Legal & Policy
The terms, policies, and notices that govern how Antarious AI operates and how we handle the data entrusted to us.
Antarious AI operates in environments where legal and policy transparency is not optional. The documents on this page govern the relationship between Antarious and its customers, partners, and users — and set out the specific commitments we make around data, privacy, and conduct.
1. Introduction and Acceptance
These Terms of Service ("Terms") govern access to and use of the Antarious AI platform, including Freya and all associated agents, features, integrations, and services (collectively, the "Platform"), provided by Antarious AI Limited ("Antarious", "we", "us", or "our").
By accessing or using the Platform, or by signing an Order Form or Master Services Agreement that references these Terms, you ("Customer") agree to be bound by these Terms. If you are accessing the Platform on behalf of an organisation, you represent that you have authority to bind that organisation to these Terms.
If you do not agree to these Terms, you may not access or use the Platform.
2. Definitions
"Customer" means the organisation or individual that has entered into an agreement with Antarious to access the Platform.
"Customer Data" means all data, content, and information submitted to or processed by the Platform by or on behalf of the Customer.
"Authorised Users" means individuals authorised by the Customer to access and use the Platform under the Customer's account.
"Order Form" means a written or electronic order document specifying the commercial terms of a Customer's access to the Platform.
"Services" means the Platform and any associated implementation, configuration, training, and support services provided by Antarious.
"Confidential Information" means any non-public information disclosed by one party to the other that is designated as confidential or that reasonably should be understood to be confidential given the nature of the information and circumstances of disclosure.
3. Access to the Platform
3.1 Licence Grant
Subject to these Terms and payment of applicable fees, Antarious grants the Customer a limited, non-exclusive, non-transferable licence to access and use the Platform during the subscription term solely for the Customer's internal business operations and in accordance with these Terms.
3.2 Authorised Users
The Customer is responsible for managing access to the Platform by Authorised Users, including ensuring that credentials are not shared and that access is revoked promptly when an Authorised User departs or changes role.
3.3 Account Responsibility
The Customer is responsible for all activity that occurs under its account, including actions taken by Authorised Users. The Customer must notify Antarious immediately if it becomes aware of any unauthorised access to its account.
3.4 Restrictions
The Customer may not:
- Sublicence, resell, or make the Platform available to third parties except as explicitly permitted in a signed partner agreement
- Reverse engineer, decompile, or attempt to extract source code from the Platform
- Use the Platform in a manner that violates applicable law or these Terms
- Use the Platform to process data in categories that have not been agreed with Antarious in writing
- Attempt to access Platform components or data outside the Customer's configured scope
4. Customer Data
4.1 Ownership
Customer Data remains the property of the Customer. Antarious acquires no ownership rights over Customer Data by virtue of processing it through the Platform.
4.2 Use of Customer Data
Antarious processes Customer Data solely to provide and improve the Services as described in these Terms and the Data Processing Agreement. Antarious does not use Customer Data to train AI models for use by other customers or for any purpose outside the scope of the Services.
4.3 Customer Responsibility for Data
The Customer is responsible for ensuring that Customer Data submitted to the Platform complies with applicable law, including data protection law, and that appropriate consents or legal bases exist for processing.
4.4 Data Security
Antarious implements security measures designed to protect Customer Data as described in the Security page and the Data Processing Agreement. The Customer is responsible for security within its own systems and networks.
5. Fees and Payment
5.1 Fees
Fees for access to the Platform are set out in the applicable Order Form. Fees are quoted exclusive of applicable taxes unless otherwise stated.
5.2 Payment Terms
Unless otherwise specified in the Order Form, invoices are due within thirty (30) days of the invoice date. Late payments may incur interest at the rate specified in the Order Form or, if not specified, at the applicable statutory rate.
5.3 Fee Changes
Antarious may change fees with not less than ninety (90) days' written notice prior to the start of a renewal term.
6. Confidentiality
Each party agrees to:
- Keep the other party's Confidential Information strictly confidential
- Not disclose Confidential Information to third parties without prior written consent, except to employees, contractors, or advisors who have a need to know and are bound by equivalent confidentiality obligations
- Use Confidential Information only for the purposes of performing obligations or exercising rights under these Terms
Confidentiality obligations do not apply to information that is or becomes publicly available through no breach of these Terms, was already known to the receiving party, or is required to be disclosed by law or regulatory authority.
