top of page

Privacy Policy

At Atoxor, we are committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, store, and protect your personal data when you use our services, visit our website, or engage with us in any other way.

 

1. Information We Collect
We collect different types of personal data depending on how you interact with us. The data we collect includes:

1.1 Personal Information You Provide

  • Contact details (e.g. name, email address, phone number, company name) when you fill out forms on our website or contact us directly.

  • Project-related information when engaging with our services (e.g. information required for SOP development or consultation services).

  • Payment information when you purchase our services.

 

1.2 Information Collected Automatically

  • Cookies and Tracking Data: When you visit our website, we use cookies and similar tracking technologies to enhance your experience and gather analytics about how our site is used.

  • Device Information: We may collect information about the device you use to access our site (e.g. IP address, browser type).

 

2. How We Use Your Information
We use the personal data we collect for the following purposes:

  • To provide and maintain our services: This includes creating and delivering SOPs, consultancy services, and handling support requests.

  • To communicate with you: Sending you updates about your project, responding to inquiries, or providing marketing information (if you have consented).

  • To improve our services: Using analytics data to enhance user experience on our website.

  • For legal and compliance purposes: Ensuring compliance with applicable laws and regulations, such as GDPR.

 

3. Legal Basis for Processing
Under the General Data Protection Regulation (GDPR), the legal basis for processing your personal data includes:

  • Consent: When you provide explicit consent for us to process your personal information (e.g. when signing up for newsletters or agreeing to use cookies).

  • Contractual necessity: When processing is required to fulfil a contract (e.g. providing you with our services).

  • Legitimate interests: When we process your information in ways that are reasonably necessary to run our business and do not materially impact your rights.

 

4. How We Share Your Data
We do not sell or rent your personal data. However, we may share your data in the following circumstances:

  • Service Providers: We may share your data with third-party service providers (e.g. email marketing platforms, payment processors) who help us deliver our services.

  • Compliance: We may share your data where we are required to do so by law or in response to legal requests.

  • Business Transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred.

 

5. How We Store and Protect Your Data
We are committed to ensuring that your information is secure. We implement appropriate technical and organisational measures, including encryption and secure access control, to protect your personal data from unauthorized access or disclosure.

  • Data Storage: Your data may be stored in databases hosted on servers within the European Economic Area (EEA) or other regions that ensure adequate levels of data protection.

  • International Data Transfers: In certain cases, your data may be transferred outside the EEA. Where this occurs, we ensure that appropriate safeguards, such as standard contractual clauses, are in place to protect your data.

  • Data Retention: We retain your personal data only for as long as necessary for the purposes set out in this Privacy Policy. Specific retention periods may vary based on the type of data and legal requirements.

 

6. Your Rights Under GDPR
Under GDPR, you have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you.

  • Right to Rectification: You can request corrections to any inaccurate or incomplete personal data.

  • Right to Erasure: You can request the deletion of your personal data under certain circumstances.

  • Right to Restrict Processing: You can request the restriction of processing of your personal data under certain circumstances.

  • Right to Data Portability: You can request a copy of your personal data in a machine-readable format.

  • Right to Object: You can object to the processing of your personal data where we rely on legitimate interests as the legal basis for processing.

  • Right to Withdraw Consent: If you have provided consent for us to process your personal data, you have the right to withdraw that consent at any time. To withdraw your consent, please contact us at [Insert Contact Email].

  • Right to Lodge a Complaint: If you are unhappy with how we process your personal data, you have the right to lodge a complaint with a supervisory authority, such as the Information Commissioner's Office (ICO) in the UK.

 

7. Data Breach Notification
In the event of a data breach that poses a high risk to your rights and freedoms, we will notify you and the relevant data protection authority within 72 hours of becoming aware of the breach, in accordance with GDPR requirements.

 

8. Automated Decision-Making and Profiling
We do not currently use automated decision-making or profiling in our data processing activities. If this changes, we will update this policy and inform you of your rights in relation to such practices.

 

9. Privacy Impact Assessments
Where our data processing activities present high risks to individuals' privacy, we conduct privacy impact assessments to ensure appropriate measures are in place to safeguard personal data.

 

10. Cookie Policy
We use cookies to track your activity on our website and store certain information. Cookies are small files placed on your device that help us provide a better user experience, such as remembering your preferences.
Types of Cookies We Use:

  • Essential Cookies: Necessary for the website to function and cannot be switched off.

  • Analytics Cookies: Help us understand how visitors interact with the website, improving its performance.

  • Marketing Cookies: May be used to deliver ads relevant to your interests.

 

11. Children's Privacy
Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from minors. If we become aware that we have inadvertently collected such data, we will take steps to delete it.

 

12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with the updated date at the top. A version history or changelog will be provided to help you understand the updates.

 

13. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at:
Email: info@atoxor.co.uk

 

14. Data Protection Officer
If you have specific concerns regarding data protection, you may contact our Data Protection Officer (DPO) at:
Email: info@atoxor.co.uk

 

15. Version History

  • 26/09/2024: Initial version of the policy.

bottom of page