Crown Datalytics
Legal

Privacy Policy

How Crown Datalytics Ltd collects, uses, protects and retains personal data across the public website, client onboarding and secure operational services.

Last updated: 12 March 2026

Who we are

Crown Datalytics Ltd is a UK consultancy working in data migration, integration architecture, Microsoft platform delivery, analytics and governed AI solutions. For the purposes of UK data protection law, Crown Datalytics Ltd is usually the controller of the personal data described on this page unless we are acting solely on a client's documented instructions as a processor.

Contact email: info@crowndatalytics.com

Information we may collect

  • Identity and contact details you submit when you contact us, ask for a proposal, request a call or send a website message.
  • Business and project context you choose to share, such as your company name, target systems, migration scope, delivery constraints or procurement requirements.
  • Technical and security data generated when you use the website or secure services, including IP address, browser details, request timestamps, audit trails and operational diagnostics.
  • Administration data required to run secure tools, such as account details, authentication events, API activity and encrypted integration credentials where relevant to the secure service itself.

How we use personal data

  • To respond to enquiries, arrange calls, prepare proposals and take steps before a contract is agreed.
  • To deliver consultancy, migration, integration, analytics and AI-related services.
  • To run, secure, monitor and improve our websites, secure admin areas and supporting operational tooling.
  • To investigate misuse, failed sign-in attempts, service issues or suspected abuse of our systems.
  • To meet legal, accounting, tax, audit and contractual obligations.

Our lawful bases

Depending on the context, we rely on one or more of the following lawful bases under UK data protection law:

  • Legitimate interests for handling business enquiries, protecting systems, improving delivery processes and operating a secure professional website.
  • Contract where processing is necessary to take requested pre-contract steps or to perform an agreement with you or your organisation.
  • Legal obligation where we must keep or disclose information for compliance, tax, accounting, fraud-prevention or law-enforcement reasons.
  • Consent where this is specifically required, such as for any future non-essential cookie deployment or optional marketing communication.

Sources of personal data

We normally receive personal data directly from you, from your employer or from your organisation's representatives. In delivery work we may also receive business contact information, user details or system metadata from a client where that is necessary to scope, support or operate the agreed service.

Sharing data

We do not sell personal data. We may share data with hosting providers, email providers, security and operational tooling providers, or other specialist processors where that is necessary to run our services. We may also disclose information where required by law or where necessary to establish, exercise or defend legal claims.

Where we process data on behalf of a client, the sharing model and responsibilities are governed primarily by that client's contract and any data processing terms.

International transfers

Some supporting services may involve data processing outside the UK. Where that happens, we aim to use appropriate safeguards, such as adequacy arrangements or contractual protections, appropriate to the transfer.

Retention

  • General enquiries are retained only for as long as reasonably necessary to respond, follow up and assess commercial relevance.
  • Client delivery, billing and contract records may be retained longer where needed for operational, legal, audit or accounting reasons.
  • Security logs and audit records are retained for as long as reasonably necessary to protect systems, investigate incidents and support traceability.

We review retention periodically and remove or minimise data that is no longer needed.

Your rights

You may have rights to request access, rectification, objection, restriction, erasure or portability, depending on the circumstances. You also have the right to complain to the Information Commissioner's Office if you believe your information has been handled unlawfully.

To exercise a right or ask a question about this policy, contact info@crowndatalytics.com.

Children and automated decisions

This website is designed for business audiences and is not intended for children. We do not use the public website to make solely automated decisions about individuals that have legal or similarly significant effects without human involvement.

Security

We use technical and organisational controls designed to reduce the risk of unauthorised access, misuse, disclosure or loss. These may include access restrictions, encrypted storage for sensitive integration data, audit logging, rate limiting, private configuration management and monitored operational workflows.

This privacy policy explains how the website and related services currently operate. It does not replace project-specific contracts, confidentiality terms or any client-specific data processing agreement.