Skip to content
KRYOSDATA SCIENCE
LEGAL · PRIVACY

Privacy Notice

This notice explains how KRYOS Data Science (“KRYOS”, “we”) handles information collected through this website and the pre-engagement inquiry form. Engagement-stage data handling is governed by the executed services agreement and any Data Processing Agreement (DPA) entered into with the client.

Last updated: 2026-06-08

1. Scope

This notice covers the kryos.science website (the “Site”) and any inquiry, assessment, or communication initiated by a visitor. It does not cover client data processed under an executed engagement, which is governed by the relevant master services agreement and DPA.

2. Information we collect

  • Inquiry information you submit - name, business email, company, role, industry, objective, urgency, target systems, free-text challenge description, and consent flag.
  • Assessment selections - the categorical answers you select in the on-site Readiness Assessment. These remain in your browser unless you choose to submit them via the contact form.
  • Operational technical data - request metadata required to serve the page (IP address, user agent, timestamp), held transiently by our hosting and edge providers.
  • Privacy-respecting analytics - categorical event data (e.g. page path with query strings stripped, viewport class, CTA labels, funnel step identifiers) used to measure conversion. No cookies are set by KRYOS for analytics; a per-tab sessionStorage identifier is used to stitch a single visit. Signals from Do-Not-Track and Global Privacy Control are honoured and suppress analytics entirely.

3. What we do not collect

  • We do not require, request, or want sensitive personal data (e.g. government identifiers, financial account numbers, health information, racial / political / religious data) in the inquiry form. Please do not submit such data unless we have specifically requested it under an executed agreement.
  • We do not run third-party advertising trackers, behavioural retargeting pixels, or social-network sharing widgets that track you across sites.
  • We do not sell personal information.

4. How we use the information

  • To evaluate your inquiry and respond with a scoped engagement brief.
  • To maintain the Site, prevent abuse, and improve content based on aggregate, non-identifying patterns.
  • To comply with applicable legal obligations.

5. Legal bases (UK / EU GDPR)

Where GDPR applies, we rely on: (a) consent - for submitting your inquiry, evidenced by the checkbox on the contact form; (b) legitimate interests - to secure and improve the Site, kept proportionate and balanced against your interests; and (c) legal obligation - where retention or disclosure is required by law.

6. Sharing

Information is accessible to KRYOS personnel involved in evaluating the inquiry and to sub-processors providing hosting, email delivery, and infrastructure under written confidentiality and data-protection obligations. We do not sell, rent, or trade your data. We disclose information only where required by valid legal process.

7. Retention

Inquiry submissions are retained for the period necessary to evaluate and pursue the opportunity, and thereafter for a limited period to comply with legal, accounting, and audit requirements. Operational logs are retained for short, security-driven windows.

8. International transfers

KRYOS operates across multiple jurisdictions. Where personal data is transferred internationally, transfers are made under appropriate safeguards (e.g. Standard Contractual Clauses, UK IDTA, or adequacy decisions).

9. Your rights

Subject to applicable law, you may request access, correction, deletion, restriction, portability, or objection regarding personal data we hold about you, and may withdraw consent at any time. Submit privacy requests via /contact and mark the request as a privacy rights enquiry. You also have the right to lodge a complaint with a supervisory authority.

10. Security

We apply technical and organisational measures appropriate to the inherently low-risk nature of pre-engagement inquiry data, including transport encryption, access control, and minimisation. No system can be guaranteed to be free of risk; submissions are made on this understanding.

11. Children

The Site is intended for business users and is not directed to children.

12. Changes

We may update this notice from time to time. The “Last updated” date will change accordingly. Material changes will be communicated via a notice on the Site.

13. Contact

Submit privacy and general enquiries via /contact.