Privacy Policy

Legal

Your trust matters. Here's how we collect, use, and safeguard your data.

Last updated: March 2026

Information We Collect

Contact Information

When you reach out to us through our contact form or email, we collect your name, email address, phone number, and any details you provide about your project requirements.

Project Data

During the course of our engagements, we may receive access to client codebases, databases, API credentials, and other technical assets necessary to deliver our services.

Usage Data

We collect anonymised analytics data such as page views, browser type, and device information to improve our website experience. No personally identifiable information is tracked.

How We Use Your Data

Service Delivery

Your data is used exclusively to deliver the services you have engaged us for — including development, testing, and ongoing support.

Communication

We use your contact information to respond to enquiries, provide project updates, and share relevant service information. We never send unsolicited marketing emails.

Improvement

Anonymised usage data helps us understand how visitors interact with our website so we can continuously improve the user experience.

How We Protect Your Data

Encryption at Rest & in Transit

All client data is encrypted using industry-standard AES-256 encryption at rest and TLS 1.3 for data in transit, ensuring your information is protected at every stage.

Access Controls

We enforce strict role-based access controls. Only authorised team members with a legitimate need can access client data, and all access is logged and audited.

Secure Infrastructure

Our systems are hosted on SOC 2 and ISO 27001 compliant cloud infrastructure with automated security patching, intrusion detection, and regular vulnerability assessments.

Data Isolation

Each client's project data is logically isolated. We never commingle data between clients, and dedicated environments are used for development and testing.

Data Retention & Deletion

Retention Period

We retain client data only for as long as necessary to fulfil our contractual obligations. Project data is typically retained for 90 days after project completion unless otherwise agreed.

Right to Deletion

You may request the deletion of your personal and project data at any time. Upon receiving a verified request, we will permanently remove your data from all active systems within 30 days.

Backup Purging

Deleted data is also purged from encrypted backups within 90 days, ensuring complete removal from our infrastructure.

Third-Party Sharing

No Selling of Data

We never sell, rent, or trade your personal information or project data to third parties under any circumstances.

Trusted Partners

We may share limited data with trusted service providers (e.g., cloud hosting, email delivery) who are contractually bound to the same privacy standards we uphold.

Legal Requirements

We may disclose data if required by law, regulation, or valid legal process. In such cases, we will notify you where legally permitted.

Your Rights

Access & Portability

You have the right to request a copy of the personal data we hold about you in a structured, commonly used format.

Correction

If any of your personal data is inaccurate or incomplete, you can request that we correct or update it.

Withdraw Consent

Where we process data based on your consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.

Questions About Your Data?

If you have any questions about this privacy policy or wish to exercise your data rights, please get in touch with us.