Privacy & Data Protection Policy

Negso Ltd. Privacy Policy: 

Last Updated: 14 Feb 2025.

Who we are

Negso Ltd. (“we”, “our”, or “us”) is a company registered in the United Kingdom, specialising in information technology consultancy and engineering-related scientific and technical consulting activities. Established in December 2024, our mission is to provide expert solutions tailored to the needs of businesses and individuals in these fields.

We operate through our main website, Negso.co.uk, which serves as our corporate platform, and Negso.net, dedicated to our IT consultancy clients. Our services include expert advisory, technical support, and innovative solutions designed to optimise business operations and technological advancements.

At Negso Ltd., we are committed to maintaining the highest standards of data protection and privacy for our clients, partners, and website visitors. This Privacy Policy outlines how we collect, use, and safeguard your personal data in compliance with UK data protection laws.

Comments

When visitors leave comments on our site, we collect the information provided in the comments form, along with the visitor’s IP address and browser user agent string. This data helps us detect and prevent spam, ensuring a safe and secure user experience.

In compliance with the UK GDPR and applicable data protection laws, we only process this information for legitimate security and moderation purposes. Your IP address and browser details are not used for profiling or marketing. Additionally, if our site integrates with third-party spam detection services, your comment and associated data may be shared with such services solely for spam prevention.

By submitting a comment, you acknowledge and agree to this data processing. If you wish to have your comment removed, you may contact us via the details provided in our Privacy Policy.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images or other media files to our website, please ensure that they do not contain embedded location data (EXIF GPS). Visitors to the site may be able to download and extract location details from such files.

In line with UK GDPR and data protection best practices, we advise users to remove any sensitive metadata before uploading files to our platform. Any media content uploaded may be publicly accessible depending on the context in which it is shared.

By uploading media, you confirm that you have the right to share the content and that it does not violate any third-party rights or privacy regulations. If you believe your media has been shared inappropriately or wish to request its removal, please contact us using the details in our Privacy Policy.

Cookies

Negso Ltd. does not use cookies for advertising or tracking beyond what is necessary for website functionality and performance analysis. However, as our website operates on WordPress, some essential cookies may be set to support features such as user authentication and session management.

Additionally, we use Google Analytics to gather anonymised statistical data about website traffic and user interactions. This helps us improve our content and user experience. Google Analytics may set cookies to collect non-personal information, such as:

• Pages visited and time spent on the site.
• Browser type and operating system.
• General location (not precise or personally identifiable).

We ensure that IP anonymisation is enabled in Google Analytics to comply with UK GDPR regulations. No personally identifiable information (PII) is stored or shared through this service.

Managing Cookies

You can manage or disable cookies at any time through your browser settings. You may also opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on.

If you have any concerns regarding our use of cookies, please feel free to contact us.

Embedded content from other websites

Our website may occasionally include embedded content (such as videos, images, or articles) from third-party websites. Embedded content functions in the same way as if you visited the external website directly.

These third-party websites may collect data about you, use cookies, embed additional tracking, and monitor your interaction with their content—especially if you have an account and are logged into their platform.

Negso Ltd. does not control how third-party services handle your data. We recommend reviewing the privacy policies of any external websites whose content is embedded on our pages.

If you prefer to avoid such tracking, you can disable third-party cookies in your browser settings.

Who we share your data with

Negso Ltd. does not share your personal data with third parties for marketing, advertising, or any commercial purposes. Your data remains confidential and is only used for legitimate operational and security reasons as outlined in this Privacy Policy.

However, we may disclose information in the following circumstances:

• Legal Requirements – If required by law, regulation, or a valid court order, we may disclose necessary data to law enforcement authorities or regulatory bodies.
• Protecting Rights and Security – If necessary to prevent fraud, cyber threats, or any form of unlawful activity that may compromise our website or users.

We do not sell, rent, or distribute personal information to third parties under any circumstances.

If you have any concerns about data sharing, please contact us for further clarification.

How long we retain your data

Negso Ltd. retains personal data only for as long as necessary to fulfil the purposes for which it was collected, in accordance with UK GDPR and applicable data protection laws.

