Effective Date: 30 January, 2026

Privacy Policy

MindsOn is a trading name and business unit of d Software Ltd., registered in England and Wales under company number 98 and agent's office at 2C rev, United Kingdom.

Introduction

MindsOn, the MindsON .tech platform, and any other public‑facing web platforms or applications operated by MindsOn are committed to protecting privacy and are compliant with all applicable data protection and privacy laws, including the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, the Data (Use and Access) Act 2025 (DUAA), the EU General Data Protection Regulation (EU GDPR), Canada’s Consumer Privacy Protection Act (CPPA) and, where relevant, the Personal Information Protection and Electronic Documents Act (PIPEDA), and applicable United States federal and state privacy laws (including, without limitation, the California Consumer Privacy Act as amended by the California Privacy Rights Act). This compliance extends to any successor legislation, statutory instruments, regulations, updates or material amendments thereto in any relevant jurisdiction, and MindsOn will take all necessary measures to ensure that any personal data collected, used, or stored would be in accordance with those regulations and the terms of this website’s Privacy Policy.

Where MindsOn processes personal data in or transfers personal data to other OECD member countries, we will endeavour to comply with applicable national privacy and data protection laws in those jurisdictions and to implement appropriate safeguards (including any recognised transfer mechanisms and contractual protections) as may be required to protect personal data.

This policy applies to you if you visit MindsOn’s website, apply to work with us, are a client, supplier, partner, or enquirer, if we have approached you regarding possible projects, or if we have acquired your details through networking or referrals.

Data protection & Legal basis

Data protection law states there are several legal reasons why a company may collect and process personal data. We work on the following bases for certain situations:

Legal Compliance – If the law or government requires us to, we may need to collect and process your data. An example might be passing on details of fraud to law enforcement.

Legitimate Interest – In some cases, we require personal data to pursue our legitimate interests in a way which might reasonably be expected as part of running our business. This does not impact your freedom or rights.

We do not share the data that we collect directly from you with third parties for their own sales and marketing activity.

1. Applicability

When you use our services, you're trusting us with your information. We understand this is a big responsibility and work hard to protect your information and put you in control.

This Privacy Policy is meant to help you understand what information we collect, why we collect it, and how you can update, manage, export, and delete your information.

2. When data might be collected

  • When you engage with us on social media.
  • When you visit any of our websites.
  • Details that you provide us at networking events directly or where you have confirmed to the event organiser or other referring party that you are happy for your details to be shared.
  • From publicly available sources such websites, industry specific directories, press releases and so on.

3. How and why data might be used

We may use the information we might collect to provide, maintain, and improve our services. Specifically:

  • To respond to your queries. Handling the information you sent enables us to respond. We may also keep a record of these to inform any future communication with us and to demonstrate how we communicated with you throughout. We do this on the basis of our contractual obligations to you, our legal obligations and our legitimate interests in providing you with the best service and understanding how we can improve our service based on your experience.
  • To comply with any contractual or possible legal obligations to share data with relevant law enforcement.
  • To maintain our websites, platforms and cloud security

4. How data is protected

We treat all data with the utmost care and take all appropriate steps to protect it.

Access to any personal data is limited to authorised personnel, password-protected and encrypted.

We use the latest firewall technology and systems and software updates.

5. Website users & cookies

What specific information is obtained?
Our website may collect some types of information about visitors to our site.

What information may be retained?
Cookies and tracking software may be used on a temporary basis and expire when the site has been left. These might be used for purposes such as website improvement. Google Analytics may also be used for the same reason of website improvement and understanding . That information would not shared with anyone.

By using the website, you consent to the possible use of cookies to retain session technical information for the purposes listed above. This information may be held in your web browser and is removed at the end of your session. We may also hold information about other businesses necessary for us in order to conduct our business activities. The information we may collect and hold could be the following:

  • Location (based on IP address)
  • Site searches
  • Payment information when required
  • Communication preferences
  • Device(s) used
  • Session duration (time spent on the site)
  • Page(s) visited
  • Page session duration (time spent on specific page)
  • Company Name & Address
  • Company Website Address
  • Email Address
  • Phone Number

6. Data Security

MindsOn works to protect users from unauthorized access to or unauthorized alteration, disclosure, or destruction of information that is held. In particular:

  • MindsOn encrypts services using SSL
  • Information collection, storage, and processing practices are constantly reviewd
  • Access to personal data is restricted only to employees who need that information

7. Other Websites

Our website might contain links to other websites in other jurisdictions. This privacy policy only applies to this website so when you link to other websites you should read their own privacy policies.

8. Your Rights and Choices

You have certain rights regarding your personal information, including:

  • The right to access your personal information
  • The right to correct inaccurate information
  • The right to request deletion of your information
  • The right to restrict or object to our processing of your information

8. How long we might keep data

For direct marketing purposes we might keep details for up to two years from your last interaction. If you are an enquirer or prospect, we may keep details for as long as they remain accurate and up to date. You can opt-out of receiving offers from us at any time.

9. Who might we share your details with

This information will not be shared with any organisation for their own benefit.

We may have a legal obligation to share your details with law enforcement agencies. In this instance, we provide only the information required to perform the service. The data would only be used for that exact purpose.

All partners are required to protect and respect your privacy. If we stop using a partner’s service, your data will be deleted.

Examples of third parties we may work with are:

  • Direct marketing companies who may help us manage electronic communications or other platforms such as Google or X
  • IT Companies who support our website and business systems

10. International data transfers

MindsOn operates internationally, which means some data may be transferred to and processed in countries outside of a home jurisdiction, including the United Kingdom, the European Economic Area (EEA), the United States, and Canada. This information will not be shared with any organisation for their own benefit.

We might transfer technical details outside of the EEA for the purpose of data processing. Examples of this might include:

  • Data management software solution providers
  • Online/virtual server/back-up service provider

Where any data might be transfered across borders, it is done so in full compliance with applicable data protection laws:

  • For transfers from the UK and EEA to countries without an adequacy decision, we rely on appropriate safeguards, such as the UK International Data Transfer Agreement (IDTA), the EU Standard Contractual Clauses (SCCs), or other legally recognized mechanisms.
  • For transfers to the United States, we may rely on the EU–US Data Privacy Framework and the UK Extension, where applicable, or on SCCs/IDTA as appropriate.
  • For transfers involving Canada, we comply with PIPEDA and any provincial privacy laws that apply.

Regardless of where your data is processed, MindsOn ensures that it is protected by safeguards that provide a level of protection essentially equivalent to that required under UK GDPR, EU GDPR, and other applicable laws.

11. Your rights

  • The right to be informed. This obligates us to explain if and when we collect data details and what we would do with them, how we may hold them and for how long.
  • The right of access. If you ask us, we are obliged to let you know what details we may have about you.
  • The right to rectification. You can ask us to update or change the information we may hold about you.
  • The right to erasure. You can ask us to delete your details.
  • The right to restrict processing. You can ask to limit the way in which we use your details.

12. Changes to The Policy

MindsOn may update this Privacy Policy from time to time. We will notify you of any changes by posting any new Policy on this page and updating the effective date at the top.

Continued use of our services after any changes to this Privacy Policy constitutes your acceptance of such changes.