Privacy Policy

Effective Date: 11 October 2025

Last Updated: 11 October 2025

1. Introduction

HIDESK LTD ("Hidesk", "Hidesc", "we", "us", or "our") operates the Hidesc.com platform ("Service"). We are committed to protecting your privacy and handling your personal data transparently and securely.

This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you use our Service. It also describes your rights regarding your personal data under the UK General Data Protection Regulation (UK GDPR).

By using Hidesc.com, you consent to the data practices described in this policy.

2. Information We Collect

We collect several types of information to provide and improve our Service:

2.1 Personal Information You Provide

  • Account Information: Full name, email address, phone number, company name, job title, profile photo
  • Billing Information: Payment details, billing address, VAT/tax numbers (processed securely by payment providers)
  • User Content: Tasks, projects, messages, files, comments, calendar entries, and other content you create or upload

2.2 Information Collected Automatically

  • Technical Data: IP address, device information, browser type, operating system
  • Usage Data: Login timestamps, feature usage, interaction patterns, error logs
  • Cookies and Tracking Technologies: Session cookies, analytics cookies, preference cookies

2.3 Information from Third Parties

  • Google Login: Name, email address, profile picture when you use Google authentication
  • Analytics Providers: Aggregated usage data from Google Analytics
  • Payment Processors: Transaction status and billing information

3. How We Use Your Information

We use your personal information for the following purposes:

3.1 To Provide the Service

  • Create and maintain your account
  • Process payments and manage subscriptions
  • Enable team collaboration and workspace management
  • Provide customer support and respond to inquiries
  • Send service-related notifications and updates

3.2 To Improve Our Service

  • Analyze usage patterns to enhance functionality
  • Develop new features and services
  • Conduct research and analytics to improve user experience
  • Monitor performance and troubleshoot issues

3.3 For Security and Compliance

  • Protect against fraud, abuse, and security risks
  • Verify user identity and prevent unauthorized access
  • Comply with legal obligations and enforce our Terms
  • Respond to legal requests and prevent harm

3.4 For Marketing (with your consent)

  • Send promotional communications about new features
  • Personalize marketing content based on your interests
  • Measure marketing campaign effectiveness

4. Legal Basis for Processing (UK GDPR)

Under UK GDPR, we process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide the Service you requested
  • Legitimate Interests: Processing for our legitimate business interests while respecting your rights
  • Legal Obligation: Processing to comply with UK laws and regulations
  • Consent: Processing based on your explicit consent for specific purposes

5. Data Sharing and Disclosure

We do not sell your personal data. We may share your information in the following circumstances:

5.1 With Your Consent

We share information when you direct us to, such as when you invite team members to collaborate.

5.2 With Service Providers

We engage trusted third parties to perform functions on our behalf:

  • Cloud Hosting: Amazon Web Services, Google Cloud Platform
  • Payment Processing: Stripe, PayPal
  • Analytics: Google Analytics
  • Communication: Email delivery services
  • Customer Support: Help desk software providers

All service providers are bound by strict data processing agreements.

5.3 For Legal Reasons

We may disclose your information if required by law, court order, or government request, or to protect our rights, property, or safety.

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.

6. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

  • Active Accounts: Data retained while your account is active
  • After Account Closure: Most data deleted within 30 days, backups removed within 90 days
  • Billing Records: Retained for 7 years to comply with UK tax law
  • Legal Requirements: Data retained as required by law or for legitimate business purposes

7. Data Security

We implement comprehensive security measures to protect your data:

  • Encryption: Data encrypted in transit (TLS/SSL) and at rest
  • Access Controls: Role-based access and authentication protocols
  • Network Security: Firewalls, intrusion detection, and DDoS protection
  • Physical Security: Secure data centers with 24/7 monitoring
  • Employee Training: Security awareness and confidentiality agreements
  • Regular Audits: Security testing and vulnerability assessments

While we implement robust security measures, no internet transmission or storage system is 100% secure. We encourage you to use strong passwords and enable additional security features when available.

8. International Data Transfers

As a UK-based company, we primarily store and process data within the UK and European Economic Area (EEA). When we transfer data outside these areas, we ensure appropriate safeguards are in place, such as:

  • EU Standard Contractual Clauses
  • UK International Data Transfer Agreements
  • Adequacy decisions for the destination country

9. Your Data Protection Rights (UK GDPR)

Under UK GDPR, you have the following rights regarding your personal data:

9.1 Right to Access

You can request a copy of the personal data we hold about you.

9.2 Right to Rectification

You can request correction of inaccurate or incomplete data.

9.3 Right to Erasure

You can request deletion of your personal data ("right to be forgotten").

9.4 Right to Restriction

You can request temporary restriction of processing in certain circumstances.

9.5 Right to Data Portability

You can receive your data in a structured, machine-readable format.

9.6 Right to Object

You can object to certain types of processing, including direct marketing.

9.7 Right to Withdraw Consent

You can withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at info@hidesc.com. We will respond within 30 days and may request identity verification.

10. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

10.1 Types of Cookies We Use

  • Essential Cookies: Required for basic functionality (always active)
  • Preference Cookies: Remember your settings and preferences
  • Analytics Cookies: Help us understand how users interact with our Service
  • Marketing Cookies: Used for advertising and personalization (with consent)

10.2 Managing Cookies

You can control cookie preferences through:

  • Our cookie consent banner on first visit
  • Your browser settings (note: blocking essential cookies may impair functionality)
  • Your account privacy settings

11. Children's Privacy

Hidesc.com is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us immediately.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes:

  • We will update the "Last Updated" date at the top of this policy
  • We will notify active users via email at least 14 days before changes take effect
  • We will display an in-app notification for significant changes

Your continued use of the Service after changes take effect constitutes acceptance of the revised Privacy Policy.

13. Contact Information

If you have questions about this Privacy Policy or your data rights, contact us:

HIDESK LTD
231 Trafford House, Cherrydown East
Basildon, England, SS16 5FY

Email: info@hidesc.com
Phone: 07776645268

Data Protection Officer:
Email: info@hidesc.com (Subject: "Data Protection Officer")

UK Information Commissioner's Office (ICO):
If you have concerns about our data practices, you have the right to lodge a complaint with the ICO:

  • Website: https://ico.org.uk
  • Phone: 0303 123 1113

Last reviewed and updated: 11 October 2025