Privacy Policy

Last updated: January 2025

Introduction

Augury ("we", "our", or "us") is committed to protecting the privacy and security of your personal information. This privacy policy explains how we collect, use, store, and protect your data when you use our website and services.

As a healthcare data intelligence consultancy, we understand the critical importance of data protection, particularly when dealing with sensitive health information. We are fully committed to compliance with UK GDPR and all applicable data protection regulations.

Information We Collect

We may collect the following types of information:

  • Contact information: Name, email address, phone number, and organisation details when you enquire about our services
  • Professional information: Job title, department, and role within your organisation
  • Technical data: IP address, browser type, and usage data when you visit our website
  • Communication records: Records of correspondence when you contact us

How We Use Your Information

We use your information for the following purposes:

  • To respond to your enquiries and provide information about our services
  • To deliver and support our consultancy services
  • To send you relevant updates and communications (with your consent)
  • To improve our website and services
  • To comply with legal and regulatory requirements

Legal Basis for Processing

We process your personal data on the following legal bases under UK GDPR: consent (where you have given explicit consent), contractual necessity (where processing is necessary to perform our services), legitimate interests (where we have a legitimate business interest that does not override your rights), and legal obligation (where we are required by law to process your data).

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include encryption, access controls, regular security assessments, and staff training. We are certified under ISO 27001, Cyber Essentials Plus, and maintain full compliance with the NHS Data Security and Protection Toolkit.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Contact form enquiries are typically retained for 2 years. Client engagement records are retained for 7 years following the end of the engagement.

Your Rights

Under UK GDPR, you have the following rights:

  • Right of access: You can request a copy of the personal data we hold about you
  • Right to rectification: You can ask us to correct inaccurate or incomplete data
  • Right to erasure: You can request deletion of your personal data in certain circumstances
  • Right to restrict processing: You can ask us to limit how we use your data
  • Right to data portability: You can request your data in a structured, machine-readable format
  • Right to object: You can object to processing based on legitimate interests

Cookies

Our website uses cookies to enhance your browsing experience and analyse website traffic. We use essential cookies required for the website to function, and analytics cookies to understand how visitors use our site. You can control cookie preferences through your browser settings.

Third-Party Services

We use certain third-party services to operate our website and business, including Vercel for website hosting and analytics. These providers process data on our behalf and are bound by data processing agreements that ensure appropriate safeguards.

International Transfers

We primarily store and process data within the UK and EEA. Where data is transferred outside these areas, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions.

Changes to This Policy

We may update this privacy policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.

Contact Us

If you have any questions about this privacy policy or wish to exercise your rights, please contact us:

  • Email: privacy@augury.health
  • Address: London, United Kingdom

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data protection rights have been violated.