Privacy Policy

Privacy Policy

WANDIQ LIMITED
Company number 16888143
Incorporated in England and Wales

Effective date: 1 October 2025

Version: 1.0

1. Introduction

This Privacy Policy explains how WANDIQ LIMITED (“we”, “us”, “our”) processes personal data when acting:

as a data controller for limited purposes, and

as a data processor on behalf of our customers.

We are committed to protecting personal data and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Our role under data protection law

When we act as a data controller

We act as a data controller for personal data relating to:

enquiries, sales, and account management

billing and invoicing

website usage and basic analytics

compliance, security, and fraud prevention

communications with customers and prospective customers

In these cases, this Privacy Policy applies directly.

When we act as a data processor

When we provide our platform and services to customers, we process personal data solely on their instructions.

In these cases:

our customers are the data controllers

WANDIQ LIMITED acts as a data processor

processing is governed by our Data Processing Agreement (DPA)

If you are an end user, patient, or client of one of our customers, please refer to their privacy notice for information about how your data is used.

Our DPA is available at: https://wandiq.co.uk/dpa

3. Personal data we collect (controller activities)

When acting as a data controller, we may collect:

name

email address

company name and role

contact details

billing and payment information

correspondence and support communications

technical data such as IP address and browser type

We do not intentionally collect special category data in our controller capacity.

4. How we use personal data

We use personal data for the following purposes:

responding to enquiries

providing and administering our services

managing customer relationships

billing and payment processing

maintaining platform security and integrity

complying with legal obligations

We process personal data only where we have a lawful basis, including contract performance, legitimate interests, or legal obligation.

5. Special category data

We may process special category data, including health-related data, only when acting as a data processor on behalf of customers.

Such processing is carried out strictly in accordance with our customers’ instructions and our Data Processing Agreement.

6. Sharing personal data

We may share personal data with trusted third parties where necessary to deliver our services, including:

cloud infrastructure and hosting providers

communication and messaging providers

automation and integration platforms

security and monitoring providers

Details of sub-processors used for service delivery are published at: https://wandiq.co.uk/subprocessors

We do not sell personal data.

7. International data transfers

Personal data may be processed in the United Kingdom, the European Economic Area, and in third countries, including the United States.

Where required, we rely on appropriate safeguards in accordance with UK GDPR.

8. Data retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including legal, accounting, or reporting requirements.

Where we act as a data processor, retention and deletion are governed by our Data Processing Agreement and customer instructions.

9. Security

We implement appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.

We do not guarantee absolute security, but we take data protection seriously and review our safeguards regularly.

10. Your rights

Where we act as a data controller, you have rights under UK GDPR, including the right to:

access your personal data

request correction or deletion

restrict or object to processing

lodge a complaint with the Information Commissioner’s Office (ICO)

Where we act as a data processor, requests should be directed to the relevant data controller.

11. Cookies and website analytics

Our website may use essential cookies and basic analytics to ensure proper operation and improve performance.

Further details may be provided in a separate cookie notice.

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time.

The current version will always be published on this page. Material changes will apply prospectively unless required by law.

13. Contact us

If you have questions about this Privacy Policy or our data protection practices, please contact: Email: [email protected]
Company: WANDIQ LIMITED