Keystrand

Privacy Policy

1. Who we are

Keystrand is a UK-based automation and AI consultancy operating under the name Keystrand (“we”, “us”, “our”).

For the purposes of UK data protection law, we act as the data controller for personal data collected via this website and our communications.

Contact details:
Email: hello@keystrand.co.uk
Website: https://www.keystrand.co.uk

2. Personal data we collect

We may collect and process the following categories of personal data:

  • Name, company name, and job title
  • Email address and other contact details
  • Information you provide when contacting us or enquiring about services
  • Technical data such as IP address, browser type, device information, and basic website usage data

We do not intentionally collect special category (sensitive) personal data.

3. How we collect personal data

Personal data is collected when you:

  • Contact us via our website or email
  • Engage with us regarding potential or active services
  • Visit and browse our website

4. Analytics

At present, we do not use analytics or tracking tools on this website.

When analytics are enabled, this Privacy Policy and our Cookie Policy will be updated accordingly.

5. Why we process personal data (lawful basis)

We process personal data under the following lawful bases:

  • Legitimate interests – responding to enquiries and operating our business
  • Consent – where you explicitly opt in (for example, marketing communications)
  • Contractual necessity – where processing is required to provide agreed services

6. How we use personal data

We use personal data to:

  • Respond to enquiries and communicate with you
  • Provide and manage professional services
  • Operate and improve our website
  • Comply with legal, regulatory, or accounting obligations

We do not sell personal data and do not use it for automated decision-making.

7. Marketing communications

We may contact you in response to a direct enquiry or where there is a legitimate business interest.

You can opt out of marketing communications at any time by contacting us or using any unsubscribe mechanism provided.

8. Data sharing and third parties

We may share personal data with trusted third-party service providers where necessary, including:

  • Website hosting and email services (provided by Hostinger)

These providers process data only on our instructions and are required to apply appropriate security measures.

9. International data transfers

Some third-party service providers may process data outside the UK.

Where this occurs, we ensure appropriate safeguards are in place in accordance with UK GDPR, such as standard contractual clauses or equivalent protections.

10. Data retention

We retain personal data only for as long as necessary:

  • Enquiry-related data is typically retained for up to 24 months
  • Client-related data is retained for the duration of the engagement and as required by legal or accounting obligations

11. Data security

We apply appropriate technical and organisational measures to protect personal data, including access controls, secure systems, and least-privilege access principles.

12. Your rights

Under UK data protection law, you have the right to:

  • Access your personal data
  • Request correction or deletion
  • Object to or restrict processing
  • Withdraw consent where applicable
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

13. Changes to this policy

We may update this Privacy Policy from time to time.
The most current version will always be available on our website.