Privacy Policy

At Empex Digital, we value your privacy and are committed to protecting personal data. This Privacy Policy explains what we collect, how we use it, how we keep it secure, and the rights you have under UK data protection laws.

1. Who We Are

EMPEX DIGITAL LTD is a digital services provider based in the United Kingdom. Our core offering is AI automation services, supported by engineering services such as web development, cloud hosting, digital strategy, email infrastructure, and ongoing maintenance.

• Company number: 16489057
• VAT number: 511230750

2. What Information We Collect

We may collect the following types of information:

• Identity and contact details (e.g., name, email address, phone number)
• Business or project information you submit via forms or messages
• Booking and enquiry details (e.g., requested service, dates, notes)
• Usage data (e.g., pages visited, time on page, actions taken) where analytics are enabled
• Technical data (e.g., IP address, browser type, device type, approximate location)

3. How We Collect Your Data

We collect data in the following ways:

• When you submit forms on our website (contact, booking, quote, careers where applicable)
• When you communicate with us (email, phone, social media, messages)
• Automatically through cookies and similar technologies (only where enabled / consented, depending on your settings)

4. How We Use Your Information

We use your information to:

• Provide, operate, and improve our services
• Respond to enquiries, manage bookings, and provide support
• Send service-related communications (e.g., confirmations, updates)
• Send marketing communications where you have opted in (or where permitted by law)
• Maintain website security, prevent abuse, and troubleshoot issues
• Comply with legal obligations and enforce our terms

5. Legal Basis for Processing

Under UK GDPR, we only process personal data when we have a lawful basis. This may include:

• Consent (e.g., you opt in to marketing or accept cookies where required)
• Contract (e.g., we need your details to provide a service you requested)
• Legitimate interests (e.g., improving services, preventing fraud, keeping systems secure)
• Legal obligation (e.g., compliance with UK law, accounting requirements)

6. AI Automation and Automated Processing

Some services we provide involve automation and may use artificial intelligence to process information. For example, we may build workflows that summarise messages, classify enquiries, route tasks, generate drafts, or trigger actions across business systems.

Where we use automation, we follow a privacy-aware approach and aim to minimise data exposure. Unless explicitly agreed in writing, we do not require you to provide sensitive personal data to use our website or make an enquiry.

Important: Please do not submit special category personal data (for example, health data, biometric data, or similar sensitive information) through our website forms unless we have explicitly agreed to a secure process in writing.

7. Marketing Communications

If you opt in, we may send you marketing messages about Empex Digital services and updates. You can unsubscribe at any time using the link in our emails (where provided) or by contacting us via our contact form.

8. Sharing Your Information

We do not sell or rent personal data. We may share data with trusted service providers only where necessary to operate our services (for example, hosting providers, email delivery services, analytics, spam protection, and file storage). These providers are required to protect your data and only process it under our instructions, where applicable.

For AI automation projects, we may use third-party platforms and APIs (for example, automation tools, integrations, or model providers) as part of delivery. Where this occurs, we aim to use privacy-aware configurations and limit data shared to what is necessary for the workflow.

We may also disclose information where required by law, or to protect our rights, users, or services.

9. Cookies & Tracking

We may use cookies and similar technologies to enhance your browsing experience, remember preferences, and understand how the site is used. You can learn more in our Cookie Policy.

10. Data Retention

We retain personal data only as long as necessary for the purposes we collected it for, including providing services, maintaining records, resolving disputes, and meeting legal requirements. Retention periods may vary depending on the type of data and our obligations.

11. Security

We take appropriate technical and organisational measures to protect information against unauthorised access, loss, misuse, or alteration. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

12. Your Rights

Under UK GDPR, you may have rights including access, correction, deletion, restriction, objection, and data portability. To exercise your rights, contact us via our contact form.

13. International Data Transfers

Some service providers may process data outside the UK. Where this occurs, we take steps to ensure appropriate safeguards are in place, such as contractual protections or other legally recognised mechanisms required under UK data protection laws.

14. Third-Party Links

Our website may include links to third-party websites. We are not responsible for their privacy policies or practices. We encourage you to review their policies before providing personal information.

15. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website, and the “Last updated” date at the top of this page indicates the current version.

16. Contact Us

If you have any questions or concerns about this Privacy Policy, please use our contact form.