Select

Privacy Policy

Effective date: 27 April 2026

This Privacy Policy explains how Realtime Comms Ltd collects, uses, stores, and shares personal data in connection with Select.

1. Who We Are

Realtime Comms Ltd operates Select, an inference routing and model access service. Realtime Comms Ltd is registered in England and Wales under company number 15584611.

Registered office: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ.

For account, billing, website, security, and service administration data, Realtime Comms Ltd is generally the controller. For personal data contained in prompts, messages, files, code, tool outputs, or other API request content, our role may depend on the customer's use case.

Contact: hello@select.ax.

2. Personal Data We Collect

  • Account and contact data, including email address, name, company name, role, login status, and support correspondence.
  • API and usage data, including API key identifiers, hashed API key records, timestamps, selected model, route, provider, mode, latency, status, error metadata, token counts, cost, balance, IP address, user agent, and technical request metadata.
  • Customer Content, including prompts, messages, code, files, tool outputs, context, and model responses where needed to provide, troubleshoot, secure, or bill the service.
  • Payment data, including payment status, checkout/session identifiers, purchase amount, billing email, and transaction metadata. We do not intentionally store full payment card numbers.
  • Website and device data, including cookies or similar technologies if enabled, page views, referral information, browser/device data, and analytics data if analytics are used.

3. How We Use Personal Data

We do not sell personal data. We do not use Customer Content to train our own general-purpose AI models unless we have separately agreed this with you.

  • to provide, operate, route, secure, and maintain Select;
  • to authenticate accounts and API keys;
  • to process model requests and return outputs;
  • to meter usage, calculate charges, maintain balances, and process payments;
  • to provide dashboards, documentation, support, and service communications;
  • to detect abuse, investigate errors, prevent fraud, and protect service stability;
  • to monitor model/provider health and improve routing reliability;
  • to comply with legal obligations and enforce our Terms;
  • to improve, debug, and develop the service.

4. Lawful Bases

Where UK GDPR applies, we rely on one or more of the following lawful bases:

  • contract, to provide Select, authenticate access, process requests, bill usage, and support customers;
  • legitimate interests, to secure, monitor, improve, debug, prevent abuse, and operate the service;
  • legal obligation, to comply with tax, accounting, legal, regulatory, and law enforcement obligations;
  • consent, where we ask for consent, such as optional marketing or non-essential cookies.

5. Sharing Personal Data

We may share personal data with:

  • upstream model providers and inference infrastructure providers, where needed to process API requests;
  • hosting, database, monitoring, security, logging, and cloud infrastructure providers;
  • payment processors;
  • email and communications providers;
  • professional advisers, insurers, auditors, and legal representatives;
  • regulators, courts, law enforcement, or public authorities where required or permitted by law;
  • business successors if we sell, merge, reorganise, or transfer part of our business.

6. Upstream Providers

Upstream providers may process Customer Content to return model outputs and may apply their own technical, security, abuse prevention, and retention practices. Customers should avoid sending highly sensitive data unless appropriate written terms are in place.

7. International Transfers

Select may involve providers and infrastructure located outside the UK or European Economic Area. Where required, we use appropriate safeguards for international transfers, such as adequacy regulations, standard contractual clauses, the UK International Data Transfer Agreement or Addendum, or other lawful transfer mechanisms.

8. Retention

We keep personal data only for as long as reasonably necessary for the purposes described in this Policy. Account records are kept for the life of the account and a reasonable period afterwards. Billing, payment, and accounting records are typically kept for up to 6 years or longer if required by law.

API usage metadata, Customer Content, support correspondence, and security logs are kept as needed for billing, debugging, security, abuse prevention, dispute handling, analytics, legal obligations, and service operation.

9. Security

We use reasonable technical and organisational measures to protect personal data, including access controls, API key hashing, operational monitoring, and secure infrastructure practices. No online service is completely secure. Customers are responsible for protecting their own systems, API keys, prompts, files, outputs, and integrations.

10. Your Rights

Depending on where you live and the applicable law, you may have rights to:

  • access your personal data;
  • correct inaccurate personal data;
  • delete personal data;
  • restrict or object to processing;
  • receive a portable copy of personal data;
  • withdraw consent where processing is based on consent;
  • complain to a data protection authority.

11. End Users of Customers

If you are an end user of one of our customers, please contact that customer first. In many API use cases, we process Customer Content on behalf of the customer and must follow the customer's instructions.

12. Marketing and Cookies

We may send service updates and transactional messages. We will only send marketing communications where permitted by law, and you can opt out of marketing emails.

The Select website and dashboard may use cookies or similar technologies for authentication, security, preferences, analytics, or service operation. Before launch, we should confirm the exact cookies and analytics tools used and add a cookie table if non-essential cookies are enabled.

13. Children's Data

Select is not intended for children. You must not use Select to knowingly submit children's personal data unless we have expressly agreed appropriate written terms and safeguards.

14. Automated Decision Making

Select routes requests between AI models and may use automated scoring or routing logic to choose a provider or model. This routing is used to deliver the service. We do not intend this routing to make legal or similarly significant decisions about individuals.

Customers are responsible for ensuring that their own use of AI outputs complies with applicable law, including any rules on automated decision making.

15. Complaints and Contact

If you have a privacy concern, contact us first at hello@select.ax. If UK GDPR applies, you may also complain to the UK Information Commissioner's Office at https://ico.org.uk/.