Privacy Policy for LeakWatch
Effective Date: Jan 2015
Last Updated: June 2025
LeakWatch (“we”, “our”, or “us”) respects your privacy and is committed to protecting your personal data in compliance with the EU General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679).
This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website or engage with our data protection and cybersecurity services.
1. Who We Are
LeakWatch is a data protection and cybersecurity firm providing digital security solutions, compliance consulting, and threat prevention services.
As a Data Controller (and, in some cases, Data Processor), LeakWatch determines the purposes and means of processing personal data.
Contact Details:
LeakWatch Data Protection Office
Email: privacy@leakwatch.com
Website: [www.leakwatch.com]
Address: [Insert Registered Office Address]
2. What Personal Data We Collect
We may collect and process the following categories of data:
a. Identity and Contact Data
Name, job title, company name
Email address, phone number
Postal address (if applicable)
b. Technical and Usage Data
IP address
Browser type and version
Device and operating system information
Access timestamps and usage activity
c. Client and Project Data
Business information required for security assessments or audits
Data necessary to perform contracted cybersecurity services
d. Communication Data
Information provided in correspondence with us (e.g., emails, contact forms)
3. Legal Basis for Processing Personal Data
LeakWatch processes your personal data lawfully, fairly, and transparently under one or more of the following legal bases:
| Purpose | Legal Basis (under GDPR) |
|---|---|
| To provide services or enter into a contract | Article 6(1)(b) – Contract necessity |
| To send updates, newsletters, or marketing (with consent) | Article 6(1)(a) – Consent |
| To ensure network and information security | Article 6(1)(f) – Legitimate interests |
| To comply with legal obligations | Article 6(1)(c) – Legal obligation |
| To improve website and services | Article 6(1)(f) – Legitimate interests |
4. How We Use Personal Data
LeakWatch uses personal data to:
Deliver and manage our cybersecurity and compliance services
Authenticate and communicate with clients
Send service updates or security alerts
Improve service quality and system security
Meet regulatory, audit, and reporting obligations
We do not use personal data for profiling or automated decision-making.
5. Data Sharing and Third Parties
We may share data with:
Authorized service providers (e.g., hosting, analytics, email services)
Legal and regulatory authorities, where required
Partners or subcontractors, under strict confidentiality and data processing agreements (DPAs)
All third-party processors are vetted for GDPR compliance and required to maintain data protection measures equivalent to LeakWatch’s standards.
LeakWatch does not sell or rent personal data to any third party.
6. International Data Transfers
If we transfer your personal data outside the European Economic Area (EEA), we ensure adequate protection by:
Using Standard Contractual Clauses (SCCs) approved by the European Commission; or
Transferring to countries recognized as providing adequate data protection; or
Implementing binding corporate rules (BCRs) or other lawful safeguards.
7. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy or to meet legal, accounting, or reporting requirements.
After the retention period expires, data is securely deleted or anonymized.
8. Your Data Protection Rights
Under the GDPR, you have the following rights:
Right of Access – Request a copy of your personal data.
Right to Rectification – Correct inaccurate or incomplete data.
Right to Erasure (“Right to be Forgotten”) – Request deletion of your data.
Right to Restrict Processing – Limit how we use your data.
Right to Data Portability – Receive your data in a structured, machine-readable format.
Right to Object – Object to data processing under legitimate interests.
Right to Withdraw Consent – Withdraw consent at any time, without affecting prior lawful processing.
To exercise these rights, contact info@leakwatch.com. We respond within 30 days as required under GDPR.
9. Data Security
LeakWatch implements robust technical and organizational measures to protect personal data, including:
Encryption (in transit and at rest)
Multi-factor authentication and access controls
Secure data centers with restricted access
Regular vulnerability testing and audits
Incident response and breach notification procedures
In the event of a data breach, affected individuals and regulators will be notified promptly, as required by Articles 33 and 34 of the GDPR.
10. Cookies and Analytics
Our website uses cookies and analytics tools to enhance user experience and monitor traffic.
You can adjust your browser settings to block or delete cookies. For more details, refer to our Cookie Policy.
11. Children’s Privacy
LeakWatch’s services are not directed at individuals under 16 years of age, and we do not knowingly collect personal data from children.
12. Changes to This Policy
We may update this Privacy Policy periodically. The latest version will always be available on our website with the “last updated” date revised accordingly.
13. Contact and Complaints
If you have any concerns or complaints about how your personal data is handled, please contact our Data Protection Officer at:
Email: info@leakwatch.com
Phone: +44 909087788
Address: No 1 Admin Road, London, UK
You also have the right to lodge a complaint with your local Data Protection Authority (DPA) if you believe your rights have been violated