Browser Compatibility Issue This site requires JavaScript and a modern browser (Chrome, Firefox, Safari, or Edge) for the best experience.
Skip to main content

Privacy Policy

Last updated: 29 October 2025

Introduction

Numen Technology ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website numentechnology.co.uk and use our services.

In Plain English: We only collect data that helps us provide better service to you. We're transparent about what we collect and give you full control over your privacy preferences.

Company Details:

Numen Technology Company No 13262519 Registered in England and Wales
Numen Technology Limited, 86-90 Paul Street, London, EC2A 4NE, United Kingdom

ICO Registration: ZC018646

We are registered with the Information Commissioner's Office (ICO) as required under the Data Protection Act 2018.

Information We Collect

Personal Information You Provide

When you submit our contact form, we collect:

  • First name and last name (required)
  • Email address (required)
  • Company name (optional)
  • Phone number (optional)
  • Message/inquiry details (optional)

Automatically Collected Information

Vercel Analytics and Speed Insights: We use Vercel Analytics and Speed Insights to understand website usage and performance. These services collect anonymous, aggregated data including:

  • Page views and navigation patterns
  • Referral sources (where visitors came from)
  • Device type and browser information
  • Geographic location (country/region level only)
  • Website performance metrics (Core Web Vitals: page load speed, interactivity, visual stability)

Both Vercel Analytics and Speed Insights are privacy-friendly and do not use cookies or track individual users across websites. No personally identifiable information is collected. Learn more at: Vercel Analytics Privacy Policy and Vercel Speed Insights Privacy Policy

Server Logs: Our hosting provider (Vercel) automatically collects certain technical information for security, performance monitoring, and troubleshooting purposes:

  • IP addresses (anonymised after 7 days)
  • Browser type and version
  • Operating system
  • Pages visited and time spent
  • Date and time of access
  • Referring website addresses

Legal Basis: Legitimate interest in maintaining security, preventing abuse, and ensuring proper website functionality. Server logs are retained for up to 30 days and then automatically deleted.

Cookies

We use cookies and similar tracking technologies. You can manage your preferences through our cookie consent banner.

Cookie Categories

Analytics Cookies (6 cookies):

  • _ga (Google Analytics) - 2 years - Distinguishes unique users
  • ga* (Google Analytics) - 2 years - Maintains session state
  • _gid (Google Analytics) - 24 hours - Distinguishes unique users
  • _clck (Microsoft Clarity) - 1 year - Persists Clarity user ID
  • _clsk (Microsoft Clarity) - 1 day - Connects multiple page views in a session
  • CLID (Microsoft Clarity) - 1 year - Identifies unique users

Marketing Cookies (8 cookies):

  • _gcl_au (Google Ads) - 90 days - Conversion tracking
  • gac* (Google Ads) - 90 days - Campaign information
  • test_cookie (Google Ads) - 15 minutes - Checks if cookies enabled
  • li_sugr (LinkedIn) - 90 days - Browser ID for LinkedIn Ads
  • UserMatchHistory (LinkedIn) - 30 days - LinkedIn Ads ID syncing
  • bcookie (LinkedIn) - 1 year - Browser identification
  • lidc (LinkedIn) - 1 day - Routing and session information
  • bscookie (LinkedIn) - 1 year - Secure browser ID

How We Use Your Information

Contact Form Data

We use the information you provide through our contact form for the following purposes:

  • To respond to your inquiries and provide customer support
  • To communicate with you about our services
  • To process and manage business relationships
  • To comply with legal obligations

Legal Basis: We process your data based on your consent (when you submit the form) and our legitimate business interests in responding to inquiries and providing services.

Cookie Data

We use cookies and similar tracking technologies for the following purposes:

  • Essential Cookies: To remember your cookie preferences and enable core website functionality
  • Analytics Cookies: To understand how visitors interact with our website, identify popular content, and improve user experience
  • Marketing Cookies: To deliver personalised advertising, measure ad performance, and enable retargeting

Legal Basis: Essential cookies are necessary for the website to function (legitimate interest). Analytics and marketing cookies are only set with your explicit consent, which you can withdraw at any time.

Manage Your Preferences: You can change your cookie settings at any time by clicking "Cookie Settings" in the footer of any page.

Third-Party Data Processing

We work with trusted third-party service providers to help us deliver our services. All our data processors are GDPR-compliant and have signed Data Processing Agreements (DPAs) with us to protect your data.

HubSpot (CRM and Analytics)

We use HubSpot for two purposes:

  • Contact Form Storage (No consent required): When you submit our contact form, your information is sent to and stored in HubSpot CRM, our customer relationship management system. This is necessary to respond to your inquiry.
  • Website Analytics (Requires analytics consent): With your analytics consent, HubSpot tracking code monitors website visitor behaviour, page views, and form interactions to help us improve user experience.

Data Location: EU data centre (GDPR-compliant)

Cookies Set: hubspotutk, __hstc, __hssc, __hssrc (only with analytics consent)

Privacy Policy: HubSpot Privacy Policy

Analytics and Advertising Services

With your consent, we use third-party analytics and advertising services to understand website usage and deliver relevant advertising. These services only load if you accept analytics or marketing cookies.

