Privacy Policy

1. Overview

This Privacy Policy (the “Policy”) describes how Draxium Ltd. collects, uses, discloses, and safeguards personal data when you visit or interact with our website (the “Website”). We are committed to handling your personal information with transparency and care. Please read this Policy carefully before using the Website.

2. Who We Are

We are Draxium Ltd., a company incorporated under the laws of England and Wales (registered number 17170139), with its registered office at Brosnan House, 175 Darkes Lane, Suite 2b, Potters Bar, United Kingdom, EN6 1BW (referred to as “Draxium”, “we”, “us”, or “our”).

Draxium acts as the Data Controller in respect of your personal data, meaning we determine the purposes and means by which your data is processed. If you have any questions about how we handle your data, please contact us using the details set out in Section 12.

3. Personal Data We Collect

Depending on the circumstances and the purpose of processing, we may collect the following categories of personal data:

• Regulatory Data: information required for compliance purposes, including anti-money laundering checks and sanctions screening;
• Identity Information: full name, identification numbers, and information from official documents;
• Contact Information: name, email address, telephone number, and postal address;
• Professional Information: job title, employer details, and employment history;
• Technical Information: data about the device and browser you use to access our Website, including IP address, browser type, and operating system;
• Surveillance Data: video recordings and related metadata collected at our premises or through our communication channels;
• Risk Information: details relating to your business affiliations and data used for fraud prevention purposes; and
• Employment Information: data provided through job applications, including CVs, employment history, and references.

4. How We Collect Personal Data

We collect personal data directly from you when you use our services, submit enquiries, or otherwise contact us. We may also receive personal data from third-party sources, including service providers, public authorities, and publicly accessible databases and registers.

5. How We Use Your Personal Data

We process your personal data for the following purposes, each of which is supported by an appropriate legal basis:

• Service Delivery: to fulfil our contractual obligations and deliver the services you have requested. Legal basis: contractual necessity.
• Service Improvement: to analyse how our services are used and to enhance our service offering. Legal basis: legitimate interests.
• Legal and Regulatory Compliance: to meet our obligations under applicable laws and regulations, including anti-money laundering and tax legislation. Legal basis: legal obligation; legitimate interests.
• Recruitment and Employment: to manage job applications, assess candidates, and administer employment records. Legal basis: legitimate interests.
• Dispute Resolution: to manage and respond to legal claims and disputes. Legal basis: legitimate interests.
• Contract Management: to administer and perform our contractual arrangements. Legal basis: contractual necessity; legitimate interests.
• Communication: to respond to your enquiries and provide updates about our services. Legal basis: contractual necessity; legitimate interests.
• Marketing: to send information about our services and promotional materials where you have consented or where we have a legitimate interest in doing so. Legal basis: legitimate interests; your consent.

6. Mandatory and Optional Data

Some personal data is necessary for us to provide our services to you. If you do not supply this mandatory information, you may not be able to access certain services or features. Other data is optional, and providing or withholding it will not affect your access. Where the provision of data is obligatory, this will be indicated clearly at the point of collection.

7. Sharing Your Personal Data

We may share your personal data with:

• Trusted service providers and partners who assist us in delivering our services and who are required to process data only on our instructions and in accordance with applicable data protection laws;
• Regulatory and governmental authorities where we are required or permitted to do so by law, court order, or regulatory requirement; and
• Prospective buyers or investors in connection with any proposed sale, merger, restructuring, or other transfer of all or part of our business, subject to appropriate confidentiality obligations.

We do not sell your personal data to third parties.

8. Security of Your Personal Data

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, alteration, disclosure, or destruction. These measures include encryption, access controls, secure development practices, and ongoing staff training. We review and update our security practices on a regular basis to address emerging threats. While we take data security seriously, please note that no method of transmission over the internet or electronic storage is completely secure.

9. How Long We Retain Your Data

Website visitor data collected automatically (where we hold no separate relationship with the individual) is retained for no longer than 26 months from your last visit to the Website. Where you have contacted us or entered into a service relationship with us, your personal data is retained for as long as is necessary to fulfil the purposes for which it was collected and to comply with applicable legal and regulatory retention obligations. Once retention periods expire, your data will be securely deleted or anonymised. If you have specific questions about retention periods, please contact us.

10. International Data Transfers

In the course of providing our services, we may transfer your personal data to recipients located outside the United Kingdom. Where such transfers occur, we ensure that they are subject to appropriate safeguards in accordance with applicable data protection legislation — such as standard contractual clauses or adequacy decisions — so that your data continues to be protected to the same standard as in the UK. For further information about the safeguards we apply, please contact us.

11. Your Rights

Subject to applicable law, you have the following rights in relation to your personal data:

• Right of Access: to request a copy of the personal data we hold about you and information about how we use it;
• Right to Rectification: to request that we correct any inaccurate or incomplete personal data;
• Right to Erasure: to request that we delete your personal data where it is no longer needed, you withdraw your consent, or you object to our processing;
• Right to Restriction: to request that we restrict our processing of your personal data in certain circumstances;
• Right to Data Portability: to receive a copy of your personal data in a structured, commonly used, and machine-readable format, and to request that we transmit it to another controller where technically feasible;
• Right to Object: to object to processing based on our legitimate interests or to direct marketing at any time; and
• Right to Withdraw Consent: where processing is based on consent, to withdraw that consent at any time without affecting the lawfulness of processing before withdrawal.

To exercise any of these rights, please contact us at support@draxiumtech.com. We will respond to your request within one month of receipt. Where we are unable to fulfil a request, we will explain why. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not handled your data lawfully.

12. Contact Us

If you have any questions, concerns, or requests relating to this Policy or our data processing practices, please contact us at:

13. Updates to This Policy

We may update this Policy from time to time to reflect changes in our practices or in applicable law. Any amendments will be published on this page with an updated “Last Updated” date. We encourage you to review this Policy periodically.