Privacy Policy
Respecting your privacy and being transparent about the use of personal data is import to Prodromic Limited ("We", “us”, “our”, “Prodromic”).
This Privacy Notice covers processing of personal data collected via our website and/or direct marketing/ business development emails and conference exchanges, and reflects legal requirements and regulations.
1. About us
Prodromic provides conducts research and develops software to improve brain health. We are a company registered in England and Wales (company number: 15868742) with a registered office address of 17 Farway Gardens, Codsall, United Kingdom, WV8 2QA.
We are registered as controllers of personal data with the Information Commissioner (ICO registration number XXX).
If you have any questions about this privacy notice, or how we process your personal information, please contact us at:
Email: support@prodromic.ai
Address: Data Protection Enquiries, Prodromic, 17 Farway Gardens, Codsall, United Kingdom, WV8 2QA.
2. Information we collect
When you use our website:
If you complete the contact form – name, email address, company name if relevant, and your free-text message
If you reply to a direct marketing communication – requests to unsubscribe and communication preferences, which are maintained alongside your identity and contact data
If you email/ complete an online contact form – your name, contact details, company name if relevant, and any other personal details you choose to share with us in the communication
In person:
When you give us your details in person at a conference for example – usually name, email and job title.
You are under no obligation to provide any such information. When you do share information with us, you acknowledge and agree that you are only providing us with your own personal data, and that you must not provide us with the personal data of any third party, or any data which may be considered unlawful.
Information collected automatically when using the website
We automatically collect certain information about your device, what websites or search terms referred you to the Site, and how you interact with the Site.
Information we collect from other sources
For the purposes of direct marketing in a business context if relevant, we may collect your identity and contact data including title, name, job title/ function, the organisation you work for or are engaged by, email address, telephone numbers, address from:
The internet
Purchased lists from UK GDPR-compliant providers
How we use collected information
When responding to contact made via our website and to provide any information requested:
To action any request you make via an online form, for example to contact you by phone or email if further information is required as a result of your completion of one of these specific forms
To add to our customer relationship management and marketing automation systems where you are (or are potentially) a procurer of our services or a (potential) investor, business partner or collaborator, and it is our business development, product development, research, or senior leadership teams who are best placed to provide the information you have requested or to respond to your message
For other direct marketing purposes where the method of communication depends on the relationship we have with you, any known preferences, and/ or our legitimate interests, where a legitimate interests assessment has been completed (e.g.s: relevant corporate 3rd parties such as HR directors
To evidence your consent where applicable
To understand where new services are needed
Legal basis for processing your personal data:
We use your Personal Data only as permitted by law, for the purposes for which we collected it. Under the UK General Data Protection Regulations the different purposes of processing your data are legally permitted under Article 6 (1) (a) consent, Article 6 (1) (b) contract or Article 6 (1) (f) legitimate interests. Where the legal basis of the processing is Legitimate Interests, a legitimate interests assessment has been carried out and the legitimate interests identified as being able to inform customers about changes in the service, our attendance at conferences etc, or to make potential new customers aware that services/ opportunities to meet us exist, to provide answers to questions posed by website visitors), or information to potential investors, business partners and/ or collaborators.
3. Sharing your information
We won’t share any of your personal data with third parties except as explained in this policy or otherwise agreed between you and us from time to time.
If you are an individual representing an organisation for whom our company or services may be, or already are, of interest and are added to our customer relationship management system and or marketing automation system, then we may contact you in line with our marketing and business development communications protocols and Legitimate Interests Assessment for purposes such as informing you about Prodromic services or attendance at conferences etc, and where we offer you the option of opting out of such communications.
We may share your personal data with third parties where we're required to do so by law or regulation (such as in connection with an investigation of fraud or other legal enquiry) or in connection with other legal proceedings (including where we believe that your actions violate applicable laws or any agreement with us, including our Terms of Use).
In the event that our business or any part of it is sold or integrated with another business, your details may be disclosed to our advisers and those of any prospective purchaser and will be passed to the new owners of the business.
We may disclose aggregate statistics about visitors to the Site in order to describe our services to prospective partners and other reputable third parties and for other lawful purposes, but these statistics will include no personally identifiable information.
4. Transferring data outside the UK
We seek where possible to prevent any transfers of your personal information to countries which do not have adequate data protection standards.
