms must comply with those providers’ API policies.
Circlana is not liable for account bans or restrictions resulting from violations of external platform terms.
2.5 Platform Performance and API Rate Limits
To ensure fair and reliable access for all users, you must not engage in any activity that places excessive load on the Platform or interferes with its normal operation.
Where API access is provided, you agree to comply with any applicable rate limits, technical restrictions, or usage thresholds, whether imposed by Circlana or our third-party providers (e.g. High Level, Twilio). These limits are in place to maintain platform stability and performance.
We reserve the right to monitor usage and take appropriate action, including rate limiting, throttling, or temporary suspension, where your use of the Platform significantly exceeds typical usage patterns or degrades service for others.
2.6 User-Generated Content
You are solely responsible for any content you upload to or distribute through the Platform, including but not limited to emails, SMS messages, web pages, funnels, and automation workflows.
You must ensure that all such content:
Complies with all applicable laws and regulations (including UK GDPR, PECR, copyright, and advertising standards),
Does not infringe on the rights of others, and
Is not unlawful, defamatory, misleading, or offensive.
Circlana does not monitor user content and accepts no liability for any content distributed through your account. We reserve the right to remove or suspend content that we believe violates this Acceptable Use Policy or puts the Platform at risk.
2.7 Prohibited Industries
To maintain platform integrity and comply with legal and third-party provider requirements, Circlana does not permit the use of its Platform or Services for activities related to the following industries or content areas:
Gambling, betting, or casino services
Adult content, pornography, or sexually explicit services
Escort or companionship services
Unlicensed financial services or investment schemes
Sale or promotion of counterfeit goods
Pyramid schemes, get-rich-quick programmes, or multi-level marketing (MLM) without transparency
Services promoting hate speech, violence, or illegal activities
We reserve the right to suspend or terminate access to the Platform if your business activities fall into one of these categories or if your use otherwise presents a legal, reputational, or operational risk to Circlana or its partners.
2.8 System Abuse and Security
You must not use the Platform in any way that could damage, disable, overburden, or impair our systems or interfere with the use and enjoyment of the Platform by others.
Specifically, you must not:
Engage in excessive usage or automated activity that degrades system performance,
Attempt to bypass, probe, scan, or test the vulnerability of any Circlana system or network,
Use any automated system, bot, or script to access the Platform in a manner that sends more requests than a human could reasonably produce in the same period,
Attempt to gain unauthorised access to any part of the Platform or its supporting infrastructure.
We reserve the right to suspend or terminate access without notice if we detect any form of system abuse or security threat.
3. Social Media Scheduler Disclaimer
Our Platform integrates with third-party APIs for scheduling social media posts. While we aim for accurate scheduling, Circlana cannot guarantee that posts will publish at the exact scheduled time due to:
Third-party API delays
Platform restrictions
Outages beyond our control
We are not liable for missed or delayed posts caused by these factors.
4. Data Protection Responsibilities
When using the Platform, you are the Data Controller. You agree to:
Comply with all applicable data protection laws, including UK GDPR and PECR
Obtain appropriate consent from your contacts before processing their data
Not upload personal data to the Platform unless you have the legal right to do so
Circlana acts as a Data Processor under our Data Processing Agreement (DPA) and will only process data under your instructions.
5. Security and Account Responsibility
You are responsible for maintaining the confidentiality of your account credentials
You must immediately notify Circlana of any unauthorised access to your account
You are liable for all actions taken under your account unless you have informed us of a security breach
6. Breach Reporting and Response
You must notify Circlana immediately if you suspect or become aware of any unauthorised access to your account or personal data processed via the Platform.
Upon receiving such a report, we will promptly investigate and may temporarily suspend access to your account or relevant services where necessary to prevent further harm. We will keep you informed of our findings and any actions taken in response.
7. Enforcement
Circlana may suspend or terminate your account, without notice, if you:
Breach this Policy or our Terms & Conditions
Violate UK law or third-party provider policies
Put Circlana, our platform, or other clients at risk
Violations may lead to permanent removal from the Platform.
8. Updates to This Policy
We may update this Acceptable Use Policy from time to time to reflect changes in law, platform functionality, or business needs. The latest version will always be available at www.circlana.com
We will take reasonable steps to notify you of material changes, such as by email or a notice within the Platform.
Continued use of the Platform after any updates take effect will constitute your acceptance of the revised terms.
9. Contact Us
For any questions about this Policy, please contact us:
Circlana Ltd
2nd Floor
48 West George Street
Glasgow
G2 1BP
[email protected]
Cookies Policy
Effective Date: Wednesday 10th September 2025
Version: 1.0
Circlana Ltd (“we”, “us”, or “our”) uses cookies and similar technologies on our website and platform to deliver core functionality, enhance your experience, and analyse how visitors use our services.
By using our website, you consent to the use of cookies as described in this policy.
1. What Are Cookies?
Cookies are small text files placed on your device (computer, tablet, mobile) when you visit a website. They help us to recognise your device, store preferences, and improve your browsing experience.
2. Types of Cookies We Use
Cookie Type/Purpose
Essential Cookies/Required for the operation of our site (e.g. login, navigation, security).
Functional Cookies/Store your preferences (e.g. region, language, settings).
Analytics Cookies/Help us understand how users interact with our website (e.g. via Google Analytics).
Marketing Cookies/Track your browsing to show relevant advertising or content (e.g. Meta Pixel).
We do not use cookies to collect sensitive personal data or share personal data with third parties for resale.
3. Third-Party Cookies
Some cookies are set by third-party services integrated with our platform, including:
Google Analytics – traffic and usage data
Meta (Facebook Pixel) – marketing and conversion tracking
High Level – platform functionality and session management
Please review the privacy and cookie policies of these third parties for more information.
4. Managing Your Cookie Preferences
You can control or disable cookies through:
Our cookie banner, which appears when you first visit our site,
Your browser settings, where you can block or delete cookies,
Opt-out tools such as: https://www.youronlinechoices.com/uk/
Note: Disabling essential cookies may impact the functionality of our website or platform.
5. Changes to This Policy
We may update this Cookies Policy from time to time. If we make significant changes, we will notify you via a banner or email (where appropriate). The latest version will always be available on this page.
6. Contact Us
For any questions about this Policy or our use of cookies, please contact us:
Circlana Ltd
2nd Floor
48 West George Street
Glasgow
G2 1BP
[email protected]
Everything you need to grow your business
in one platform.
Legal
Copyright 2025 | Circlana™ | All Rights Reserved.