7. Intellectual Property
7.1 Antarious IP
The Platform, including all software, agents, models, interfaces, and documentation, is the intellectual property of Antarious and its licensors. These Terms do not transfer any intellectual property rights to the Customer.
7.2 Customer IP
Customer Data and any Customer-specific configurations, workflows, or content remain the intellectual property of the Customer. These Terms do not transfer any Customer intellectual property rights to Antarious.
7.3 Feedback
If the Customer provides feedback or suggestions about the Platform, Antarious may use that feedback without restriction or obligation to the Customer.
8. Warranties and Disclaimers
8.1 Antarious Warranties
Antarious warrants that:
- The Platform will perform materially in accordance with its documentation during the subscription term
- Antarious will implement reasonable security measures to protect Customer Data
- Antarious will comply with applicable data protection law in its processing of Customer Data
8.2 Customer Warranties
The Customer warrants that:
- It has the authority to enter into these Terms
- Its use of the Platform and submission of Customer Data complies with applicable law
- It will maintain appropriate security over Authorised User credentials and access
8.3 Disclaimers
Except as expressly set out in these Terms, the Platform is provided "as is". Antarious disclaims all implied warranties, including warranties of merchantability, fitness for a particular purpose, and non-infringement, to the fullest extent permitted by applicable law.
9. Limitation of Liability
9.1 Exclusion of Consequential Loss
To the fullest extent permitted by applicable law, neither party will be liable to the other for any indirect, incidental, special, or consequential losses, including loss of revenue, loss of profit, loss of data, or loss of opportunity, arising out of or in connection with these Terms.
9.2 Cap on Liability
Each party's total cumulative liability arising out of or related to these Terms, whether in contract, tort, or otherwise, will not exceed the total fees paid or payable by the Customer to Antarious in the twelve (12) months preceding the event giving rise to the claim.
9.3 Essential Basis
The limitations in this section reflect an allocation of risk that is an essential element of the basis of the bargain between the parties. Antarious would not provide the Platform on the terms set out in these Terms without these limitations.
10. Term and Termination
10.1 Term
These Terms commence on the date the Customer first accesses the Platform and continue for the subscription term specified in the Order Form, unless terminated earlier in accordance with these Terms.
10.2 Termination for Cause
Either party may terminate these Terms immediately on written notice if the other party materially breaches these Terms and fails to remedy the breach within thirty (30) days of receiving written notice of the breach.
10.3 Effect of Termination
On termination:
- The Customer's access to the Platform is revoked
- Antarious will provide Customer Data in a standard exportable format within thirty (30) days of the termination date, if requested
- Following a transition period specified in the Order Form, Antarious will securely delete Customer Data and provide written confirmation of deletion
- Provisions that by their nature should survive termination (including confidentiality, intellectual property, limitation of liability, and governing law) will survive
11. Governing Law and Disputes
These Terms are governed by the laws of England and Wales. The parties submit to the exclusive jurisdiction of the courts of England and Wales for the resolution of any dispute arising out of or in connection with these Terms, subject to either party's right to seek emergency injunctive relief in any jurisdiction.
12. General
12.1 Amendments
Antarious may amend these Terms with thirty (30) days' notice for existing customers. Continued use of the Platform after the effective date of the amended Terms constitutes acceptance. For material changes, Antarious will seek Customer acknowledgement where required by applicable law.
12.2 Assignment
The Customer may not assign its rights or obligations under these Terms without Antarious's prior written consent. Antarious may assign these Terms in connection with a merger, acquisition, or sale of substantially all of its assets.
12.3 Entire Agreement
These Terms, together with the applicable Order Form, Data Processing Agreement, and any other documents incorporated by reference, constitute the entire agreement between the parties with respect to their subject matter and supersede all prior agreements.
12.4 Severability
If any provision of these Terms is found to be unenforceable, the remaining provisions will continue in full force and effect.
Privacy Policy
Effective date: [Date to be populated]
Last updated: April 2026
1. Who We Are
Antarious AI Limited ("Antarious", "we", "us", or "our") is the data controller for personal data collected through our website (antarious.ai) and our customer-facing communications. For personal data processed within the Platform on behalf of our customers, Antarious acts as a data processor — in which case the customer is the data controller and the Data Processing Agreement governs that processing.
