Privacy Policy
Effective date: 24th August, 2024
Welcome to Metis BI and our website at www.metisbi.co.uk (our “website”). At Metis BI, we are committed to protecting and respecting your privacy.
This privacy policy sets out the basis on which we will process any Personal Data that we may collect about you as a visitor to our website. This policy further sets out how we protect your privacy and your rights in respect of our use of your Personal Data.
We encourage you to read this privacy policy thoroughly. If you find any of the terms outlined below unsatisfactory, please refrain from using the site. By accessing and using the site, you acknowledge that you understand and accept that this privacy policy may change without personal notification. Therefore, we recommend that you regularly review this policy to stay informed about any updates. By using the site, you accept that the posted policy and all its changes apply to your interaction with Metis BI site.
WHAT IS PERSONAL DATA?
Personal Data is information that makes it possible to identify a natural person. This includes, in particular, your name, date of birth, address, telephone number, e-mail address, but also your IP address. Anonymous data exists if no personal reference to the user can be made.
WHAT IS DATA PROCESSING?
Data processing refers to any activity related to the collection, storage, modification, retrieval, or destruction of personal data. This includes obtaining, recording, structuring, and using your data for specific purposes as outlined below.
WHAT LAW APPLIES?
We are committed to full compliance with all applicable data protection laws and regulations across all the jurisdictions in which we operate. As such, we recognise the importance of adhering to the legal framework established under the United Kingdom's data protection laws, including the UK General Data Protection Regulation (UK GDPR). This policy is designed to ensure compliance with the data protection obligations in the UK jurisdiction.
- UK: The Data Protection Act 2018 (DPA) and the General Data Protection Regulation (GDPR).
The UK law provides you with specific rights regarding how your data is handled, and this privacy policy is designed to ensure compliance with the UK sets of regulations.
WHO IS RESPONSIBLE FOR DATA PROCESSING?
The responsible party within the meaning of the above is Metis BI, [Insert Company Address] (“Metis BI”, “we”, “us”, “our”). If you want to contact us or if you have any questions, you can reach us by email using hello@metisbi.co.uk.
WHAT ARE THE LEGAL BASES FOR PROCESSING PERSONAL DATA?
We only process your Personal Data if one of the following legal grounds applies:
- Consent: You have given explicit consent for a specific purpose (e.g., signing up for a newsletter).
- Contractual Necessity: The data is required to fulfill a contract or pre-contractual request (e.g., purchasing services from us).
- Legal Obligation: We are legally obligated to process your data (e.g., complying with tax laws).
- Legitimate Interest: We have a legitimate business interest in processing your data that does not override your rights and freedoms (e.g., enhancing our website experience).
WHAT PERSONAL DATA DO WE COLLECT FROM YOU?
a) Personal Data You Provide to Us
When you voluntarily engage with us, such as by completing contact forms, subscribing to services, or providing feedback, we may collect:
- Your name
- Email address
- Telephone number
- Business information
- Job title
b) Automatically Collected Data
When you visit our website, we collect certain technical data automatically. This includes:
- Your IP address
- Browser type and version
- Device information (e.g., mobile or desktop)
- Time zone settings and location data
- Pages viewed, and the time spent on each page This data helps us improve your experience on our website and monitor its performance.
c) Cookies and Tracking Technologies
Our website uses cookies and other tracking technologies to provide better functionality, analyze traffic, and personalize content. By accepting cookies, you help us optimize our services. You can learn more about the types of cookies we use and manage your preferences in our Cookie Policy.
THIRD-PARTY SERVICE PROVIDERS
We may share your Personal Data with trusted third-party providers who assist us in running our site. We use the content or service offers of third-party providers on the basis of our legitimate interests in order to integrate their content and services ("Content") on our website. This always requires that the third-party providers of this Content are aware of the IP address of the user, as without the IP address they would not be able to send the content to their browser. The IP address is therefore necessary for the display of this content.
The following provides an overview of third-party providers and their content, together with links to their privacy policies, which contain further information on the processing of data and so-called opt-out measures, if any: a) Hosting: GoDaddy.com; b) Content Management System: Webflow Inc; and c) Analytics: Google Analytics from Google.
HOW WILL WE USE YOUR PERSONAL DATA?
We will use your personal information only as described below unless you have explicitly consented to a different use, either at the time your personal information is collected or through another form of consent or notification.
