RADiCAIT Ltd ("RADiCAIT", "we", "us", or "our") is committed to protecting your personal data and your rights under applicable data protection law, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
This Privacy Policy explains how we collect, use, disclose, and protect personal data when you visit our website at radicait.tech, submit an enquiry, or interact with our services. Please read it carefully.
1. Who We Are and How to Contact Us
RADiCAIT Ltd is the data controller for personal data collected through this website. Our registered address is in London, England, United Kingdom.
If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us at: sean@radicait.tech
2. What Personal Data We Collect
2.1 Data You Provide Directly
When you use the contact form on our Website, we collect:
- Your name (first and last)
- Your work email address
- Your organisation or institution name
- Your professional role (if provided)
- Your enquiry type and message content
2.2 Data Collected Automatically
When you visit our Website, we may automatically collect certain technical data, including:
- Your IP address and approximate geographic location (country/region)
- Browser type and version
- Operating system
- Pages visited and time spent on each page
- Referring URL
We collect this data through server logs and, if applicable, privacy-respecting analytics tools. We do not use intrusive third-party tracking technologies that collect personally identifiable information without consent.
2.3 Clinical and Research Data
Where RADiCAIT processes medical imaging data (such as CT scans) as part of a clinical or research agreement, this is governed by a separate Data Processing Agreement (DPA) and/or Research Agreement with the relevant institution. Patient data is always de-identified prior to any transfer to RADiCAIT systems. This Privacy Policy does not govern the processing of such data; the applicable DPA governs instead.
3. How We Use Your Personal Data
We use the personal data we collect for the following purposes:
- Responding to enquiries: To respond to messages submitted via our contact form (legal basis: legitimate interests in business communications / performance of a contract).
- Business development: To assess and pursue potential clinical, research, or commercial partnerships (legal basis: legitimate interests).
- Website improvement: To analyse website usage patterns and improve the user experience (legal basis: legitimate interests, using anonymised or aggregated data).
- Legal compliance: To comply with applicable legal obligations (legal basis: legal obligation).
We will never sell your personal data to third parties. We will not use your personal data for automated decision-making or profiling that has legal or similarly significant effects on you.
4. Data Sharing and Third Parties
We may share your personal data with trusted third parties only in the following limited circumstances:
- Service providers: Companies that provide website hosting, email infrastructure, or business tools on our behalf, under strict confidentiality and data processing agreements.
- Legal requirements: If required by law, regulation, or a valid legal order from a competent authority.
- Business transfers: In connection with a merger, acquisition, or sale of assets, subject to the receiving party agreeing to be bound by this Privacy Policy or an equivalent policy.
Any third-party processors we engage are required to process data only on our instructions and in accordance with applicable data protection law.
5. International Data Transfers
Your personal data is stored and processed primarily within the United Kingdom. Where we engage service providers based outside the UK, we ensure that appropriate safeguards are in place (such as UK adequacy decisions or Standard Contractual Clauses) before transferring any personal data.
6. Data Retention
We retain personal data for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable law. Specifically:
- Contact form submissions and correspondence are retained for up to 3 years from the date of last contact, or longer if a commercial or research relationship develops.
- Technical log data is retained for up to 12 months.
When personal data is no longer needed, it is securely deleted or anonymised.
7. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, alteration, disclosure, or destruction. These measures include encryption in transit and at rest, access controls, and regular security reviews.
While we take all reasonable steps to protect your data, no transmission over the internet is completely secure. You should be aware of this when submitting personal information online.
8. Your Rights Under UK GDPR
Subject to applicable law, you have the following rights regarding your personal data:
- Right of access: You may request a copy of the personal data we hold about you.
- Right to rectification: You may request correction of inaccurate or incomplete personal data.
- Right to erasure: You may request deletion of your personal data in certain circumstances.
- Right to restriction: You may request that we restrict our processing of your data in certain circumstances.
- Right to data portability: Where processing is based on consent or contract and carried out by automated means, you may request your data in a structured, machine-readable format.
- Right to object: You may object to processing based on our legitimate interests, including direct marketing.
- Rights related to automated decision-making: You have the right not to be subject to solely automated decisions that have legal or similarly significant effects.
To exercise any of these rights, please contact us at sean@radicait.tech. We will respond within one calendar month. If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
9. Cookies
Our Website may use cookies and similar technologies for essential functionality and basic analytics. Essential cookies are necessary for the Website to function correctly. We do not currently deploy advertising or tracking cookies. You can control cookies through your browser settings; disabling cookies may affect certain Website functionality.
10. Children's Privacy
Our Website and services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us and we will promptly delete it.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or the services we offer. We will post the updated policy on this page with a revised "Last updated" date. We encourage you to review this policy periodically.
12. Contact Us
For any questions, concerns, or data subject requests relating to this Privacy Policy, please contact:
RADiCAIT Ltd
London, England, United Kingdom
Email: sean@radicait.tech
Website: radicait.tech