This privacy notice is effective as of 1st January 2024.

Kairos & Metis respects your privacy and personal data and vouches to adhere to the best practices and requirements set out in the GDPR.

This privacy notice explains how Kairos and Metis collects, uses and shares your personal data when you use our website and sign up to our classes.

1. About our privacy notice
2. Personal information we collect
3. How we use your personal data
4. How we share your personal data
5. How we store your personal data
6. Your data protection rights
7. How to contact us
 

1. About our privacy notice

This privacy notice applies to our website and any email subscription or registration of interest processes that are necessary to maintain communications and provide our services (the “Services”).  For the purposes of any data you provide, or that is collected by us for or in connection with the Services, Kairos & Metis will be the controller of your data.

It is important that you read this privacy notice, and any other documents referred to in this privacy notice, together with any other privacy notice we may provide on specific occasions so that you are fully aware of when and how we are collecting or processing your personal data, and why we are using your data.

2. Personal information we collect

We collect information about you in multiple ways: directly from you, and from third-party sources/automated technologies.

Data collected from third-party sources/automated technologies

We and service providers acting on our behalf, like Instagram, store log files and use tracking technologies such as cookies, pixels and web beacons.

• We and our services providers use these technologies to collect and analyse technical information including:
• Country information
• Device type
• Your operating system version
• Your browser type and version
• Referring and exiting pages and URLs

For further information on the automated technologies that we use, the controls you have over them and the settings to turn off/ reject cookies, please see our Cookie and Tracking Notice.

Data you provide to us

The types of personal information that we collect directly from you depends on the content and features of the Services you use and how you otherwise interact with us and may include:

Data you provide when you subscribe or register interest, such as your name, email address, phone number;

Information that you communicate to us, such as questions or information you send to us.

Data from your use of the Services

The Services may automatically collect information on how you and your device interact with the Service such as:

• Computer, device and connection information, such as country information, browser type and version, operating system and other software installed on your device, unique device identifier and other technical identifiers.
• Usage data, such as logs of when you visit or use our Services, browsing actions and patterns, when you view or click on content or ads (on or off our website or Instagram account), when you share content, what sites you visit after you leave our Services, referring domains, and any other data that your device may send to us based on your phone settings (e.g. location data).

We collect this data through our servers and the use of cookies and other similar technologies. We use cookies to collect data to link you and your device(s) with your activity when using our Services.

We use cookies from third parties (such as Instagram) on our Services to allow us to collect data on how you use and interact with our Services (see Developing our Services in Section 3). If you have given us permission to use analytics before, you can turn off/ reject the collection of this data using the settings provided in our Cookie Notice.
 

3. How we use your personal data

How we use your data will depend on a number of factors. These include: how the data was collected, which Service you use, and any choices you have made about your data (either in the Cookie policy opt-ins or where you have notified us).

We will only collect and process your data where we have a lawful basis for doing so. Lawful bases include consent (where you have provided it to us) and “legitimate interests” (legal accountability, purpose of Services provision).

Where we rely on your consent to process your data (such as for direct marketing) you have the right to withdraw or decline your consent at any time. Where we rely on legitimate interests, you have the right to object to those legitimate interests. If you have any questions around what basis we are processing any of your data, please contact us at mish@kairosandmetis.co.uk

We will use your personal data in the following circumstances:

• registering interest in our Services;
• providing the agreed upon Services including payment process;
• direct marketing unless you have opted out.

To keep in touch with you

We may contact you via email, the Services (e.g. using notices), or by other means (e.g phone or WhatsApp) in order to send you messages about Service confirmation (registration of interest/service provision/payments received), availability, security issues, or similar service issues. Please be aware that, whilst you cannot opt out of receiving service messages or legal notices from us, we will not provide you with direct marketing or information about relevant events unless you have specifically given us your consent for such.

Advertising

We will show you (and measure and report on the performance of) ads, through advertisers, like Google Ads, LinkedIn and Instagram. Where we do so, we use the following data to tailor the ads that you see to ones that what we think are more relevant to you:

• data from various technologies on and off our Services (e.g. cookies, pixels, ad tags, and device identifiers)
• information that you provide to us (such as that described in section 2);
• data from your use of our Services (such as that described in section 2);
• information from advertising partners and publishers; and
• other information described in section 2 above.

Information on our Advertising Providers

We use tracking pixels provided by our advertising providers (Google Ads, LinkedIn and Instagram) to follow the actions of users (such as link clicks and pages viewed) after they are redirected to our website by clicking on an advertisement. We use this information to gather insights into our audiences and assess the effectiveness of advertising campaigns that we run on those platforms. The collected data remains anonymous, meaning that we cannot see the personal data of any individual user. However, the collected data may be saved and processed by the advertising provider, allowing them to connect your account with them with the collected data, and use the data for their own advertising purposes. Additional cookies may be saved on your computer for these purposes.

