Privacy Policy

**Aideeya** ("we", "us", "our") is a software development company

"Services" refer to all websites, applications, and products provided through our brands and other channels.

1. Introduction

At **Aideeya**, we are committed to protecting and respecting your privacy. This Privacy and Data Protection Policy outlines how we collect, use, store, and safeguard your personal data in compliance with the UK General Data Protection Regulation (UK GDPR).

This policy applies to all employees of **Aideeya** and covers all personal data processed by us. Our objectives are to:

  • Ensure compliance with the UK GDPR.
  • Educate our employees on their data protection responsibilities.
  • Protect the rights of our employees, customers, and partners.
  • Mitigate the risks associated with data breaches.

2. Terminology

  • Data Controller: The entity that determines the purposes and means of processing personal data.
  • Data Processor: The entity that processes personal data on behalf of the Data Controller.
  • Data Subject: An individual whose personal data is being processed.
  • Personal Data: Information relating to an identified or identifiable individual.
  • Personal Data Breach: Any unauthorized access, loss, or disclosure of personal data.

3. Lawful Basis for Data Collection & Processing

We process your personal data based on the following lawful bases:

  • Consent: When you have given explicit permission for us to process your data for specific purposes, such as subscribing to our newsletter.
  • Contractual Necessity: To fulfill our contractual obligations to you, such as providing services you've requested.
  • Legal Compliance: When required by law, such as responding to legal inquiries or complying with regulatory requirements.
  • Legitimate Interests: To pursue our legitimate business interests, provided they do not override your rights and freedoms. This includes improving our services, marketing, and business development.

4. Processing Data on Behalf of a Controller

As a Data Processor, we adhere to the following responsibilities:

  • Process personal data only based on documented instructions from the Data Controller.
  • Ensure confidentiality by restricting access to authorized personnel.
  • Implement appropriate technical and organizational measures to secure personal data.
  • Assist the Data Controller in fulfilling their obligations, including responding to data subject requests.
  • Notify the Data Controller of any personal data breaches without undue delay.
  • Ensure that any sub-processors comply with the same data protection obligations.
  • Maintain records of processing activities and cooperate with supervisory authorities as required.

5. Policy Scope

This policy applies to all personal data held by **Aideeya**, including but not limited to:

  • Names
  • Contact details (email, postal address, phone number)
  • Demographic information (age, gender)
  • Company and business information
  • Financial details (bank account information for suppliers)
  • Interaction details with our websites and services

**Non-Personal Data:** We may collect and use anonymous or aggregated data for analytics, research, and improving our services. This data does not identify you personally and may be shared with third parties for similar purposes.

6. Information Sharing and Disclosure

We do not sell your personal data to third parties. We may share your information in the following circumstances:

  • With trusted service providers who assist us in operating our business, under strict confidentiality agreements.
  • In the event of a corporate transaction such as a merger, acquisition, or sale of assets, your personal data may be transferred to the acquiring entity.
  • When required by law or to comply with legal processes.
  • To protect our rights, property, or safety, or that of our users or others.

7. Data Security

We implement robust security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of sensitive data in transit and at rest.
  • Regular security assessments and audits.
  • Access controls restricting data access to authorized personnel only.
  • Secure data storage solutions.

Despite our efforts, no method of transmission over the internet or electronic storage is completely secure. If you suspect any security issues, please contact us immediately.

8. Cookies

We use cookies to enhance your experience on our website. Cookies help us remember your preferences, understand how you interact with our site, and improve our services. The types of cookies we use include:

  • Strictly Necessary Cookies: Essential for the website's functionality.
  • Performance Cookies: Collect information on how you use our website to improve performance.
  • Functionality Cookies: Remember your preferences and enhance user experience.
  • Targeting/Advertising Cookies: Deliver relevant advertisements and limit ad exposure.
  • Third-Party Cookies: Set by external services, governed by their own privacy policies.

You can manage or disable cookies through your browser settings. Please note that disabling certain cookies may affect the functionality of our website.

9. Transfer of Business Assets

In the event of a merger, acquisition, or sale of all or part of our business, your personal data may be transferred to the new owner. The acquiring entity will be subject to the same data protection obligations as outlined in this Privacy Policy.

10. Notification of Changes and Acceptance of Policy

We regularly review and update this Privacy Policy. Any changes will be posted on this page with an updated effective date. Continued use of our services constitutes your acceptance of any modifications.

11. Interpretation

Words like "including" and "includes" mean "including but not limited to." Any email addresses provided in this policy are for the specified purposes only. Unrelated correspondence may not receive a response. Our staff are not authorized to contract or waive rights on behalf of **Aideeya** unless expressly stated.

12. How to Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at info@aideeya.co.uk. We aim to respond promptly or within the timeframe required by law.

13. Your Rights

Under the UK GDPR, you have the following rights regarding your personal data:

  • Right to Access: You can request access to the personal data we hold about you.
  • Right to Rectification: You can request correction of any inaccurate personal data.
  • Right to Erasure: You can request deletion of your personal data under certain conditions.
  • Right to Restrict Processing: You can request that we limit the processing of your personal data.
  • Right to Data Portability: You can request to receive your personal data in a structured, commonly used format.
  • Right to Object: You can object to the processing of your personal data for certain purposes.
  • Rights Related to Automated Decision-Making: You have rights concerning decisions made solely based on automated processing.

To exercise any of these rights, please contact us at info@aideeya.com.

14. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

The retention period varies depending on the type of data and its purpose. Once the retention period expires, we securely delete or anonymize your personal data.

15. International Data Transfers

Your personal data may be transferred to and processed in countries outside the UK. We ensure that such transfers are conducted in accordance with UK GDPR by implementing appropriate safeguards, such as standard contractual clauses or ensuring that the receiving country has an adequacy decision from the UK Information Commissioner's Office (ICO).