☎ Call Us ✉ Email Us

Privacy Policy

Data Controller Information

Kestrel Life Sciences Limited is your data controller for all personal data you enter on this website or provide via other channels. We are committed to protecting your privacy and the safety of your data as described in this privacy policy.

Please read the policy in full, as it sets out the basis for processing of all personal data. We also provide an outline of your rights. We will not process personal data provided to us via our website in ways not specified in this Privacy Policy. Any third parties that process your data do it on our behalf and are also bound to provide the same level of protection and rights as Kestrel Life Sciences Limited.

When Do We Collect Your Data

We collect and process your personal data in the following cases, if you:

We may also sometimes obtain data from other third parties. If this is the case, we will contact you as a data subject immediately, notifying you that we have received the data.

Types of Data We Collect

Depending on the purpose of data collection, we might collect the following data: name and surname, e-mail address, business address and phone number.

When You Contact Us

We will use your contact details in order to respond to your query and better understand your question. Depending on your question, we might forward it to third party experts who will provide you with a quality answer.

Data Belonging to Minors

We do not offer our services specifically to children and minors. In case we come into possession of such data, we will demand parental consent or notify the parent for processing.

Data Safety

We keep your data safe by working together with our IT technicians who are responsible for data safety. Any third parties are bound by agreements guaranteeing data protection at least as adequate as those in this policy. This includes accountants, IT specialists, consultants etc. Our website is hosted by a British hosting company and secured in accordance with modern safety best practices.

Data Retention Period

We generally keep your data only for as long as it is necessary. When you contact us, we delete the data within a reasonable time frame after your query. Most contact details are deleted after 2 years, but you can demand we delete the data sooner, in line with the rights outlined below.

Your Other Rights

You have the following rights when it comes to your personal data:

You can object to our processing of your personal data at any time. We will stop the processing in that case, while we determine whether our legitimate interests outweigh the risks to your freedoms and security. We will never process your personal data if the impact on your security and freedom outweighs our legitimate interests, unless you give us explicit consent or if we are required by law to do so.

We will respond to your requests within a month. We will notify you if we need more time (up to two additional months) to process your request.

Data Breach Procedures

A personal data breach refers to a variety of data security incidents that may occur during everyday business operation. It comprises a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to your personal data stored with us.

In case we experience a data breach, we will report the breach to the supervisory authority within 72 hours at most. We will provide all the necessary information as soon as it becomes available.

Lodging a Complaint

At any time, but especially if you feel we cannot solve a dispute in an amicable way or believe we have infringed upon your rights, you have the right to lodge a complaint with the Information Commissioner’s Office, at https://ico.org.uk/make-a-complaint/.

Contact

If you wish to exercise your rights or have any other questions, please contact us at dataprotection@validationfactory.co.uk.