Privacy Policy
CANTAB MED LTD trading as Cambridge Clinical is committed to protecting your privacy and ensuring your personal data is handled in accordance with the UK General Data Protection Regulation (UK GDPR) and all applicable data protection laws.
This policy explains how we collect, use, and protect your personal data when you interact with our website, products, or services.
1. Who we are
CANTAB MED LTD trading as Cambridge Clinical is the data controller responsible for your personal data.
If you have any questions about this policy or how your data is handled, you can contact us at enquiries@cambridgeclinical.co.uk
2. Information We Collect
We may collect and process the following categories of personal data:
a. Information You Provide
• Details entered into forms on our website (including correspondence records if you contact us (e.g., by email, phone, or messaging apps), responses to surveys or questionnaires).
b. Automatically Collected Information
When you visit our website, we may automatically collect technical data (including your IP address, browser type, operating system, and referring URLs).
• Usage data including pages visited, time spent on our site, and navigation paths.
This data is collected through cookies and analytics tools (see below).
3. How We Use Your Personal Data
We may use your personal data to:
• Provide and personalise our website and services.
• Respond to your enquiries or requests.
• Contact you with information you have requested or that we believe may interest you (only with your consent).
• Notify you of service updates or policy changes.
• Comply with our legal obligations and enforce our rights.
We do not sell your personal data to any third party.
4. Legal Basis for Processing Your Data
Under the GDPR, we must have a lawful basis to process your personal data. We process data on the following grounds:
• Consent: When you have given clear consent for us to process your personal data for a specific purpose (e.g., marketing communications).
• Contract: When processing is necessary to perform a contract or respond to your requests before entering into one.
• Legal obligation: When processing is necessary to comply with the law.
• Legitimate interests: When processing is necessary for our legitimate business interests (e.g., improving our website, maintaining security), provided these interests are not overridden by your rights.
5. Cookies
What Are Cookies?
Cookies are small text files placed on your device when you visit a website. They help improve site functionality, analyse web traffic, and remember your preferences.
Cookies cannot harm your device. To learn more, visit www.allaboutcookies.org.
How We Use Cookies
We use cookies to:
• Enhance your browsing experience.
• Analyse our Site usage to improve content and performance.
• Maintain basic site functionality.
We do not use cookies to collect personal identifiers such as your name or contact details.
Managing Cookies
You can manage or disable cookies through your browser settings.
If you choose to disable cookies, some parts of the Site may not function as intended.
By continuing to use our Site without changing your settings, you consent to our use of cookies as described in this policy.
6. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes it was collected for, including satisfying any legal, accounting, or reporting requirements.
When data is no longer required, it will be securely deleted or anonymised.
7. Data Security
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, misuse, alteration, or destruction.
However, please note that transmission of information via the internet is not completely secure. Any data you send is at your own risk.
8. Sharing Your Information
We may share your information with:
• Service providers and business partners who help operate our website or deliver services on our behalf.
• Legal authorities when required to comply with applicable laws, court orders, or regulatory obligations.
All third parties are required to respect the security of your personal data and to process it in accordance with GDPR.
9. International Data Transfers
If we transfer your data outside the UK or EEA, we ensure appropriate safeguards are in place — such as standard contractual clauses or adequacy decisions — to maintain the same level of protection as required by GDPR.
10. Your Data Protection Rights
Under the GDPR, you have the following rights:
• Access – Request a copy of the personal data we hold about you.
• Rectification – Request correction of inaccurate or incomplete data.
• Erasure (“Right to be Forgotten”) – Request deletion of your data where there is no lawful reason for us to keep it.
• Restriction – Request limitation of how we use your data.
• Data portability – Request transfer of your data to another organisation.
• Objection – Object to processing based on legitimate interests or direct marketing.
• Withdrawal of consent – Where processing is based on consent, you can withdraw this at any time.
To exercise any of these rights, please contact us at enquiries@cambridgeclinical.co.uk
We will respond within one month as required by GDPR.
If you are unhappy with how we handle your data, you have the right to lodge a complaint with your local Data Protection Authority. In the UK, this is the Information Commissioner’s Office (ICO):
11. Links to Other Websites
Our website may include links to external sites. We are not responsible for the privacy practices or content of these third-party websites. We encourage you to read their privacy policies before providing any personal information.
12. Updates to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page.
Please check this page periodically to stay informed about how we protect your information.