Privacy Policy

Gradient Insight Ltd (“we,” “us,” or “our”), registered in England and Wales, complies with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection laws. This Privacy Policy governs how we manage your personal data and ensure it is handled lawfully, transparently, and securely.

By using our services or accessing our website, you agree to the terms of this Privacy Policy and our Terms of Service.

We collect different types of information depending on how you interact with our services. Here’s what we gather and why:

We collect personal data in several ways:

• When you contact us via email, phone, or website forms.
• Third-party referrals and introductions.
• During the onboarding or service delivery process (e.g., project requirements, invoices).
• Automatically through website cookies and analytics tools.
• From third parties who have your permission to share your data with us.

We use your personal information for several specific purposes:

• Service Delivery: Managing projects, communicating with clients, providing technical support, and delivering software solutions.
• Business Communications: Sending project updates, invoices, important notices, and responding to requests.
• Marketing: With your permission, we send newsletters and information about services that might interest you.
• Improving Our Services: Analysing how our website and services are used to make improvements and develop new offerings.
• Legal and Security: Protecting our business and clients from fraud, ensuring compliance with legal obligations, and maintaining system security.

We process your personal data based on several legal grounds under UK GDPR:

• Contract Performance: When we process data to deliver software development services or fulfil our agreements.
• Legitimate Interests: For business communications, improving services, website analytics, and security monitoring.
• Consent: For newsletter subscriptions and certain marketing communications.
• Legal Obligations: When we need to keep records for tax, accounting, or other legal requirements.

We keep your personal information only as long as necessary for the purposes we collected it. Our retention periods vary depending on the type of information:

• Client Project Data: We typically retain this for seven years after project completion to meet professional and legal obligations.
• Website Analytics: This data is automatically deleted by our analytics providers after 26 months.
• Financial Records: We retain these for seven years to comply with accounting and tax requirements.
• Marketing and Newsletter Data: We keep this until you unsubscribe or ask us to delete it.

We take data security seriously, demonstrating our commitment to information security management. Our security measures include:

• Technical Safeguards: Encryption of data both when stored and transmitted, secure hosting infrastructure, and regular security updates.
• Organisational Measures: Staff training on data protection, clear policies and procedures, and incident response plans.
• Physical Security: Secure facilities and equipment, with appropriate access controls and environmental protections.

We do not sell or rent your personal data to third parties. However, we may share it with:

• Service Providers: Hosting providers, email services, payment processors, and other technical partners.
• Professional Advisors: Our accountants, lawyers, and business consultants.
• Legal Requirements: Disclosure required by law, court orders, or to protect legal rights.
• AI Development Partners: Trusted technology partners for specific project requirements.

Under United Kingdom and European Union legislation, you may exercise your rights in relation to the personal information we hold, including:

• Access - Request a copy of your personal information.
• Rectification - Ask us to correct inaccurate or incomplete data.
• Erasure - Request deletion of your personal information in certain circumstances.
• Restriction - Ask us to limit how we use your information.
• Object - Object to certain uses of your data.
• Withdraw Consent - Withdraw consent at any time where we rely on it.

Our website uses cookies and similar technologies to function properly and provide analytics insights. We use:

• Essential Cookies: Necessary for the website to work.
• Analytics Cookies: Google Analytics cookies help us understand usage and improve services.
• Functional Cookies: Remember your preferences and enhance experience.

Our services are designed for businesses and professional users. We don’t knowingly collect personal information from children under 16. If we discover we’ve inadvertently collected such information, we’ll delete it promptly.

If you have any concerns about our use of your personal data, you can make a complaint to us using our contact details. If you remain unhappy, you can also complain to the Information Commissioner’s Office (ICO).