Privacy Policy

SoTech Studio Limited (we, us or our) respect your privacy and are committed to protecting your personal data.

This privacy policy aims to give you information on how we collect and process your personal data through your use of this website and/or our software applications, including any personal data you may provide through the software, this website, when you contact us, or where we are providing you with a product or service (including access to our software applications).

It is important that you read this privacy policy together with any other privacy policy or fair processing policy we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your personal data. This privacy policy supplements those other policies and is not intended to override them.

For the purpose of UK data protection law, SoTech Studio Limited is the data “controller” and is therefore responsible for your personal data. If you have any questions, including any requests to exercise your legal rights, please contact us using the details set out at the bottom of this privacy policy.

The personal data we collect

Personal data means any information about an individual from which that person can be identified. We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:

• Identity Data includes first name and last name
• Contact Data includes address, email address and telephone number
• Transaction Data includes details about payments to and from you and other details of services you have purchased from us
• Profile Data includes, in relation to your user account, your username and password, stored preferences, feedback and survey responses
• Location Data includes (where you have either consented to its collection by way of GPS or similar technology or input such data into our software applications), details of your location for the purposes of documenting the location of sites and related field data
• Marketing and Communications Data includes your preferences in receiving marketing other communications
• Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access our website and/or our software applications
• Usage Data includes information about how you use our website, products and services

Personal data does not include data where your identity has been removed or which not associated with or linked to your personal data (anonymous data).

How we collect personal data

We use different methods to collect data from and about you including through:

• Direct interactions. You may give us your Identity, Contact by filling in forms, by corresponding with us by post, phone, email, via our website or otherwise, when you create a user account or when you enter into a contract with us for the provision of our services
• Automated technologies or interactions. As you interact with our website and/or our web-based software application, we may automatically collect Technical Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies, server logs and other similar technologies.
• Third parties or publicly available sources. We may receive personal data about you from various third parties such as PostHog (analytics).

The purposes for which we use personal data

We will only use your personal data when the law allows us to. We may collect and process the personal data about you for the following purposes:

• Ordering our products and services - we will use your Identity, Contact and Transaction Data in order to register you as a customer and to process and deliver products and services to you, including the management of payments, fees and charges.
• User account - when you create or are issued with a user account for our software applications, we will need your Identity and Contact Data so that we can identify you as a user.
• Contacting us - when you contact us with an enquiry or to request information, we will use your Identity and Contact Data to respond to you
• Advertising, marketing and public relations - we may use the Identity, Contact, Technical, and/or Usage Data of our customers to form a view on what we think our customers may want or need.
• Administration - we may use your Identity, Contact, Location and Technical Data for the purpose of protecting our business, our website and our services.
• Analytics - as you navigate our website and/or software applications, Location, Technical and Usage Data may be collected automatically.
• Surveys - If you choose to complete a survey that we use for research purposes we will retain the information that you provide.
• Fault reporting - if you contact us to report a fault with our website or software applications, we will use the Identity and Contact Data provided for the purposes of rectifying that fault.

Disclosure of personal data

Your personal data will only be disclosed to those of our employees or workers that have a need for such access for the purpose for which it was collected. Your personal data will not be disclosed to any other individuals or other entities except in the following circumstances:

• On occasion, we need to hire other companies to help us to serve you better and in some of these cases we may need to share personal data that is necessary to perform tasks for us
• Where it is necessary for the performance of our contract with you
• Where we are under a legal duty to do so in order to comply with any legal obligation
• In order to protect the rights, property or safety of our business, our employees and workers, customers, suppliers and others
• If we or substantially all of our assets are acquired by a third party

Security

We are committed to ensuring that your personal data is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the personal data we collect.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

International transfers

Some of our external third parties are based outside the UK so their processing of your personal data will involve a transfer of data outside the UK (for example, our current hosting provider is located in Ireland). Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it.

Data retention

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

Your rights

You have the right to:

• Request access to your personal data (commonly known as a “subject access request”)
• Request correction of the personal data that we hold about you
• Request erasure of your personal data
• Object to processing of your personal data
• Request restriction of processing of your personal data
• Request the transfer of your personal data to you or to a third party
• Withdraw consent at any time where we rely on consent to process your personal data

Contact Details

Our full contact details are:

SoTech Studio Limited

Address: Cedar Barn, White Lodge, Walgrave, Northampton, Northamptonshire, NN6 9PY

Email: privacy@gimlabs.io

Complaints

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues. We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.