• Comments & User Contributions – If you leave a comment, the comment and its metadata are retained indefinitely. This allows us to recognise and approve any follow-up comments automatically instead of holding them for moderation.
• Contact Forms & Enquiries – If you contact us via a form or email, we retain the data for up to 6 months, unless further communication requires an extended retention period.
• Analytics Data – Data collected via Google Analytics is anonymised and stored for up to 26 months to help us analyse long-term website trends.
• Legal & Compliance Obligations – In cases where we are required by law to retain certain records (e.g., tax, legal compliance, or law enforcement requests), data will be stored for the legally required period before being securely deleted.

If you request the deletion of your personal data, we will process your request in line with legal and operational requirements.

For more details on data retention or to request data removal, please contact us.

What rights you have over your data

Under the UK GDPR, you have rights regarding the personal data we hold about you. These include:

• Right to Access – You can request a copy of the personal data we hold about you.
• Right to Rectification – If any of your data is inaccurate or incomplete, you can ask us to correct it.
• Right to Erasure (“Right to Be Forgotten”) – You can request the deletion of your personal data, except where we are legally required to retain it.
• Right to Restrict Processing – You can ask us to limit how we process your data under certain conditions.
• Right to Object – You can object to the processing of your data, particularly for analytics or automated decision-making.
• Right to Data Portability – You can request a copy of your data in a commonly used format to transfer to another service provider.
• Right to Withdraw Consent – If we rely on your consent to process your data, you can withdraw it at any time.

How to Exercise Your Rights

If you wish to make a request regarding your personal data, please contact us via the details provided in this Privacy Policy. We will respond within one month, as required by law.

If you believe we have not handled your data in compliance with GDPR, you have the right to lodge a complaint with the UK’s Information Commissioner’s Office (ICO) at www.ico.org.uk.

Where your data is sent

Negso Ltd. primarily processes data within the United Kingdom. However, in certain cases, non-classified and non-sensitive project data may be shared with our international team to facilitate service delivery. This will only be done with your explicit approval and confirmation and remains subject to UK data protection laws.

We do not transfer your private or personal data to any third party, individual, or organisation for any purpose other than legal compliance, as outlined in this Privacy Policy.

Any international data transfers will be handled in accordance with UK GDPR to ensure appropriate safeguards are in place. If you have concerns about how your data is processed internationally, please contact us for more information.

How We Protect Your Data

Negso Ltd. is committed to safeguarding your data using industry-standard encryption and security measures that comply with UK and EU regulations.

• Data Encryption – All databases, emails, and communications are encrypted using industry-standard protocols to prevent unauthorised access.
• Confidentiality of Project Files & Client Communication – We do not publish or share project files or client communications unless explicitly agreed upon for use in our portfolio.
• Legal Compliance – All data handling, storage, and communications are subject to UK and EU data protection laws, ensuring compliance with the highest security and privacy standards.
• Access Control – Only authorised personnel have access to sensitive data, and we regularly review our security measures to prevent breaches.

If you have any concerns about data security, please contact us for more information.

Data Breach Procedures

At Negso Ltd., we take data security seriously and have measures in place to detect, prevent, and respond to data breaches. However, in the unlikely event of a breach, we follow a structured response in compliance with UK GDPR and EU data protection laws.

Steps Taken in Case of a Data Breach:

1. Immediate Investigation – We will promptly assess the nature and scope of the breach to identify affected data and individuals.
2. Containment & Mitigation – Necessary actions will be taken to stop further data exposure, such as restricting access, resetting credentials, or strengthening security controls.
3. Notification of Affected Users – If the breach poses a risk to your rights and freedoms, we will notify affected individuals as soon as possible, providing details on what happened and recommended next steps.
4. Regulatory Reporting – If required under UK GDPR, we will report the breach to the UK Information Commissioner’s Office (ICO) within 72 hours of becoming aware of it.
5. Security Enhancements – Following the incident, we will review and improve our security protocols to prevent similar breaches in the future.

If you suspect a security issue related to your data, please contact us immediately using the details provided in this Privacy Policy.

Changes to This Privacy Policy

Negso Ltd. may update this Privacy Policy from time to time to reflect changes in legal requirements, business practices, or improvements in how we protect your data.

How We Notify You of Changes:

• Any significant updates will be posted on this page with a revised “Last Updated” date at the top of the policy.
• If the changes materially affect your rights or the way we process your data, we may provide additional notice via email or a prominent notification on our website.

We encourage you to review this policy periodically to stay informed about how we handle your data. If you continue using our website after any updates, it will be considered as acceptance of the revised terms.

If you have any questions about this Privacy Policy or how your data is handled, please contact us.

End.