Legal
Privacy notice
Last updated: 15 July 2026.
Barry King, a sole trader trading as MarginRail (“MarginRail”), is the service operator and controller for website, account, trial and billing-contact data. Contact privacy@marginrail.app for privacy requests. For client and scope information placed in an authenticated agency workspace, the agency is normally the controller and MarginRail acts as its processor.
Purposes and lawful bases
MarginRail processes account, workspace and billing-contact information to provide the requested trial or subscription and perform the service agreement. It processes limited security and abuse-prevention information for legitimate interests in operating and improving a secure B2B service. The free AI report uses the explicit processing choice shown in its form. Payment and accounting records may be retained where required by law.
Website measurement
MarginRail does not currently send public page-view or link-click analytics, set analytics cookies or create visitor identifiers. It records service events such as a requested or confirmed report, walkthrough request, trial or subscription where needed to deliver the requested service, protect it from abuse and understand whether those service journeys work.
Business-to-business outreach
MarginRail may use a corporate agency’s name, publicly listed generic business address, legal status source and relevance notes to send a limited, relevant introduction under legitimate interests. MarginRail does not use purchased lists or inferred personal email addresses and does not market without consent to sole traders or other individual subscribers. Every message identifies MarginRail and offers a direct opt-out.
If a business or contact objects, MarginRail stops marketing and keeps the minimum suppression record needed to prevent future contact. Uncontacted prospect records are deleted or re-verified after 90 days. You can object by replying to any message.
AI scope-risk report
When you request a report, MarginRail temporarily stores the redacted scope excerpt, client request, hours and rate while it sends a confirmation link to your work email. The text is not sent to Cloudflare Workers AI and no report is generated until someone holding that private link explicitly confirms and starts the analysis. Remove client names, personal data, credentials and unnecessary confidential information before submitting.
An unconfirmed submission expires after 24 hours. After confirmation, the redacted source and generated analysis are retained for no more than seven days so the private report can be reopened and, if you choose, carried into workspace onboarding. The records are then deleted automatically.
The protected report is accessible only through its high-entropy private link. Business contact details, agency details and conversion status may be retained for up to 90 days so we can provide the requested service and measure conversion.
Walkthrough requests
A walkthrough request stores the name, work email, agency, team size, optional website and the fit note supplied in the form. MarginRail uses this only to assess and respond to the request. It is protected by Turnstile and deleted after 90 days. No payment or client-scope document is requested.
Payments
Paid subscriptions are processed by Stripe. MarginRail does not store full card details.
Passkeys and account sessions
MarginRail passkeys store a public credential, device characteristics needed for verification and a usage counter. Biometric data such as a fingerprint or face scan remains on your device and is never sent to MarginRail. Sign-in sessions are stored as one-way token hashes and expire automatically.
Authenticated workspace data
Saved scope boundaries, client requests, request-intake records and generated decision records are stored within the authenticated agency workspace and processed through Cloudflare infrastructure, including Workers AI when analysis is requested. Workspace access is isolated by agency ID and controlled by trial or subscription status.
Workspace owners and administrators can invite teammates. MarginRail stores each teammate’s name, work email, role and invitation status so it can control access to the correct agency workspace. Private invitation tokens are stored only as one-way hashes and expire after 48 hours.
An agency owner or administrator can create a private request-intake link. MarginRail stores a one-way hash for validating the token and an encrypted copy so authorised workspace managers can retrieve the existing link and forwarding address. Anyone holding the link can submit a client/account label, source channel and request wording to that agency’s inbox, so agencies must rotate links that are shared incorrectly. Intake submissions do not approve or schedule work.
An agency can also forward an individual request email to the private tokenised address shown in its workspace. MarginRail does not connect to or read the agency’s mailbox. The forwarding Worker accepts only a current workspace token, removes obvious email addresses and phone numbers from the stored request, rejects duplicates and does not retain the original raw message.
Workspace users can create private client approval links for proposed paid changes. MarginRail stores the proposal, fee, delivery impact, responder name, response note and accept-or-decline status. The secret link token is stored only as a one-way hash and expires after 14 days. This records a commercial response; it is not an electronic-signature service.
Each approval proposal is stored as an immutable version with an event history so the agency can see what was created, replaced, accepted or declined. The client can print or save the recorded response while its private link remains valid.
Workspace owners and administrators can create token-authenticated inbound integrations and signed outbound webhooks. Inbound integrations submit only the request fields deliberately sent by the connected workflow. Outbound webhooks send request-analysis and commercial-outcome events to the HTTPS endpoint configured by the agency. Tokens are stored as one-way hashes and outbound signing secrets are encrypted. Pausing stops future processing; rotation invalidates the previous credential; removal erases the live credential and endpoint while retaining minimal delivery audit records.
MarginRail may compare the wording of a new request with resolved requests inside the same agency workspace to show similar past commercial decisions. These precedents remain internal to that workspace and do not train a shared model.
Free trials and subscriptions
A new agency workspace begins with a 14-day free trial. No card is required to start, and a trial does not automatically become a paid subscription. If the owner chooses to subscribe, payments are processed by Stripe. Do not submit credentials, special-category data or unnecessary confidential material to MarginRail.
Recipients, subprocessors and transfers
Cloudflare provides application hosting, database, AI, bot-protection and transactional-email services. Stripe provides subscription and payment services. Details are maintained in the Trust Centre. Where these providers process data outside the UK, MarginRail relies on the transfer safeguards available through the applicable provider agreement and does not claim UK-only processing.
Controller and service address
The controller is Barry King, a sole trader trading as MarginRail. The service address is 36 Denbigh Drive, Fareham, PO16 7PN, United Kingdom. Email privacy@marginrail.app.
Your rights
Depending on the circumstances, individuals may ask for access, correction, deletion, restriction, portability or objection. Send a request to privacy@marginrail.app. MarginRail may need to verify identity and, for workspace client data, may direct the request to the agency that controls it.
You can complain to the UK Information Commissioner’s Office at ico.org.uk/make-a-complaint.