← Back to website

Privacy Policy

BrightCortex

1. Introduction

BrightCortex (“we”, “us”, “our”) is committed to protecting and respecting your privacy.

This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website or use our services, in accordance with applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR).

2. Data Controller

For the purposes of data protection law, BrightCortex is the data controller responsible for your personal data.

3. Information We Collect

We may collect and process the following types of personal data:

a) Information you provide directly:

  • name
  • email address
  • phone number
  • business details
  • any information submitted via forms or communication

b) Automatically collected data:

  • IP address
  • browser type and version
  • device information
  • pages visited and usage data

c) Communication data:

  • emails, messages, and enquiry records

4. How We Use Your Data

We use your personal data to:

  • respond to enquiries
  • provide and manage our services
  • communicate with you regarding projects
  • improve our website and services
  • ensure security and prevent misuse
  • comply with legal obligations

5. Legal Basis for Processing

We process personal data based on:

  • contractual necessity (to provide services)
  • legitimate interests (to operate and improve our business)
  • consent (where required, such as marketing communications)

6. Data Sharing

We may share your data with:

  • trusted subcontractors and developers
  • service providers (hosting, analytics, communication tools)
  • professional advisers or authorities where required

All third parties are required to process data securely and only for necessary purposes.

7. International Data Transfers

Due to the nature of our operations, your data may be processed by partners located outside the United Kingdom.

Where this occurs:

  • appropriate safeguards are implemented
  • data is transferred under contractual protections
  • reasonable steps are taken to ensure security

8. Data Security

We take appropriate technical and organisational measures to protect your personal data against:

  • unauthorised access
  • loss or misuse
  • alteration or disclosure

However, no system is completely secure.

9. Data Retention

We retain personal data only for as long as necessary to:

  • fulfil the purposes for which it was collected
  • comply with legal obligations

10. Your Rights

Under UK GDPR, you have the right to:

  • access your personal data
  • request correction of inaccurate data
  • request deletion of your data
  • restrict or object to processing
  • request data portability (where applicable)

11. Cookies and Tracking

We use cookies and similar technologies to:

  • improve website functionality
  • analyse traffic and usage
  • enhance user experience

12. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices.

13. Limitation of Liability (Data & Security)

While we take reasonable measures to protect your personal data, no system is completely secure.

To the fullest extent permitted by law:

  • BrightCortex shall not be liable for any loss, damage, or unauthorised access to data arising from circumstances beyond our control
  • this includes cyber attacks, third-party failures, or technical issues
  • we do not guarantee uninterrupted or error-free operation of our systems

Users are responsible for ensuring their own systems are secure.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be published on this page.

15. Contact

For any questions regarding this Privacy Policy or your data, please contact BrightCortex.

Scroll to Top