GDPR Compliance

Last updated: January 2024

neuro-matic is committed to protecting your personal data and complying with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. This page explains how we handle your data in accordance with these regulations.

Data Controller

neuro-matic is the data controller responsible for your personal data. Our contact details are:

neuro-matic
47 Borough High Street
London SE1 1NB
United Kingdom
Email: [email protected]

Lawful Basis for Processing

We process your personal data on the following legal bases:

• Contractual Necessity: Processing necessary to perform our contract with you when you book our services.
• Legitimate Interests: Processing necessary for our legitimate business interests, such as improving our services and responding to enquiries, provided these interests do not override your rights.
• Consent: Where you have given clear consent for us to process your personal data for specific purposes, such as marketing communications.
• Legal Obligation: Processing necessary to comply with legal requirements.

Your Rights Under GDPR

Under GDPR, you have the following rights regarding your personal data:

Right to Access

You have the right to request a copy of the personal data we hold about you. We will provide this information free of charge within one month of your request.

Right to Rectification

You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.

Right to Erasure

You have the right to request deletion of your personal data where there is no compelling reason for its continued processing. This right is not absolute and may be subject to legal obligations requiring us to retain certain data.

Right to Restrict Processing

You have the right to request that we limit the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit this data to another controller.

Right to Object

You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal effects concerning you.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including:

• Service booking and delivery records: 6 years from the date of service
• Marketing consent records: Until consent is withdrawn
• Website analytics data: 26 months
• Enquiry correspondence: 2 years from last contact

International Transfers

We primarily process data within the United Kingdom. If we transfer your data outside the UK, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the ICO.

Data Security Measures

We implement appropriate technical and organisational measures to protect your personal data, including:

• Encryption of data in transit and at rest
• Regular security assessments
• Staff training on data protection
• Access controls and authentication measures
• Regular backup procedures

Data Breach Notification

In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the Information Commissioner's Office within 72 hours and, where required, notify affected individuals without undue delay.

Exercising Your Rights

To exercise any of your rights, please contact us at:

Email: [email protected]

We will respond to your request within one month. In complex cases, this may be extended by a further two months, and we will inform you if this is necessary.

Complaints

If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Website: ico.org.uk

Updates to This Information

We may update this GDPR information from time to time. Any changes will be posted on this page with an updated revision date.