We are committed to protecting your privacy. This policy explains how we collect, use, disclose and protect personal data when you use our chatbot personal assistant services and our software consultancy, and when you interact with our website. It also explains your rights and how to exercise them.
Controller vs. Processor. For most client deployments of our chatbot PA, the customer is the Data Controller and JMAC acts as a Data Processor (or equivalent under applicable law), processing personal data only on the controller’s documented instructions and under a data processing agreement. For our own website, inquiries, account administration, billing, and marketing, JMAC acts as the Data Controller.
We collect data directly from you (forms, chatbot, email), automatically (cookies/analytics), and from third parties where needed to provide the services you request.
Automated decision‑making & profiling. We do not make solely automated decisions producing legal or similarly significant effects on individuals. Any profiling is performed using anonymised data only and aligned to agreed client processes.
Some platform providers may host or process data in the EU or the United States. When personal data is transferred outside the UK/EEA, we implement appropriate safeguards required by UK GDPR (e.g., UK International Data Transfer Agreement and/or Standard Contractual Clauses), or rely on an applicable adequacy decision where available. Copies of relevant safeguards can be provided on request.
We keep personal data only as long as necessary for the purposes collected, including to meet legal, accounting, or reporting requirements. Typical examples:
You have the right to access, rectify, erase, restrict processing, object (including an absolute right to object to direct marketing), and data portability. Where processing is based on consent, you may withdraw consent at any time. You also have the right to complain to the UK Information Commissioner’s Office (ICO). We aim to respond within one month. Some rights may be limited by legal obligations or the rights of others.
Our services are not intended for individuals under 18. Users must declare they are over 18 at sign‑up. If we become aware we have collected data from anyone under 18, we will delete it promptly.
We may send marketing communications about our services. You can opt out at sign‑up or anytime via the unsubscribe link or by emailing privacy@jmacpartners.co.uk. We do not share data with third parties for their own marketing without your explicit consent.
Profiling: Any profiling we conduct uses anonymised data only for service improvement and does not identify you or make decisions about you.
We implement appropriate technical and organisational measures to protect personal data (e.g., encryption in transit, access controls, network security, employee training). No system is 100% secure; if a data breach affecting your personal data occurs, we will notify you and regulators as required by law.
We may update this policy from time to time. We will post updates here and adjust the “Last updated” date. If changes materially affect your rights, we will provide additional notice or request consent where required.
Questions, requests, or complaints about this policy or your personal data:
You may also contact the UK ICO at ico.org.uk or by phone on +44 303 123 1113.