Privacy Policy

1. Who we are

Boudicca DX, LLC is headquartered in Brentwood, Tennessee, USA. Boudicca DX Limited is registered in Ireland (CRO No. 779741) and operates as our EU subsidiary. For the purposes of GDPR, Boudicca DX Limited is the data controller for personal data collected from individuals in the European Economic Area.

For privacy-related enquiries, contact us at info@boudiccadx.com.

2. What data we collect

Data you provide directly

When you complete our contact form, we collect:

• Your name and organisation
• Your email address
• Details of your inquiry or consulting needs
• Any other information you voluntarily choose to include

We do not request or require sensitive personal data through our contact form.

Data collected automatically

When you visit our website, we may automatically collect certain technical data including your IP address, browser type and version, pages visited, time and date of your visit, and referring URL. This data is collected through cookies and similar technologies — see Section 5 for full details.

3. How we use your data

We use the personal data you provide to:

• Respond to your inquiry and provide information about our consulting services
• Follow up by email correspondence as requested
• Improve our website and client communications

Your contact form submissions are accessible only to authorised Boudicca® DX personnel who require access to respond to your inquiry.

We do not sell, rent, or share your personal data with third parties for their marketing purposes.

4. Legal basis for processing (GDPR)

For individuals in the European Economic Area, we process your personal data on the following legal bases:

• Legitimate interests — to respond to business inquiries submitted through our contact form
• Consent — for any non-essential cookies placed on your device (see Section 5)
• Legal obligation — where we are required to process data to comply with applicable law

5. Cookies

Our website uses cookies — small text files stored on your device. We use the following categories:

• Strictly necessary cookies — required for the website to function. These cannot be disabled.
• Analytics cookies — help us understand how visitors use our site (e.g. Google Analytics). These are only placed with your consent.

On your first visit, you will be asked to consent to non-essential cookies via our cookie banner. You may withdraw consent at any time by adjusting your browser settings.

6. Data retention

We retain personal data submitted through our contact form for up to 24 months from the date of your last correspondence with us, after which it is securely deleted. We may retain data for longer where required by law or where we have an ongoing legitimate business need.

Automatically collected website data is retained in accordance with our analytics provider’s standard retention settings.

7. Data security

We take reasonable technical and organisational measures to protect your personal data from unauthorised access, alteration, disclosure, or destruction. However, no method of internet transmission or electronic storage is entirely secure. We cannot guarantee absolute security and encourage you to contact us promptly if you have concerns about the security of your data.

Additional information on our business continuity and security infrastructure is available here.

8. Sharing your data

We do not share your personal data with third parties except in the following limited circumstances:

• Where required by law or regulatory authority
• To protect our legal rights or those of third parties
• In connection with a merger, acquisition, or sale of business assets, where data may be transferred to a successor entity
• With trusted service providers who assist us in operating our website or business, subject to confidentiality obligations

9. International data transfers

Boudicca® DX operates in both the European Union and the United States. Personal data submitted by EU residents may be transferred to and processed in the United States. Where such transfers occur, we ensure appropriate safeguards are in place in accordance with GDPR requirements.

10. Your rights

Depending on your location, you may have the following rights regarding your personal data:

• Access — request a copy of the personal data we hold about you
• Rectification — request correction of inaccurate or incomplete data
• Erasure — request deletion of your personal data, subject to legal and operational constraints
• Restriction — request that we limit how we use your data
• Portability — request your data in a structured, machine-readable format
• Objection — object to processing based on legitimate interests

To exercise any of these rights, please email info@boudiccadx.com. We will respond within 30 days.

11. Right to lodge a complaint

If you are located in the EU and believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your national data protection supervisory authority. In Ireland, this is the Data Protection Commission (DPC) at dataprotection.ie.

If you are located in the United States, your rights may vary by state. Please contact us directly at info@boudiccadx.com with any concerns.

12. Changes to this policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically.