Privacy Policy

1. Who We Are

AxioFlow is a trading name of AxioFlow Ltd (Company No. [COMPANY NUMBER]), registered in England and Wales.

Registered address: [REGISTERED ADDRESS, CITY, POSTCODE]

Data protection contact: [privacy@axioflow.co.uk]

ICO registration number: [ICO REGISTRATION NUMBER]

We are committed to protecting and respecting your privacy. This policy explains how we collect, use, store, and protect personal data when you use our website and services, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. What Data We Collect

We may collect the following personal data:

• Contact information: your name, email address, company name, and company size — collected through our lead capture form
• Diagnostic responses: your answers to the Operational Health Check questionnaire (these are not personally identifiable on their own)
• Technical data: IP address, browser type and version, time zone setting, operating system — collected automatically when you visit our website
• Usage data: information about how you use our website, including pages visited and time spent

3. How We Collect Your Data

We collect data in the following ways:

• Directly from you: when you complete the Operational Health Check, fill in the lead capture form, or contact us by email
• Automatically: through essential cookies and server logs when you browse our website (see our Cookie Policy for details)

4. Legal Basis for Processing

We process your personal data on the following legal bases:

• Legitimate interest (Article 6(1)(f) UK GDPR): processing your diagnostic answers and generating your personalised report. Our legitimate interest is providing you with actionable business insights. This processing is necessary to deliver the service you have requested and does not override your fundamental rights.
• Consent (Article 6(1)(a) UK GDPR): where you have given us explicit consent to contact you with marketing communications or to share your details for follow-up consultation purposes. You can withdraw consent at any time.
• Contract (Article 6(1)(b) UK GDPR): where processing is necessary for the performance of a contract with you, such as providing a consultation service.

5. How We Use Your Data

We use the personal data we collect to:

• Generate your personalised Operational Health Check report
• Contact you to discuss your results and offer a free strategy consultation (only if you provide your details)
• Improve our diagnostic tool and website
• Send you relevant operational improvement content (only with your explicit consent)
• Comply with our legal obligations

6. Data Sharing

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

We may share your data with the following categories of service providers who process data on our behalf:

• Website hosting providers
• Email service providers (for sending your report)
• Customer relationship management (CRM) tools

All third-party processors are bound by data processing agreements and are required to process your data in accordance with UK GDPR. We will never transfer your data outside the UK or EEA without appropriate safeguards in place.

7. Data Retention

We retain your personal data only for as long as necessary:

• Diagnostic results: stored in your browser session only (sessionStorage) and are automatically deleted when you close the tab or browser. We do not store diagnostic answers on our servers unless you submit the lead capture form.
• Lead capture data: retained for up to 24 months from the date of collection, or until you request deletion, whichever is sooner.
• Marketing consent records: retained for the duration of your consent plus 12 months after withdrawal.

8. Your Rights

Under UK GDPR, you have the following rights regarding your personal data:

• Right of access: request a copy of the personal data we hold about you
• Right to rectification: request correction of inaccurate or incomplete data
• Right to erasure: request deletion of your personal data (subject to legal obligations)
• Right to restrict processing: request that we limit how we use your data
• Right to data portability: request your data in a structured, machine-readable format
• Right to object: object to processing based on legitimate interest or for direct marketing
• Right to withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing

To exercise any of these rights, please contact us at [privacy@axioflow.co.uk]. We will respond within one month of receiving your request.

9. Complaints

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

• Website: ico.org.uk/make-a-complaint
• Helpline: 0303 123 1113

We would appreciate the opportunity to address your concerns before you approach the ICO, so please contact us first at [privacy@axioflow.co.uk].

10. Cookies

Our website uses essential cookies and browser storage to ensure the site functions correctly. For full details on what cookies and storage mechanisms we use and how to manage them, please see our Cookie Policy.

11. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. Any changes will be posted on this page with an updated “Last updated” date. We encourage you to review this policy periodically.

12. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us:

• Email: [privacy@axioflow.co.uk]
• Post: Data Protection, AxioFlow, [REGISTERED ADDRESS, CITY, POSTCODE]