If we transfer your Personal Data out of the European Economic Area (EEA) and the UK to a country not deemed by the relevant regulatory authority to provide an adequate level of personal information protection, the transfer will be performed (i) pursuant to the recipient’s compliance with standard contractual clauses or Binding Corporate Rules; (ii) pursuant to your consent; or (iii) as otherwise permitted by applicable data protection requirements.
5. How we secure your personal data
We place great importance on the security of personal information. We have put controls in place to safeguard your personal information, applying physical, technical and procedural measures against unauthorised access, loss, misuse and alteration of personal information under Our control.
We limit access to your personal data to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We'll notify you without undue delay in accordance with the requirements of data protection laws, if we have reason to believe that there has been a personal data breach by us which could adversely affect your rights and freedoms and we're required by law to notify you.
6. How we store your personal data
We use a small number of well-known SaaS (Software as a Service) providers to store subsets of your personal data and we have Data Processor Agreements in place with each SaaS provider. Where possible, these providers store the data in the UK or EEA. Where they are located outside the UK/ EEA we ensure they are party to an adequacy agreement or have in place one of the additional safeguards necessary to make the transfer such as Binding Corporate Rules or Standard Contractual Clauses (with additional technological and organisational controls as necessary or appropriate) to uphold your legal data protection rights.
Retention details:
If you have sent a contact message via the website or a direct email, the retention periods for your personal information will vary. We will consider the amount, nature and sensitivity of the data, the potential risk of harm from unauthorised use or disclosure of it, and any applicable legal or regulatory requirements.
7. Your data protection rights
Data protection law provides you with rights that Prodromic is committed to supporting you with:
The right to request a copy of your personal data held by us;
The right to correct any inaccurate or incomplete personal data held by us
The right to request that we erase personal data we hold about you;
The right to request that we restrict the processing of your data;
The right to have your personal data transferred to another organisation;
The right to object to certain types of processing of your personal data by us;
The right to request that you are not subject to any decision which is based solely on automated processing, including profiling, where this produces legal effects or otherwise significantly affects you; and
The right to complain.
Please note that these rights are not absolute in all situations and may be subject to conditions and provisions set out in data protection laws. For instance, data processed for health, employment and legal purposes, or where other legitimate grounds for the processing apply, are examples of circumstances where some of these rights may be restricted or not apply in practice. Where the legal basis of the processing is Legitimate Interests and the activity is direct marketing, the right to object is absolute.
For more detailed information on your rights visit https://ico.org.uk/for-the-public/.
If you need any assistance in these areas, please contact us.
8. Links to external websites:
The Website may contain links to other websites that are not owned or controlled by us. Please be aware that we are not responsible for such other websites or third parties' privacy practices. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies.
9. Cookies
A cookie is a small data file stored by your browser for record-keeping purposes and typically includes a unique reference code that relates to, or is accessed from, a user's device and that enables that device to be remembered when next visiting the same site.
Session cookies are stored only temporarily during a browsing session and are deleted from the user’s device when the browser is closed; Persistent cookies are saved on your computer for a longer, fixed period and are not deleted when the browser is closed and are used to remember you when you visit the website again; and Third party cookies are set by a different organisation to the owner of the website you are visiting. They might include cookies set for website visitor analytics or embedded content, for example Google Analytics. You can opt-out from the collection of this information by Google by downloading and installing a browser plug-in at https://tools.google.com/dlpage/gaoptout.
Most computers and some mobile devices will automatically accept cookies but, if you prefer you can change your browser to prevent that or to notify you each time a cookie is set. You can also learn more about cookies by visiting www.allaboutcookies.org which includes additional useful information on cookies and how to block cookies using different types of browser.
10. Contact
Questions, comments and requests regarding these privacy notices or data protection should be addressed to support@prodromic.ai
You have the right to make a complaint at any time to the relevant supervisory authority for data protection issues, which in the UK is the Information Commissioner's Office (ICO) (www.ico.org.uk).
11. Changes to these Privacy Notices
We reserve the right to change these privacy notices from time to time by changing it on the website and we may provide you notice of these changes by any reasonable means, including by providing notice through the Site. By continuing to access, browse or use the website, you confirm your acceptance of the revised privacy policy.
Effective date: 30/01/2025