Privacy Policy | Automate Health

Privacy Policy for Automate Health Limited

Last updated: January 16, 2026

Automate Health Limited ("we", "us", or "our") is committed to protecting your privacy and ensuring that your personal information is handled responsibly. This Privacy Policy explains how we collect, use, share, and protect your personal data when you visit our website (automatehealth.com or automate-health.webflow.io) or interact with our services.

We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable UK data protection laws.

1. Who We Are

We are Automate Health Limited, a private limited company registered in England and Wales with company number 15782482.

Our registered office is: Bath House, 16 Bath Row, Stamford, Lincolnshire, England, PE9 2QU.

We are the data controller responsible for your personal data. If you have any questions about this Privacy Policy or our data practices, please contact us at: info@automatehealth.com or by post at the above address.

2. What Personal Data We Collect

We may collect the following types of personal data:

Information you provide directly: Name, email address, phone number, company name, job title/position, message content (which may include details about your company or business, such as sensitive trading or company information), or any other details you submit via web forms, enquiries, or communications.
Automatically collected information: IP address, browser type, device information, referring website, pages viewed, and time spent on our site (via cookies and similar technologies).
Other data: Any information you provide in communications with us.

We do not intentionally collect sensitive personal data (e.g., health, racial or ethnic origin) unless necessary and with your explicit consent. Note that while we may receive business or company-related information through web forms or messages, this Privacy Policy applies specifically to personal data; any non-personal company information is handled with strict confidentiality and not shared externally.

3. How We Collect Your Personal Data

Directly from you (e.g., when filling out web forms on our website, such as contact or enquiry forms).
Automatically through cookies, server logs, and analytics tools (e.g., Google Analytics or similar).
From third parties, such as analytics providers (where permitted).

For more on cookies, see our Cookie Policy.

4. Why We Process Your Personal Data (Purposes and Lawful Bases)

We process personal data only where we have a lawful basis under UK GDPR:

Purpose	Types of Personal Data	Lawful Basis (UK GDPR)
To respond to enquiries or provide requested information/services	Name, email address, phone number, company name, job title, message content	Performance of a contract or legitimate interests (responding to potential customers or partners)
To improve our website and services (analytics)	IP address, browsing behaviour	Legitimate interests (website optimisation)
To send marketing communications (where you opt in)	Name, email address	Consent
To comply with legal obligations	Any relevant personal data	Legal obligation
To administer and protect our business and website	IP address, device information	Legitimate interests (business security and fraud prevention)

We will only use your data for the purposes for which we collected it, unless we reasonably consider another purpose compatible.

5. Sharing Your Personal Data

We do not share your personal data externally for any third party's own purposes. Any sharing is limited to:

Service providers (e.g., hosting providers, analytics tools, email services) acting strictly as processors under our instructions and bound by data protection agreements.
Regulators or authorities if required by law.

We require all such parties to respect the security of your data and treat it in accordance with the law. We do not sell your personal data. Sensitive trading or company information provided to us is handled internally only and is not shared externally.

6. International Transfers

If we transfer your data outside the UK, we ensure adequate safeguards (e.g., UK International Data Transfer Agreements or adequacy decisions).

7. Data Security

We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or misuse. This includes encryption, access controls, and regular security reviews.

8. How Long We Keep Your Data

We retain personal data only as long as necessary for the purposes set out above, or to comply with legal requirements. For example:

Enquiry data: Up to 2 years.
Marketing consents: Until withdrawn.

After this, we securely delete or anonymise it.

9. Your Rights

Under UK data protection law, you have rights including:

Access: Request a copy of your data.
Rectification: Correct inaccurate data.
Erasure: Request deletion ("right to be forgotten").
Restriction: Limit processing in certain cases.
Objection: Object to processing based on legitimate interests or direct marketing.
Portability: Receive your data in a structured format.
Withdraw consent: Where we rely on consent.

To exercise these rights, contact us using the details in section 1. We respond within one month (extendable in complex cases).

You also have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk/concerns or by phone: 0303 123 1113.

10. Cookies

Our website uses cookies to enhance user experience. See our separate Cookie Policy for details, including how to manage preferences.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted here with an updated "Last updated" date. Significant changes will be highlighted.

12. Contact Us

For questions or to exercise your rights:

Email: info@automatehealth.com

Post: Automate Health Limited, Bath House, 16 Bath Row, Stamford, Lincolnshire, PE9 2QU.