Last updated: February 2025
Introduction
DigiF9 (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This policy explains how we handle any personal data we collect from you or that you provide to us. Please read this carefully to understand our practices regarding your personal data.
Information We Collect
We may collect and process the following data:
- Information you provide by filling in forms on our website
- Contact information including name, email address, phone number, and company details
- Technical information about your visits to our website including IP address, browser type, and operating system
- Records of correspondence when you contact us
- Details of transactions you carry out through our website
- Information required to provide security consultancy services
How We Use Your Information
We use your information to:
- Provide our security services and fulfill our contractual obligations
- Respond to your enquiries
- Send you important service updates and communications
- Improve our services and website
- Comply with legal obligations
- Prevent fraud and protect our business interests
Legal Basis for Processing
We process your data based on:
- Contract performance when providing our services
- Legitimate interests in operating our business
- Legal obligations we must comply with
- Consent you provide where required
Data Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure or destruction. However, no internet transmission is ever completely secure.
Data Retention
We keep personal data only for as long as necessary to fulfil the purposes we collected it for, including legal, accounting, and reporting requirements.
Your Rights
You have rights regarding your personal data, including:
- Access to your data
- Correction of inaccurate data
- Erasure of your data (where applicable)
- Objection to processing
- Data portability
- Withdrawal of consent
Data Sharing
We may share your data with:
- Service providers who assist in our operations
- Professional advisers including lawyers, auditors, and insurers
- Government bodies when required by law
- Third parties in connection with a business sale or restructuring
We require all third parties to respect data security and comply with data protection laws.
International Transfers
We normally process data within the UK/EEA. If we transfer data outside these areas, we ensure appropriate safeguards are in place.
Children’s Privacy
Our services are not directed at children under 16. We do not knowingly collect data from children.
Cookies
Our website uses cookies to distinguish you from other users. This helps us provide a better experience when you browse our website. For detailed information about cookies we use, see our Cookie Policy.
Changes to This Policy
We may update this privacy policy from time to time. Any changes will be posted on this page with an updated revision date.
Contact Us
Questions, comments and requests regarding this privacy policy should be addressed to:
Email: info@digif9.co.uk Post: 124-128 City Road, London, England, EC1V 2NX
Complaints
You have the right to make a complaint to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues.
Additional Information for Specific Services
Security Assessments and Audits
When performing security assessments or audits, we may collect additional technical information about your systems and processes. This data is handled according to strict confidentiality agreements and our security protocols.
Training Services
For training services, we may collect attendance records and assessment data. This information is used solely for providing and improving our training services.
Incident Response
During incident response services, we may collect and process data related to security incidents. This information is handled with strict confidentiality and used only for incident investigation and resolution.