Privacy Policy

We are committed to safeguarding the privacy of all the data we process in the course of our work. We ensure that data we process and store is accessed only by those with authority to use it, the systems where data is held and manipulated are operating correctly, that information is accurate and complete , and that information is available only to those who have authorised access when they need it.

This privacy statement explains what information we collect, what we do with it, how we collect it and keep it secure.

1.1.   Who are AI ORA?

AI ORA is a subsidiary of CBRNE Limited, a registered company in England & Wales, company number 06510023.  The registered address is CBRNE Limited, Sportsman Farm, St. Michaels, Tenterden, Kent, TN30 6SY.

1.2.   Reasons for processing data

We process personal information, as a data controller and a data processor on behalf of our customers and clients, to enable us to provide consultancy and training to our customers and clients; to promote our services, to maintain our own accounts and records, and to support and manage our employees.

1.3.   Personal data that we process

We process personal and sensitive information, as defined under the UK GDPR, relevant to the above reasons/purposes. This may include business activities of the person whose personal information we are processing.

If you have provided us with the personal data of another person (“Third Party Personal Data”) you confirm that they consent to the processing of their personal data by us and that you have informed them of our identity and the purposes (as set out herein and in any agreement between us) for which their personal data will be processed.

1.4.   Who the information is processed about

We process personal information for our clients about their business and its operations.

1.5.   Who we share personal data with

We only share the personal information we process with the individual themselves. We comply with all aspects of the relevant UK and EU Data Protection legislation. 

1.6.   How we store personal data

We take your privacy and the security of personal data very seriously.  We strive to ensure that your information is always protected in accordance with applicable data protection laws.  Any third party we work with must have security measures in place to process your personal data.

We use securely configured cloud-based systems to store and process data, by giving permission for us to use your data, you are also giving permission for us to store and process your data on those systems which are provided as 3rd party products to us.

We shall not pass your personal data to any third party for marketing purposes (including our marketing affiliates and partners) unless we have procured your express consent to do so.

1.7.   How we transfer personal data

It may sometimes be necessary to transfer personal information e.g. from AI ORA to a customer on the completion of analysis.  This will be done securely, taking the necessary precautions to ensure that your data is kept safe.

On the 28 June 2021, the UK was granted ‘adequacy’ by the European Commission in GDPR terms.  International transfers to the UK and AI ORA from the European Economic Area (EEA) and other adequate countries can continue to take place with no additional safeguards. This is alongside existing measures we have in place for international transfers outside of the EEA.

1.7.1. Data transfers to countries within the EEA

We can still send personal data to the EU/EEA, Gibraltar and other countries deemed adequate by the EU.  They have adequate protection by the UK Government under the new arrangements. We’ll always do so securely in line with the GDPR principles.

1.7.2. Data transfers to AI ORA from countries within the EEA

Because the UK is now an ‘adequate country’ in data protection terms, the EEA do not require additional safeguards for transferring data to the UK.

1.8. Retention of your personal data

We will retain personal data for the required time to complete our contractual requirements with our customers and clients, adhering to any legal requirements set out.  Our retention schedule sets out the amount of time records are required to be kept for, this applies to all formats, including paper and electronic information.

1.9. Your rights

Individuals have several rights under the UK GDPR, under certain circumstances, this includes the:

  • Right to be informed
  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restrict processing
  • Right to data portability
  • Right to object
  • Rights related to automated decision making including profiling

1.10. How to contact us?

To contact us regarding data access requests, the right to erasure, the right to be forgotten, or any other data related rights queries, please email info@cbrneltd.com or write to us at AI ORA, c/o CBRNE Ltd, Sportsman Farm, St. Michaels, Tenterden, Kent, TN30 6SY

1.11    Cookies and and IP addresses

We may store information about you in a cookie (a small file that is sent by our web server to your computer), which we can access when you make return visits to the AI ORA website.  Storing cookies is usual practice for any web site that needs to remember what its users’ preferences are and we use cookies to keep track of your choices in the Website.

If you would like to delete any cookies that are already on your computer, please refer to the instructions for your file management software to locate the file or directory that cookies are stored in.  If you would like to stop cookies being stored on your computer in the future, please refer to your browser manufacturer’s instructions by clicking “Help” in your browser menu.  Further information about deleting or controlling cookies is available at www.aboutcookies.org.

Please note that when you visit our site, we may also log your IP address, a unique identifier for your computer or other access device.

1.12.   Changes to our privacy policy

Any changes we make to our privacy policy will be published to our website.