Privacy Policy
This Privacy Policy explains how NeuroTrust Labs Ltd collects, uses, and protects personal data when you visit our website or work with us. We act as a controller for website interactions and as a controller or processor for client projects depending on the engagement. We follow UK GDPR and the Data Protection Act 2018.
Who we are and how to contact us
NeuroTrust Labs Ltd is registered in England and Wales. Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom. Phone: +44 20 3808 7432. Email: [email protected]. We are the primary contact for questions about this policy and for requests to exercise your rights. You may also contact your local supervisory authority. In the UK, that is the Information Commissioner’s Office (ico.org.uk).
Data we collect
We collect information you provide through forms, emails, or calls, such as name, contact details, company, and project context. We collect limited technical data for security and performance, including IP address, device, and basic usage events. If you engage us as a client, we may process datasets or model outputs you supply under a services agreement. We do not sell personal data. We do not intentionally collect sensitive categories unless you ask us to audit systems that contain such data, in which case we use strict safeguards.
How and why we use data
We use data to provide and improve our services, respond to enquiries, secure our site, and meet legal obligations. Lawful bases include contract performance, legitimate interests in operating and improving our business, consent for optional communications, and legal obligation. Where we rely on legitimate interests, we balance our interests against your rights and expectations. If processing is based on consent, you can withdraw it at any time using the contact details above or the unsubscribe link in messages.
Cookies and analytics
Our site uses essential cookies for security and core functionality. With your permission, we may use performance cookies to understand aggregated usage so we can improve navigation and content. You can accept or reject non‑essential cookies using the cookie controls on this site or by adjusting your browser settings. Cookie choices are stored on your device and can be changed at any time.
Sharing and transfers
We share personal data with trusted service providers that help us run our website and deliver projects, such as hosting, email, and productivity tools. These providers are bound by contracts that require confidentiality, security, and use only for our instructions. If data is transferred outside the UK or EEA, we use appropriate safeguards such as the UK IDTA, EU Standard Contractual Clauses, or an adequacy decision. We may disclose data if required by law or to protect rights, safety, or security.
Retention and security
We keep personal data only as long as needed for the purposes set out in this policy or to meet legal requirements. Typical retention for enquiries is up to 24 months, and for client records up to 7 years for tax and accounting. We apply technical and organisational measures such as access controls, encryption in transit, and training. No method is perfectly secure, but we work to prevent unauthorised access and respond promptly to incidents.
Your rights
Under UK GDPR you have rights to access, correct, erase, restrict, or object to processing, and to data portability. You also have the right to withdraw consent where processing relies on consent. To exercise these rights, contact us using the details above. We will verify your identity and respond within one month where possible. You can complain to the ICO if you are unhappy with our response. We do not make solely automated decisions that produce legal or similarly significant effects without human review.
Children’s data
Our services are intended for business customers. We do not knowingly collect personal data from children under 16. If you believe a child has provided us with personal data, please contact us and we will take appropriate steps to remove the information.
Changes to this policy
We may update this policy to reflect changes to our practices or to legal requirements. The updated version will be posted here with a new effective date. Material changes will be highlighted for clarity. Your continued use of the site after an update indicates that you have read the changes.