Effective Date: 17th November 2023

1. Introduction

Xaura.io is committed to ensuring the privacy, security, and compliance of the personal data we collect and process. This policy outlines our approach to data protection in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Data Collection and Processing

We collect and process personal data for specific, explicit, and legitimate purposes. The types of data collected may include but are not limited to:

• Names, contact information, cookie preferences.
  
  

3. Legal Basis for Processing

We process personal data only when we have a legal basis to do so. This may include the necessity of processing for the performance of a contract, compliance with a legal obligation, protection of vital interests, consent, the performance of a task carried out in the public interest, or the legitimate interests pursued by Xaura.io or a third party.

4. Data Security

We implement appropriate technical and organisational measures to ensure the confidentiality, integrity, and availability of personal data. This includes regular security assessments, data encryption, access controls, and employee training.

5. Data Subject Rights

We respect the rights of data subjects as outlined in the GDPR, including the right to access, rectification, erasure, and the right to object to processing. Requests to exercise these rights can be made to Lisa Harrison-Evans, Business Operations Manager.

6. Data Breach Notification

In the event of a data breach, Xaura.io will promptly assess and notify the appropriate supervisory authority and affected data subjects in accordance with GDPR requirements.

7. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected or as required by applicable laws.

8. Third-Party Data Processors

When engaging third-party data processors, we ensure that they comply with GDPR and have adequate data protection measures in place.

9. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies. By using our website, you consent to the use of cookies in accordance with our Cookie Policy.

10. Policy Review and Updates

This policy will be reviewed periodically and updated as needed to reflect changes in our data processing practices or regulatory requirements.

For inquiries related to our Data Protection and GDPR Policy, please contact Lisa Harrison-Evans, Business Operations Manager, Xaura.io, Enterprise House, Harmire Enterprise Park, Darlington, DL12 8XT, 01325 792680.