Privacy Policy
Effective Date: 01/09/2025
CinaTech ("we", "us", or "our") is committed to protecting and respecting your privacy. This policy explains how we collect, use, disclose, and safeguard your personal data, in compliance with the UK GDPR, the Data Protection Act 2018, PECR, and relevant updates introduced under the Data (Use and Access) Act 2025.
1. Information Collected
We collect personal data that is necessary, relevant, and limited to what is required for the purposes stated:
Identity & Contact Information: Name, work email, telephone number, company name, billing details.
Business Context Data: Information provided to help us develop tailored AI solutions.
Technical & Usage Data: IP address, browser type, device details, website interactions.
Communications Data: Records of your correspondence with us (e.g. emails, support requests).
2. Lawful Basis & Purpose of Processing
We process personal data only when at least one of the following conditions applies:
Contractual Necessity: To provide the AI services you request.
Legitimate Interests: To deliver, manage, and improve our services, unless overridden by your rights.
Legal Obligations: To comply with applicable laws and regulations.
Consent: Where required (e.g. for marketing or promotional communications).
Your personal data will be processed in a lawful, fair, and transparent manner, for specified, explicit purposes. We also adhere to the principles of purpose limitation, data minimisation, accuracy, storage limitation, and integrity & confidentiality.
3. Use of Automated Decision-Making (ADM)
Where we use automated systems to make decisions that may significantly affect you, we will:
Notify you clearly.
Provide opportunities to challenge such decisions and obtain human review.
4. Data Sharing & International Transfers
We do not sell your data. We may share it with:
Service Providers: Trusted partners (e.g. for hosting, payment processing).
Legal Authorities: Where required by law or regulation.
Business Transitions: In connection with mergers, acquisitions, or asset transfers.
Any cross-border data transfers comply with UK law and include appropriate safeguards.
5. Your Rights
Under UK law, you may have the right to:
Access your personal data.
Request correction or erasure.
Restrict or object to processing.
Withdraw consent (where processed on that basis).
Lodge a complaint with the Information Commissioner’s Office (ICO) or submit a complaint through a formal process (under DUAA enhancements).
To exercise your rights, please contact [email protected].
6. Data Retention
We retain your personal data only for as long as is necessary to fulfil contractual, legal, or legitimate business purposes, after which it will be securely deleted.
7. Cookies & Tracking Technologies
We may use cookies and similar technologies to:
Improve navigation and functionality.
Analyse usage patterns.
Personalise your experience.
Where required, we will obtain your consent. You may adjust your browser settings to disable cookies, though this may affect certain website features.
8. Third-Party Sites
Our website may contain links to third-party services. We are not responsible for their privacy practices. Please review their policies directly.
9. Data Protection Culture
We embed a strong data protection culture across our organisation—ensuring responsible data use, privacy by design, and compliance practices are integral across all teams.
10. Policy Updates
This policy may be updated to reflect legal changes or improvements in our practices. Any updates will be posted on this page with a revised effective date.
11. Contact Us
For questions, or to exercise your rights, please contact us:
CinaTech
Email: [email protected]
Address: 54 Grosvenor Rd, Newcastle upon Tyne, NE2 2RQ