Privacy Policy

Privacy Policy for Touray Solutions

Last Updated: 30 June 2025

Touray Solutions is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you visit our website at touraysolutions.com (the "Website"), or interact with us in any other way.

We operate in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Touray Solutions is based UK providing web development, data science, tech consultancy.

​

2. Personal Data We Collect

We may collect and process the following types of personal data about you:

• Contact Information: Name, email address, phone number, company name, and postal address (when you contact us via forms, email, or phone).

• Website Usage Data: Information about how you use our Website, including your IP address, browser type, operating system, referral sources, pages viewed, and the dates/times of your visits. This is typically collected through cookies and similar technologies (see Section 6).

• Communication Data: Records of your communications with us, including emails and any information you provide during discussions about our services.

• Service-Related Data: Information provided by you or generated in the course of providing our services to you (e.g., project requirements, access credentials for your systems if required for service delivery, but only with your explicit consent).

3. How We Collect Your Personal Data

We collect personal data from you in various ways:

• Directly from you: When you fill out contact forms on our Website, send us emails, call us, or provide information during business discussions.

• Automatically: As you navigate our Website, we may collect data through cookies and similar technologies.

• From publicly available sources: In some limited cases, we may collect information from public databases or professional networking sites.

4. How We Use Your Personal Data

We use your personal data for the following purposes, based on the specified lawful bases:

• To provide and manage our services:

  • To respond to your inquiries and requests.

  • To enter into and perform contracts with you.

  • To deliver our services (e.g., web development, data analysis, consulting).

  • Lawful basis: Performance of a contract with you, or steps taken at your request prior to entering a contract.

• To communicate with you:

  • To send you service updates, important notices, and information related to your projects.

  • To respond to your feedback or complaints.

  • Lawful basis: Performance of a contract with you, our legitimate interests (to communicate effectively with clients), or your consent.

• For marketing purposes (with your consent):

  • To send you information about our services, promotions, or news that may be of interest to you. You can opt-out at any time.

  • Lawful basis: Your explicit consent.

• To improve our Website and services:

  • To understand how our Website is used and to improve its functionality and user experience.

  • To analyse market trends and client needs.

  • Lawful basis: Our legitimate interests (to improve our offerings and grow our business).

• For internal record keeping and administrative purposes:

  • To manage our client relationships, accounts, and billing.

  • Lawful basis: Performance of a contract with you, or our legitimate interests (for effective business administration).

• To comply with legal obligations:

  • To fulfil our legal and regulatory requirements (e.g., tax, accounting).

  • Lawful basis: Compliance with a legal obligation.

• For security and fraud prevention:

  • To protect our Website, systems, and clients from fraud or security threats.

  • Lawful basis: Our legitimate interests (to protect our business and assets).

5. Disclosure of Your Personal Data

We will not sell, rent, or lease your personal data to third parties. We may share your personal data with:

• Service Providers: Third-party vendors and service providers who perform services on our behalf (e.g., website hosting, IT support, analytics, payment processing). These providers are contractually obligated to protect your data and only use it for the purposes we specify.

• Professional Advisors: Our professional advisors, such as lawyers, accountants, or consultants, where necessary for the purpose of obtaining professional advice.

• Legal and Regulatory Authorities: When required by law, court order, or to cooperate with legal or regulatory investigations.

• Business Transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred to the acquiring entity.

6. Cookies and Similar Technologies

Our Website uses cookies and similar technologies to enhance your Browse experience, analyse site traffic, and for other purposes described in this policy.

• What are cookies? Cookies are small text files placed on your device by websites that you visit.

• How we use them: We use both session cookies (which expire when you close your browser) and persistent cookies (which stay on your device until they expire or you delete them). These may be used for:

  • Essential Website functionality.

  • Website analytics (e.g., Google Analytics) to understand how visitors interact with our Website, helping us improve it.

• Your choices: Most web browsers allow you to control cookies through their settings. You can choose to accept or reject cookies. However, disabling cookies may limit your ability to use certain features of our Website. For more information, please refer to your browser's help documentation.

7. International Data Transfers

We primarily store and process your personal data within the United Kingdom. If we need to transfer your personal data outside the UK or European Economic Area (EEA), we will ensure that appropriate safeguards are in place to protect your data, such as:

• Transferring to countries deemed to provide an adequate level of protection by the UK government.

• Using standard contractual clauses (SCCs) approved by the UK government, supplemented with additional safeguards where necessary.

• Relying on your explicit consent for specific transfers.

8. Data Security

We implement appropriate technical and organisational measures to protect your personal data from unauthorised access, disclosure, alteration, or destruction. These measures include:

• Using secure servers and encryption (SSL/TLS) for data transmission.

• Implementing access controls and authentication procedures.

• Regular security assessments and updates.

• Training our staff on data protection best practices.

While we strive to protect your personal data, no method of transmission over the internet or electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security.

9. Data Retention

We will retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

10. Your Data Protection Rights

Under UK GDPR, you have the following rights regarding your personal data:

• The right to be informed: About how your personal data is collected and used (this Privacy Policy).

• The right of access: To request a copy of the personal data we hold about you.

• The right to rectification: To request that we correct any inaccurate or incomplete personal data.

• The right to erasure ("right to be forgotten"): To request that we delete your personal data in certain circumstances.

• The right to restrict processing: To request that we limit the way we use your personal data in certain circumstances.

• The right to data portability: To request that we transfer your personal data to another organisation or to you, in a structured, commonly used, machine-readable format.

• The right to object: To object to our processing of your personal data in certain circumstances (e.g., for direct marketing).

• Rights in relation to automated decision-making and profiling: The right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

To exercise any of these rights, please contact us using the details in Section 12. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The "Last Updated" date at the top of this page will indicate when it was last revised. We encourage you to review this policy periodically for any changes. Your continued use of the Website after any modifications signifies your acceptance of the revised policy.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, or if you wish to exercise any of your rights, please contact us:

Touray Solutions Email: lamin@touraysolutions.com Phone: 07856917102 Website: touraysolutions.com

13. Complaints

If you are not satisfied with our response to a privacy concern or believe we are not processing your personal data in accordance with the law, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's independent authority for upholding information rights:

Information Commissioner's Office (ICO) Wycliffe House Water Lane Wilmslow Cheshire SK9 5AF Helpline number: 0303 123 1113 Website: www.ico.org.uk