Google Analytics (GA4)

Website analytics and user behaviour insights

Requires: Analytics consentPrivacy Policy

Microsoft Clarity

Heatmaps, session recordings, and behaviour analytics

Requires: Analytics consentPrivacy Policy

HubSpot Tracking

Website visitor tracking and form submission analytics

Requires: Analytics consentPrivacy Policy

Google Ads

Conversion tracking and campaign performance measurement

Requires: Marketing consentPrivacy Policy

LinkedIn Insight Tag

B2B advertising and conversion tracking

Requires: Marketing consentPrivacy Policy

Hosting

Our website is hosted on Vercel, which may process technical data (such as IP addresses) for the purposes of delivering the website. Vercel is GDPR-compliant and participates in the EU-US Data Privacy Framework.

Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Data TypeRetention PeriodLegal Basis
Contact form leads (name, email, phone, company, message)2 years from last contactLegitimate interest in business relationship management
Active business relationships (customers, prospects)Duration of relationship + 2 yearsContract performance and legitimate interest
Cookie consent records (preferences, timestamp)Stored in browser until cleared or 2 years of inactivityLegal obligation (GDPR consent tracking)
Google Analytics data (anonymised usage patterns)26 months (Google default)Consent-based analytics
Microsoft Clarity data (session recordings, heatmaps)12 monthsConsent-based analytics
HubSpot tracking data (visitor behaviour, page views, form interactions)13 months (HubSpot default)Consent-based analytics
Email correspondence (business inquiries, support)7 yearsLegal obligation (UK tax law, potential disputes)
Server logs (IP addresses, access logs)30 days (IP anonymised after 7 days)Legitimate interest in security and fraud prevention
Deleted data in backupsUp to 30 daysTechnical necessity for disaster recovery

Data Deletion: When the retention period expires, we securely delete or anonymise your personal data. You can also request early deletion by exercising your "Right to Erasure" (see Your Rights section).

Legal Hold: In some cases, we may be legally required to retain data for longer periods (e.g., ongoing legal proceedings, regulatory investigations, or tax audits). We will inform you if this applies to your data.

Your Rights Under GDPR

If you are a resident of the European Economic Area (EEA) or UK, you have the following data protection rights:

  • Right to Access: You can request a copy of the personal data we hold about you
  • Right to Rectification: You can request that we correct inaccurate or incomplete data
  • Right to Erasure ("Right to be Forgotten"): You can request that we delete your personal data
  • Right to Restrict Processing: You can request that we limit how we use your data
  • Right to Data Portability: You can request a copy of your data in a structured, machine-readable format
  • Right to Object: You can object to our processing of your personal data
  • Right to Withdraw Consent: You can withdraw your consent at any time (e.g., through our cookie settings)
  • Right to Lodge a Complaint: You can file a complaint with the Information Commissioner's Office (ICO) if you believe your rights have been violated

How to Exercise Your Rights

To exercise any of these rights, please contact our Data Protection team:

Email: privacy@numentechnology.co.uk

Subject Line: "Data Protection Request - [Your Request Type]"

Response Time: We will respond to your request within 30 calendar days as required by UK GDPR. If your request is complex or we receive multiple requests from you, we may extend this period by a further 2 months, but we'll let you know within the first month if this is necessary.

No Fee: Subject Access Requests are free of charge unless your request is manifestly unfounded, excessive, or repetitive, in which case we may charge a reasonable administrative fee or refuse to act on the request.

Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction.

Security Measures

Our security measures include:

  • Encryption in Transit: All data transmissions use HTTPS/TLS 1.3 encryption
  • Encryption at Rest: Data stored by our third-party processors (HubSpot, Google, Microsoft) is encrypted
  • Access Controls: Strict access controls limit data access to authorised personnel only
  • Regular Updates: We maintain up-to-date software and security patches
  • Secure Development: Environment variables for API keys, no sensitive data in code repositories
  • Third-Party Security: All data processors are ISO 27001 and/or SOC 2 certified

International Data Transfers

Your data may be transferred to and processed in countries outside the United Kingdom. When we do so, we ensure appropriate safeguards are in place in accordance with UK GDPR Chapter V requirements.

Our Data Transfer Safeguards:

  • HubSpot CRM: Data stored in EU data centre (EU has UK adequacy decision - no additional safeguards required)
  • Google (Analytics & Ads): International Data Transfer Agreement (IDTA) + EU-US Data Privacy Framework
  • Microsoft Clarity: International Data Transfer Agreement (IDTA)
  • LinkedIn: International Data Transfer Agreement (IDTA)
  • Vercel (Hosting): EU-US Data Privacy Framework participation (adequacy recognized by UK)

All data transfers comply with UK GDPR Chapter V requirements for international data protection.

Children's Privacy

Our services are not directed to individuals under the age of 13. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal data, please contact us immediately, and we will take steps to delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

General Privacy Inquiries: hello@numentechnology.co.uk

Data Protection Requests (GDPR Rights): privacy@numentechnology.co.uk

Address:

Numen Technology Limited 86-90 Paul Street London EC2A 4NE United Kingdom

Complaints

If you believe we have not handled your personal data in accordance with applicable data protection laws, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office Wycliffe House, Water Lane Wilmslow, Cheshire, SK9 5AF

Website: https://ico.org.uk