Privacy Policy

1. Who We Are

XeonTek Ltd ("we", "us", "our") is a company registered in England and Wales. Our registered address is 27 Old Gloucester Street, London, WC1N 3AX, United Kingdom.

For any data protection enquiries, contact us at privacy@xeontek.com.

2. What Data We Collect

This website collects a limited amount of personal data. We do not require you to create an account, and we do not process payments.

• Contact form submissions — your name, email address, and message, provided voluntarily when you use our contact form.
• Analytics data — aggregated, non-identifiable page-view and visitor data collected by Vercel Web Analytics, only when you have given consent via our cookie banner.
• Cookie preference — a record of whether you accepted or dismissed our cookie consent banner.

3. Lawful Basis for Processing

Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, we process personal data on the following bases:

• Consent (Article 6(1)(a)) — for loading Vercel Web Analytics. You give consent by clicking "Accept" on our cookie banner and may withdraw it at any time.
• Legitimate interest (Article 6(1)(f)) — for essential site operation, security, and storing your cookie preference.
• Performance of a contract (Article 6(1)(b)) — for processing contact form submissions in order to respond to your enquiry.

4. Cookies

When you first visit our site, a cookie consent banner is displayed. Analytics are only activated after you explicitly click "Accept". If you dismiss the banner, no analytics data is collected.

This site uses the following cookie:

• xeontek-cookie-consent — a first-party cookie that stores your consent preference ("accepted" or "dismissed"). Retention: 1 year. Classification: strictly necessary. This cookie does not track you and does not require consent under the Privacy and Electronic Communications Regulations 2003 (PECR).

Vercel Web Analytics is privacy-focused and does not use cookies or collect personally identifiable information. It is only loaded when you have accepted cookies via our consent banner.

You can withdraw consent at any time by clearing your browser cookies. The consent banner will reappear on your next visit.

5. Third-Party Processors

We share personal data with the following third-party processors, each of whom processes data on our behalf:

• Vercel Inc. — hosts this website and provides web analytics. Data may be processed in the United States under appropriate safeguards. Vercel Privacy Policy.
• Google Workspace (Google LLC) — contact form submissions are delivered to us via Google Workspace email (SMTP). Google processes this data as a data processor under its Data Processing Amendment.

We do not sell, rent, or share your personal data with any other third parties.

6. Data Retention

• Contact form submissions — retained only for as long as necessary to respond to your enquiry, then deleted.
• Cookie consent preference — stored in your browser for 1 year.
• Analytics data — retained by Vercel in aggregated, non-identifiable form.

7. Data Security

We implement appropriate technical and organisational measures to protect your data, including encryption in transit (TLS), secure hosting infrastructure, and access controls. However, no method of transmission over the internet is completely secure.

8. Your Rights

Under the UK GDPR, you have the right to:

• Access the personal data we hold about you
• Rectify inaccurate or incomplete data
• Request erasure of your data
• Restrict or object to processing
• Data portability — receive your data in a structured, machine-readable format
• Withdraw consent at any time where consent is the lawful basis

To exercise any of these rights, contact us at privacy@xeontek.com. We will respond within one calendar month.

If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection.

9. International Transfers

Some of our third-party processors (Vercel, Google) may process data outside the United Kingdom. Where this occurs, we ensure appropriate safeguards are in place, such as standard contractual clauses or adequacy decisions recognised by the UK Government.

10. EU AI Act

XeonTek develops AI-driven platforms for financial analytics and investment intelligence. We are committed to compliance with the EU Artificial Intelligence Act (Regulation (EU) 2024/1689). Where our AI systems are deployed, we ensure:

• Transparency about the use of AI in our products and services
• Human oversight of AI-assisted decision-making
• Risk assessment and mitigation proportionate to the system's classification
• Clear documentation of AI system capabilities and limitations

Our AI systems are designed to assist and augment human decision-making, not to replace it. This website itself does not use AI to process your personal data. If you have questions about how we use AI in our products, contact us at privacy@xeontek.com.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last updated" date. We encourage you to review this page periodically.

12. Contact

If you have questions about this Privacy Policy, contact us at privacy@xeontek.com.