Privacy Policy

Our Commitment to Data Protection

At Langford Tech, we take the protection of your personal information seriously. This Privacy Policy explains how we collect, use, store, and protect your data when you interact with our website and services. We are committed to transparency and ensuring you understand your rights regarding your personal information.

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy applies to all personal data we process in connection with our AI training and implementation services.

Information We Collect

Information You Provide Directly

When you contact us or enquire about our services, you may provide personal information including your name, email address, organisation name, and details about your training needs. This information is collected through contact forms on our website or direct email communications.

If you engage our services, we may collect additional information such as your role, team size, specific training requirements, and feedback on our services. This helps us tailor our training programmes to your needs.

Information Collected Automatically

When you visit our website, certain information is collected automatically through cookies and similar technologies. This includes your IP address, browser type, device information, pages visited, time spent on pages, and referring website addresses.

We use analytics services that help us understand how visitors interact with our website. This information is aggregated and does not personally identify individual users. You can learn more about our use of cookies in our Cookie Policy.

Information from Third Parties

We may receive information about you from publicly available sources or professional networks if you engage with our content on those platforms. This information is used solely to understand professional interest in our services and is handled in accordance with this privacy policy.

How We Use Your Information

Service Provision and Communication

We use your contact information to respond to enquiries, discuss service options, provide quotes, schedule training sessions, and deliver our AI training services. This includes sending relevant information about our programmes and following up on your specific needs.

Website Improvement and Analytics

Information collected through analytics helps us understand which content is most useful, identify technical issues, and improve the overall user experience. This data is analysed in aggregate form and helps us make informed decisions about website enhancements.

Service Development and Quality

Feedback and information about your training needs help us develop relevant content and refine our training programmes. We may use anonymised data to create case studies or improve our methodology based on common requirements.

Legal Compliance and Protection

We process personal data as necessary to comply with legal obligations, resolve disputes, enforce our agreements, and protect the rights and safety of our business, clients, and others.

Marketing Communications

With your consent, we may send you information about our services, industry insights, or relevant updates. You can opt out of marketing communications at any time through the unsubscribe link in our emails or by contacting us directly.

Legal Basis for Processing

Under UK GDPR, we process your personal data based on the following legal grounds:

Consent

When you provide information through our contact forms or sign up for communications, you give us consent to process your data for those specific purposes. You can withdraw consent at any time.

Contractual Necessity

When you engage our services, processing your data is necessary to fulfil our contractual obligations, including delivering training sessions and providing support.

Legitimate Interests

We process certain data based on legitimate business interests, such as improving our services, preventing fraud, and maintaining network security. We balance these interests against your rights and freedoms.

Legal Obligations

Some data processing is required to comply with legal obligations, such as maintaining records for tax purposes or responding to lawful requests from authorities.

Data Sharing and Disclosure

We do not sell your personal information to third parties. We share your data only in the following limited circumstances:

Service Providers

We work with trusted service providers who assist with website hosting, email communications, and analytics. These providers are contractually obligated to protect your data and use it only for the purposes we specify.

Legal Requirements

We may disclose personal information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Business Transfers

In the event of a merger, acquisition, or sale of assets, personal data may be transferred as part of that transaction. We would notify you of any such change in ownership or control.

Data Security and Protection

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security practices include:

Encryption of data in transit using industry-standard SSL/TLS protocols
Secure storage systems with access controls and authentication requirements
Regular security assessments and updates to our systems
Staff training on data protection and security best practices
Restricted access to personal data on a need-to-know basis
Incident response procedures for potential data breaches

While we take reasonable precautions to protect your information, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but commit to responding promptly to any security incidents.

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected or to comply with legal obligations. Retention periods vary based on the type of data and purpose:

Enquiry Data: Contact information from enquiries is retained for two years to allow for follow-up and service discussions. After this period, data is securely deleted unless you have become a client.

Client Data: Information related to service delivery is retained for seven years after the end of our business relationship, in accordance with financial record-keeping requirements.

Marketing Data: If you have consented to marketing communications, we retain your data until you withdraw consent or until it becomes inactive after three years without engagement.

Analytics Data: Website analytics data is typically retained for 26 months and is anonymised or aggregated where possible.

When data is no longer needed, it is securely deleted or anonymised so that it cannot be associated with you.

Your Rights and Opt-Out Instructions

You are not required to provide any personal information when using this website. If you prefer not to share your data, you may:

Avoid filling out contact forms, account registrations, or any data-submitting features
Disable cookies through your browser settings (see our Cookie Policy for more details)
Contact us directly to request the deletion of any previously shared personal data

We respect your privacy choices. If you would like us to delete your data, please reach out to us through our contact page. We will process your request promptly.

Your Data Protection Rights

Right of Access

You have the right to request a copy of the personal data we hold about you. We will provide this information in a commonly used electronic format within one month of your request.

Right to Rectification

If you believe any information we hold about you is inaccurate or incomplete, you have the right to request correction. We will update your information promptly upon verification.

Right to Erasure

You can request deletion of your personal data in certain circumstances, such as when it is no longer necessary for the purposes it was collected or when you withdraw consent.

Right to Restrict Processing

You can request that we limit how we use your personal data in certain situations, such as when you contest the accuracy of the data or object to processing.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used format and to transmit that data to another organisation where technically feasible.

Right to Object

You can object to processing of your personal data based on legitimate interests or for direct marketing purposes. We will stop processing unless we have compelling legitimate grounds.

Right to Withdraw Consent

Where we rely on consent to process your data, you can withdraw that consent at any time. This will not affect the lawfulness of processing before withdrawal.

Right to Lodge a Complaint

If you believe we have not handled your data appropriately, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's data protection authority.

To exercise any of these rights, please contact us through our website contact form or using the details provided below. We will respond to your request within one month, though this may be extended by up to two months for complex requests.

International Data Transfers

Our operations are primarily based in the United Kingdom. However, some of our service providers may be located outside the UK or European Economic Area (EEA). When we transfer personal data internationally, we ensure appropriate safeguards are in place, such as:

Standard contractual clauses approved by the UK government
Adequacy decisions recognising equivalent data protection standards
Certification schemes demonstrating appropriate safeguards

Children's Privacy

Our services are directed at businesses and professional users. We do not knowingly collect personal information from individuals under the age of 16. If we become aware that we have inadvertently collected such information, we will take steps to delete it promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. When we make significant changes, we will update the "Last Updated" date at the top of this policy and may notify you through other means such as email or a notice on our website.

We encourage you to review this policy periodically to stay informed about how we protect your information. Your continued use of our services after any changes indicates your acceptance of the updated policy.