Contact: the legal team
2. Personal Data We Collect
2.1 Data You Provide to Us
| Data Category | Examples | When Collected |
|---|---|---|
| Contact information | Name, job title, organisation, email address, phone number | Demo requests, contact form submissions, account creation |
| Account information | Username, password (hashed), role, access level | Account creation and management |
| Communication data | Content of emails, enquiries, support requests | When you contact us |
| Payment information | Billing contact details (payment card data is processed by our payment processor, not stored by Antarious) | Invoicing and payment processing |
2.2 Data Collected Automatically
| Data Category | Examples | Purpose |
|---|---|---|
| Usage data | Pages visited, features used, time on platform, actions taken | Platform improvement, security monitoring |
| Technical data | IP address, browser type, device type, operating system | Security and fraud prevention |
| Cookie data | Session identifiers, preference settings | Platform functionality and analytics (see Cookie Policy) |
2.3 Data We Do Not Collect
Antarious does not intentionally collect sensitive personal data (special category data under UK/EU GDPR) through its website or commercial communications. If you believe sensitive data has been inadvertently submitted, please contact the legal team.
3. How We Use Personal Data
| Purpose | Legal Basis | Data Used |
|---|---|---|
| Providing the Platform and Services | Contract performance | Account information, contact information |
| Responding to enquiries and demo requests | Legitimate interest / consent | Contact information, communication data |
| Account management and support | Contract performance | Account information, usage data |
| Security monitoring and incident response | Legitimate interest | Technical data, usage data |
| Improving the Platform | Legitimate interest | Usage data (anonymised or aggregated where possible) |
| Marketing communications (where opted in) | Consent | Contact information |
| Legal and regulatory compliance | Legal obligation | As required by applicable law |
| Invoicing and payment | Contract performance | Payment and contact information |
5. International Data Transfers
Where personal data is transferred outside the UK or European Economic Area, Antarious implements appropriate safeguards — including Standard Contractual Clauses or equivalent mechanisms — to ensure that data protection standards equivalent to UK/EU GDPR apply.
6. Data Retention
We retain personal data for as long as necessary for the purposes set out in this policy, or as required by applicable law or contract. Specific retention periods:
| Data Category | Retention Period |
|---|---|
| Account data | Duration of account plus two years |
| Contact and communication data | Three years from last interaction |
| Usage and technical data | Two years, or as required for security purposes |
| Audit records (Platform) | Seven years minimum (configurable per customer requirements) |
| Payment records | Seven years (legal and tax requirement) |
7. Your Rights
Under applicable data protection law, you have the following rights in relation to your personal data:
| Right | Description |
|---|---|
| Access | Request a copy of the personal data we hold about you |
| Rectification | Request correction of inaccurate or incomplete data |
| Erasure | Request deletion of your data where there is no lawful basis for continued processing |
| Restriction | Request that we restrict processing of your data in certain circumstances |
| Portability | Receive your data in a machine-readable format where processing is based on consent or contract |
| Object | Object to processing based on legitimate interest |
| Withdraw consent | Withdraw consent at any time where processing is consent-based |
To exercise any of these rights, contact: the legal team
We will respond to valid requests within one month. Where requests are complex or numerous, we may extend this period by a further two months with notice.
You also have the right to lodge a complaint with the relevant supervisory authority — in the UK, the Information Commissioner's Office (ICO) at ico.org.uk.
Cookie Policy
Effective date: [Date to be populated]
Last updated: April 2026
1. What Cookies Are
Cookies are small text files placed on your device when you visit a website. They are used to recognise your device, remember your preferences, and enable certain functionality. We also use similar technologies such as pixels and local storage where relevant.
2. Cookies We Use
2.1 Strictly Necessary Cookies
These cookies are required for the website and Platform to function and cannot be disabled.
| Cookie | Purpose | Duration |
|---|---|---|
| Session identifier | Maintains your authenticated session | Session (deleted on browser close) |
| CSRF token | Protects against cross-site request forgery | Session |
| Load balancer | Routes requests to the correct server | Session |
2.2 Functional Cookies
These cookies enable enhanced functionality and personalisation. They may be set by us or by third-party providers.
| Cookie | Purpose | Duration |
|---|---|---|
| Preference settings | Remembers your UI preferences (e.g., language, display mode) | 12 months |
| Onboarding state | Tracks onboarding progress for new users | 30 days |
2.3 Analytics Cookies
These cookies help us understand how visitors use our website, so we can improve it. Data is aggregated and anonymised where possible.
