hecaton.

Privacy Policy

Introduction

Hecaton Consulting (“Hecaton”, “we”, “us”, and “our”) is a company that provides professional services relating to data, analytics, and AI. We respect your privacy and are committed to protecting your personal data. This Privacy Policy (“Policy”) is designed to communicate our practices regarding the collection, use, retention, and disclosure of information, and to inform you of your privacy rights and how the law protects you.

Basis for compliance

We comply with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the Data Protection Act 2018 (“DPA”).

The GDPR is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA). It also addresses the transfer of personal data outside the EU and EEA areas. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

The DPA sets out the framework for data protection law in the UK. It sits alongside the GDPR, and tailors how the GDPR applies in the UK - for example, by providing exemptions. It also sets out separate data protection rules for law enforcement authorities, extends data protection to some other areas such as national security and defence, and sets out the functions and powers of a supervisory authority for data protection issues.

Our role

Hecaton acts as the data controller and is responsible for your personal data under the GDPR and DPA 2018.

The personal data we collect

We collect the following personal data:

  • Name (First Name and Last Name)
  • Email Address

Data classification

To manage your personal data effectively, we have classified it as follows:

  • Identity Data: Name (First Name and Last Name)
  • Contact Data: Email Address

When we collect your data

We collect personal data when you:

  • Interact directly with us by completing forms or corresponding via email, telephone, post, or instant message
  • Request support for our Services
  • Provide a testimonial or feedback
  • Submit a Data Subject Access Request

How we collect your data

We use the following methods to collect data from you:

  • Online form submission
  • Extraction from email, telephone, post, or instant message

How we use your data

We only use your data as the law allows. We will most often use it to:

  • Perform a contract we have entered into or are about to enter into with you
  • Pursue our legitimate interests (or those of a third party) where your interests and fundamental rights do not override those interests
  • Comply with a legal or regulatory obligation or a vital interest

Purposes for which we use your data

The following table sets out the ways in which we use your data, and which of the legal bases we rely on to do so. Note that we may use your data for more than one lawful ground depending on the specific purpose for which we are using your data.

To enable you to complete a service service

We will use Identity Data and Contact Data in order to take steps prior to entering into a contract with you.

To administer and protect our business

We will use Identity Data and Contact data in the performance of a contract you hold with us, for our legitimated interests (running our business), to comply with our legal obligations, and for our legitimate interests to detect or prevent unlawful acts.

Your duty to inform us of changes

It is important that the personal data we hold about you is correct. Please keep us informed if your personal data changes during your relationship with us.

If you fail to provide personal data

Where we need to collect personal data by law or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you.

In this case, we may have to cancel the contract you have with us. We will notify you at the time if this is the case.

Children under eighteen

We do not knowingly collect personal data from children under the age of eighteen. If you are under the age of eighteen, you must ask your parent or guardian for permission to use this website.

Changes to this Policy

We reserve the right to change this Policy from time to time. In the event of any change to this Policy, we will notify you about significant changes in the way we treat personal information by sending a notice to the primary email address specified in your account, by placing a prominent notice on our website, and/or by updating any privacy information. Your continued use of the website and/or Services available after such modifications will constitute your: (a) acknowledgment of the modified Privacy Policy; and (b) agreement to abide and be bound by that Policy.

Contact information

We welcome your questions or comments regarding this Policy. If you believe that we have not adhered to this Policy, please contact us at hello@hecaton.consulting

Complaints

Should you wish to do so at any point, you have the right to make a complaint to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues. Their contact details are:

Information Commissioner's Office
Wycliffe House, Water Lane, Wilmslow
Cheshire, SK9 5AF
0303 123 1113 (local rate)
01625 545 745 (national rate)
Fax: 01625 524 510
casework@ico.org.uk

We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.