We also use pixels to identify users who have visited our website before so that we can serve them ads on our advertising providers platforms that are likely to be of more relevance to them.

For further information on the technologies we use for advertising purposes, links to the privacy policies of our advertising providers and instructions on how to opt out of these, please see our Cookie and Tracking Notice.

Developing our Services

We use your data, including any feedback that you provide to us, surveys that you voluntarily complete, and data about your engagement with certain content using the Services, to develop our Services in order to encourage better future engagement and to provide you with a better experience going forward.

We use cookies to analyse how the Services are accessed, used or are performing. This information is then used to maintain, operate and enhance the Services with the aim of improving your overall experience. We use analytics tools like Instagram Analytics to track page views and user behaviour within the Services. It’s important to know that your data is kept on these services (please see Section 4 for information on how your data is shared).

Where you have opted in to receive marketing emails, we may also obtain information from our emails to you, such as whether an email has been delivered and if you have opened an email.
 

4. How we share your personal data

Suppliers and Service Providers

Depending on how you use the services, we share your personal data with:

• email services providers (Ionos),
• web analytics service providers (Instagram Analytics),
• bank transaction services,
• IT service providers (Google).

This may be necessary to provide the Services, complete a transaction or fulfill your request based on our instructions. Your personal data may be accessed, stored or processed by these services.

We use data processors who are third parties to provide elements of services for us. Where possible, we aim to keep your data anonymised.

With regulators or where required by law

In some circumstances, we may be legally required to use or disclose information about you. Examples of when this might be necessary include, to:

• comply with a regulator’s investigation, or to prevent or act in respect of suspected or actual illegal activities taking place via the Services;
• enforce the Terms of Use or any other agreements we have with you or others;
• investigate and defend ourselves against third-party claims or allegations; and
• protect the security and integrity of the Services.

Where we need to use your personal data for one of the reasons listed above, we will attempt to notify you of such, unless prohibited by law or court order or in case of emergency.

5. How we store your personal data

Cross-border transfers of data

We process and store data inside the United Kingdom and we rely on legally provided mechanisms to lawfully transfer data across borders.

Google may transfer your data outside of these regions (e.g. to process and store in the USA) following appropriate safeguards.

Data retention

As a general rule, we retain your data as long as we require to provide you with the Services. This is subject to your exercise of rights (set out in section 6).

Security

We intend to implement good standard security safeguards designed to protect your data. In addition, we limit access to your personal data to those employees and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality. However, we cannot guarantee the security of any information that you provide when using the Services. In the rare event of any reportable data breach, we will notify you as soon as possible and in accordance with regulatory requirements.
 

6. Your data protection rights

You have rights under data protection law, namely the Data Protection Act 2018, GDPR (United Kingdom General Data Protection Regulation) (UK GDPR)  and any legislation implemented in connection with these. Where data is processed by a controller or processor established in the European Union or comprises the data of people of the European Union, it also includes the EU General Data Protection Regulation (EU GDPR).

These rights include:

• Your right of access – You have the right to ask us for copies of your personal information.
• Your right to rectification – You have the right to ask us to correct personal data you think is inaccurate and the right to ask us to complete information you think is incomplete.
• Your right to erasure – You have the right to ask us to delete your personal data in certain circumstances.
• Your right to object to processing – You have the right to object to the processing of your personal data in certain circumstances, e.g. if we have no legal right to keep using it, or if your data is inaccurate or unlawfully held. You can withdraw consent to marketing communications and other non-Service related (i.e. strictly necessary) communications at any time.
• Your right to data portability – You have the right to ask that we transfer all or specified personal data you gave us to another organisation, or to you, in certain circumstances, by means of a copy of the data provided in a machine-readable form (e.g. pdf, word, excel etc.).
• Your right to restrict data processing – You have the right to ask us to restrict processing of your personal data in certain circumstances, e.g. you have an issue with the content of the information that we hold. This may be used as an alternative to erasing your data.

You are not required to pay any charge for exercising your rights. If you wish to exercise any of these rights, please contact us using the details in Section 7. We will respond to your request consistent with applicable laws. To protect your privacy and security, we may require you to verify your identity.
 

7. How to contact us

Kairos & Metis is a British company with its registered office at 45 Ashfield Court, 287 Clapham Road, London SW9 9BB (collectively referred to as “Kairos & Metis, “we”, “our” and “us” in this Privacy Policy).

If you have any questions about this privacy notice, concerns how your personal data is used by us, or wish to make a request to exercise your legal rights, you can contact our Data Protection Office (DPO) using the details below.

Name: Michaela Boitin

E-mail: mish@kairosandmetis.co.uk

Postal Address: 45 Ashfield Court, 287 Clapham Road, London SW9 9BB, UK