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
| Analytics identifier | [Analytics provider — to be populated] | Page views, navigation patterns, feature usage | 24 months |
2.4 Marketing Cookies
These cookies are used to deliver relevant communications. They are only set where you have given consent.
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
| [Marketing cookie] | [Provider — to be populated] | Ad targeting, campaign performance | 12 months |
3. Managing Cookies
You can control cookies through:
- Our cookie preference centre: Accessible via the cookie banner on first visit and from the footer of our website at any time
- Your browser settings: Most browsers allow you to view, manage, and delete cookies. Note that disabling strictly necessary cookies will affect Platform functionality
- Opt-out tools: For analytics and marketing cookies from third-party providers, you may use the provider's own opt-out mechanisms
Data Processing Agreement
Overview
For all Antarious deployments where Antarious processes personal data on behalf of a Customer organisation, a Data Processing Agreement (DPA) is executed prior to go-live.
The DPA governs:
- The categories of personal data processed by Antarious on the Customer's behalf
- The purposes and duration of processing
- The obligations of Antarious as a data processor under UK GDPR, EU GDPR, and applicable national data protection law
- Security measures applied to Customer personal data
- Sub-processor arrangements, including the sub-processor list and notification of changes
- Data subject rights support procedures
- Breach notification obligations (notification to the Customer within 72 hours of confirmed awareness)
- Data return and deletion obligations on termination
- International transfer safeguards
- Audit rights — the Customer's right to audit Antarious's compliance with the DPA on reasonable notice
Requesting a DPA
The Antarious standard DPA is available on request. To request the DPA, or to submit a Customer's own DPA for review, contact: the legal team
For government and enterprise deployments, DPA negotiations are handled by the Antarious legal team in conjunction with the customer's deployment engagement.
Acceptable Use Policy
Effective date: [Date to be populated]
Last updated: April 2026
1. Purpose
This Acceptable Use Policy ("AUP") sets out the rules governing use of the Antarious Platform by Customers and Authorised Users. It forms part of the Terms of Service.
2. Permitted Use
The Platform may be used only for lawful purposes and in accordance with the Terms of Service. Permitted use includes:
- Automating operational workflows within the Customer's organisation
- Processing Customer Data as described in the agreed deployment configuration
- Generating intelligence, drafts, and recommendations for human review and approval
- Managing the approval and execution of business operations within configured governance structures
3. Prohibited Use
Customers and Authorised Users may not use the Platform to:
3.1 Process prohibited data categories
- Process data relating to children under 16 without explicit parental consent and Antarious agreement
- Process data in special categories (health, biometric, genetic, political, religious, etc.) without explicit Antarious agreement and documented legal basis
- Process classified government information above the security classification level agreed for the deployment
3.2 Conduct harmful or illegal activities
- Generate, distribute, or act upon content that is unlawful, defamatory, discriminatory, or harassing
- Engage in automated outreach or communications in violation of anti-spam laws (including GDPR, CAN-SPAM, CASL)
- Conduct or facilitate fraud, deception, or misrepresentation
- Circumvent the Platform's human approval requirements to enable unauthorised automated action
3.3 Compromise Platform integrity
- Attempt to gain unauthorised access to any part of the Platform or any other system accessible through it
- Submit input designed to manipulate, destabilise, or exploit Freya or the agent architecture
- Use the Platform in a manner that creates disproportionate load on shared infrastructure
- Circumvent or attempt to circumvent access controls, rate limits, or security measures
3.4 Misuse intellectual property
- Use the Platform to generate content that infringes third-party intellectual property rights
- Reproduce or distribute Antarious's proprietary platform components, documentation, or models outside the terms of the licence
4. Enforcement
Antarious reserves the right to investigate suspected violations of this AUP and to suspend or terminate access where a violation is confirmed or reasonably suspected. Antarious will provide notice where practical, except where immediate suspension is necessary to protect the Platform, other customers, or third parties.
Contact Legal
For all legal, contractual, and policy-related enquiries:
Contact channel: Available on request
Response target: Three business days
For data subject rights requests under UK GDPR: the legal team (subject line: Data Subject Rights Request)
For security-related legal matters: the security team
Antarious AI · Company · Legal & Policy
Last reviewed: April 2026