We may collect, store, and use your Personal Data for the following purposes:
- to operate, manage, develop, and promote our business and, in particular, our relationship with you and related transactions, including, for example: some text
- marketing purposes (when we have either gathered prior opt-in consent and/or have a legitimate interest to send you communications which we believe to be relevant and of use to you);
- accounting and billing/payment purposes;
- to operate, administer, and improve our website and other aspects of the way in which we conduct our operations;
- to offer you our services;
- to provide you with services or information that you may have requested; and
- to keep you informed and updated on relevant topics or services you may be interested in.
- to protect our business from fraud, money laundering, breach of confidence, theft of proprietary materials, and other financial or business crimes;
- to comply with our legal and regulatory obligations, bring and defend legal claims and assert legal rights; and
- if the purpose is directly connected with an assigned purpose previously made known to you.
We will only process your Personal Data as necessary so that we can pursue the purposes described above and where we have a legal basis for such processing. Where our lawful basis for processing is that such processing is necessary to pursue our legitimate interests, we will only process your Personal Data where we have concluded that our processing does not prejudice you or your privacy in a way that would override our legitimate interest. In exceptional circumstances, we may also be required by law to disclose or otherwise process your Personal Data.
DATA SHARING AND INTERNATIONAL TRANSFERS
In certain cases, it is necessary to transmit the processed Personal Data in the course of data processing. In this respect, there are different recipient bodies and categories of recipients.
a) Internal
If necessary, we transfer your Personal Data within Metis BI. Access to your Personal Data is only granted to authorised employees who need access to the data due to their job, e.g., to provide our services or to contact you in case of queries.
b) External bodies
Personal Data is transferred to our service providers in the following instances:
- in the context of fulfilling our contract with you,
- to communicate with you,
- to provide our website, and
- to state authorities and institutions as far as this is required or necessary.
c) International transfers
We may transfer your Personal Data to other companies as necessary for the purposes described in this Privacy Policy. In order to provide adequate protection for your Personal Data when it is transferred, we have contractual arrangements regarding such transfers. We take all reasonable technical and organisational measures to protect the Personal Data we transfer.
HOW LONG DO WE KEEP YOUR PERSONAL DATA?
We will delete your Personal Data when we no longer need such Personal Data, for instance where:
- it is no longer necessary for us to retain your Personal Data to fulfil the purposes for which we had collected it;
- we believe that your Personal Data that we hold is inaccurate; or
- in certain cases where you have informed us that you no longer consent to our processing of your Personal Data.
Sometimes, however, there are legal or regulatory requirements which may require us to retain your Personal Data for a specified period, and in such cases we will retain your Personal Data for such specified period; and we may need to retain your Personal Data for certain longer periods in relation to legal disputes, and in such cases we will retain it for such longer periods to the extent required.
DATA SECURITY
Our website uses SSL or TLS encryption to ensure the security of data processing and to protect the transmission of confidential content, such as orders, login data or contact requests that you send to us. We have also implemented numerous security measures (“technical and organisational measures”) for example encryption or need to know access, to ensure the most complete protection of Personal Data processed through our website.
YOUR RIGHTS AND PRIVILEGES
- Privacy rights
You can exercise the following rights under the DPA and the GDPR:
- The right to access;
- The right to rectification;
- The right to erasure;
- The right to restrict processing;
- The right to object to processing;
- The right to data portability;
- Updating your information and withdrawing your consent
If you believe that the information we hold about you is inaccurate or request its rectification, deletion, or object to legitimate interest processing, please do so by contacting us.
- Access Request
In the event you want to make a Data Subject Access Request, please contact us. We will respond to requests regarding access and correction as soon as reasonably possible. Should we not be able to respond to your request within thirty (30) days, we will tell you why and when we will be able to respond to your request. If we are unable to provide you with any Personal Data or to make a correction requested by you, we will tell you why.
- Complaint to a supervisory authority
You have the right to complain about our processing of Personal Data to a supervisory authority responsible for data protection. The supervisory authority in the UK is the Information Commissioner's Office (ICO) (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns beforehand.
- What we do not do
- We do not request Personal Data from minors and children;
- We do not process special category data without obtaining prior specific consent;
- We do not use Automated decision-making including profiling; and
- We do not sell your Personal Data.
HELP AND COMPLAINTS
If you have any questions about this policy or the information we hold about you, please contact us by email us using hello@metisbi.co.uk.
CHANGES
The first version of this policy was issued on Saturday, 24th of August, 2024 and is the current version. Any prior versions are invalid, and if we make changes to this policy, we will revise the effective date.