020 3778 2030
hello@unitymetrix.com
Unity Metrix
Get a Free Assessment

Privacy Policy

Get A Free No-Obligation Consultation
See Services

Who We Are

Unity Metrix Ltd is a company registered at 167-169 Great Portland Street, 5th Floor, London, W1W 5PF. We take the security of your personal information seriously. This statement explains how we use any personal information shared with us. For any data protection concerns, contact our Data Protection Officer (DPO) at the details provided below.

How We Use Your Information

When you visit our website, we may collect non-identifiable information about website usage. If we collect personal information, we will make this clear and explain how it will be used. As a registered user, your details are used for authentication each time you log in. Any contact made through our website implies consent for us to retain your details for communication purposes, provided that:

  • It relates to your original inquiry.
  • Further communication may be in your interest.
  • You are a customer or associate with whom we have a lawful
    reason to communicate.

Lawful Basis for Processing Personal Data

Unity Metrix processes personal data based on our legitimate interests, which include:

  • Providing Services: To deliver and improve our cybersecurity services.
  • Communicating with Clients and Website Visitors: To respond to inquiries and maintain client relationships.
  • Enhancing Website Performance: To analyze and improve site functionality.
  • Business Development and Marketing Activities: To promote relevant services.
  • Ensuring Cybersecurity and Compliance: To monitor and maintain system security.

We ensure that our legitimate interests are balanced with your rights and freedoms, and you have the right to object to processing at any time.

Right to Withdraw Consent

If you have provided consent for marketing communications, you can withdraw it at any time by:

  • Clicking the “unsubscribe” link in our marketing emails.
  • Deleting your account on any online platform or SaaS service we use, in which case any associated personal data will be securely deleted.

Data Retention Policy

Data retention varies based on the type of data:

  • Soft Marketing Data: Retained for up to 1 year.
  • Financial, Legal, and Planning Data: Retained for up to 7 years.
  • General Data: Retained for up to 5 years.
  • Old Client Management Data (CRM): Retained for 1 year after the client relationship ends.

We review data retention periods regularly to ensure compliance.

International Data Transfers

Unity Metrix may transfer personal data outside the UK and EEA, including to the United States, when using third-party service providers. We only transfer data to reputable businesses that implement security measures at least equal to our own. We use Standard Contractual Clauses (SCCs) to ensure adequate protection and assess third-party security practices.

Data Protection Impact Assessments (DPIAs)

Unity Metrix performs DPIAs when required, particularly for sensitive data processing, following best practices as per our IASME Cyber Assurance certification.

Automated Decision-Making and Profiling

We do not engage in automated decision-making or profiling. All decisions are made with human oversight.

Cookies and Tracking Technologies

Unity Metrix uses cookies and similar tracking technologies to enhance your experience on our website. For more detailed information, please refer to our Cookie Policy.

Security Measures

Unity Metrix implements a range of security measures to safeguard personal data:

  • Encryption: Protecting data during transmission and storage.
  • Access Controls: Limiting access to authorized personnel.
  • Data Minimization: Collecting only the necessary data.
  • Regular Security Audits: Conducting assessments to identify vulnerabilities.

We are certified to standards including Cyber Essentials Plus, IASME Cyber Assurance Level 2, and IASME Cyber Baseline.

Data Sharing

Unity Metrix may share personal data with trusted third-party service providers to support legitimate business interests, such as:

  • Certifying Bodies: For compliance purposes (e.g., IASME).
  • SaaS Providers: Such as Appcheck, monday.com, Gohighlevel, ScoreApp, and Intuit.

We ensure data processing agreements are in place to protect your information.

Exercising Your Data Subject Rights

You have the right to access, rectify, erase, restrict, and object to the processing of your data, as well as data portability. To exercise these rights, email DPOService@eugdpr.uk. We may verify your identity before processing requests and aim to respond within one month.

Complaints Handling

We aim to resolve complaints promptly:

  • Stage 1: Informal resolution within 48 hours.
  • Stage 2: Formal complaint response within 7 working days.
  • Stage 3: Board review within 14 working days.

For data protection complaints, you may also contact the ICO at https://ico.org.uk/global/contact-us/.

Data Protection Officer (DPO) Contact Information

Unity Metrix DPO Services
167-169 Great Portland Street, 5th Floor, London, W1W 5PF
Tel: 020 3778 2030
Email: DPOService@eugdpr.uk