Privacy Policy

Last Updated: January 2025

1. Introduction

Zimplex.AI (“we”, “our”, or “us”) is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

We process personal data in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679, the UK GDPR, and applicable data protection laws.

2. Data Controller

Zimplex.AI is the data controller responsible for your personal data.

Contact: info@zimplex.ai

Website: zimplex.ai

3. Information We Collect

We may collect the following types of information:

  • Identity Data: Names, job titles, school or organisation affiliations
  • Contact Information: Email addresses, phone numbers, postal addresses
  • Technical Data: IP addresses, browser types, operating systems, device information
  • Usage Data: Information about how you use our website and services
  • Marketing Preferences: Your preferences for receiving marketing communications
  • Professional Details: Information provided in job applications or enquiries

We do not intentionally collect special categories of sensitive personal data such as health information, religious beliefs, or biometric data.

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: Where you have given explicit consent for specific purposes
  • Contractual Necessity: To perform our obligations under a contract with you
  • Legal Compliance: To comply with legal obligations
  • Legitimate Interests: For our legitimate business interests, where not overridden by your rights

5. How We Use Your Information

We use your information for the following purposes:

  • Providing and improving our workflow automation services for educators
  • Responding to enquiries and providing customer support
  • Sending technical communications and service updates
  • Sending product updates and marketing communications (with consent)
  • Processing partnership and collaboration requests
  • Complying with legal obligations
  • Preventing fraud and ensuring security
  • Improving our website and user experience

6. Data Sharing

We may share your data with:

  • Service Providers: Cloud hosting providers, email services, analytics vendors
  • Professional Advisers: Lawyers, accountants, and auditors where necessary
  • Regulatory Bodies: Where required by law or regulation

For international data transfers, we use Standard Contractual Clauses and other appropriate safeguards to protect your data.

7. Data Retention

We retain your data for the following periods:

  • Contact form submissions: 2 years from last contact
  • Customer data: Duration of contract plus 7 years
  • Marketing data: Until consent is withdrawn
  • Analytics data: 26 months

8. Your Rights

Under GDPR, you have the following rights:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data (“right to be forgotten”)
  • Right to Restrict Processing: Request limitation of how we use your data
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise any of these rights, please contact us at info@zimplex.ai. We will respond within one month.

9. Cookies & Tracking

We use the following types of cookies:

  • Essential Cookies: Required for the website to function properly
  • Analytics Cookies: Help us understand how visitors use our site
  • Preference Cookies: Remember your settings and preferences
  • Marketing Cookies: Used for targeted advertising (with consent)

You can manage your cookie preferences through our cookie settings or your browser settings.

10. Data Security

We implement appropriate security measures including:

  • Encryption of data in transit and at rest
  • Regular security audits and assessments
  • Access controls and authentication measures
  • Staff training on data protection
  • Incident response procedures

11. Children's Privacy

Our services are directed toward educational institutions and teachers, not children. We do not knowingly collect personal data from individuals under 16 years of age. If we become aware of such collection, we will take steps to delete the information.

12. Supervisory Authorities

You have the right to lodge a complaint with a supervisory authority:

UK Information Commissioner's Office (ICO)

Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

ico.org.uk

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page with an updated revision date. We encourage you to review this policy periodically.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: info@zimplex.ai

Website: zimplex.ai