Every Single Tick

Legal

Privacy policy

How we collect, use, and protect your personal data. This policy applies to all visitors to our website and to clients who engage our services.

Data controller

Every Single Tick (“we”, “us”, “our”) is the data controller responsible for your personal data. We are a trading strategy automation consultancy based in England, United Kingdom.

For any data protection queries, contact us at [email protected].

What personal data we collect

We collect only the personal data necessary to respond to your enquiries and deliver our services:

  • Contact details: name, email address, and any other details you provide via our contact form or booking system.
  • Project materials: strategy documents, screenshots, code files, chat exports, and links you share during enquiries or engagements.
  • Booking information: scheduling details collected through our Cal.com booking system.
  • Technical data: IP address, browser type, and pages visited, collected automatically through server logs and strictly necessary cookies.

We do not collect financial account details, trading account credentials, or brokerage information through our website.

How and why we use your data

Under UK GDPR, we must have a lawful basis for processing your personal data. The table below sets out each purpose and its corresponding legal basis:

Responding to enquiries and providing proposals

Lawful basis: Pre-contractual steps at your request (Article 6(1)(b) UK GDPR)

Delivering contracted consulting and software development services

Lawful basis: Performance of a contract (Article 6(1)(b) UK GDPR)

Maintaining project records for ongoing support and continuity

Lawful basis: Legitimate interests — ensuring service quality and continuity (Article 6(1)(f) UK GDPR)

Website security, server logs, and fraud prevention

Lawful basis: Legitimate interests — protecting our systems and users (Article 6(1)(f) UK GDPR)

Complying with tax, accounting, and other legal obligations

Lawful basis: Legal obligation (Article 6(1)(c) UK GDPR)

Who we share your data with

We do not sell your personal data. We may share it with the following categories of recipients where necessary to deliver our services:

  • Email provider (Brevo): to send transactional emails such as booking confirmations. Brevo processes data in the EEA, which is covered by a UK adequacy decision.
  • Booking system (Cal.com): to manage scheduling. Self-hosted on our infrastructure in the UK.
  • CDN and security (Cloudflare): to serve our website and protect against attacks. Cloudflare may process data in the US under the UK Extension to the EU-US Data Privacy Framework.
  • Professional advisors: accountants, legal counsel, and auditors where required by law.

International transfers

Where your personal data is transferred outside the United Kingdom, we ensure it is protected by one of the following safeguards: a UK adequacy decision for the recipient country, the UK International Data Transfer Agreement (IDTA), or the UK Addendum to the EU Standard Contractual Clauses.

You may request a copy of the relevant transfer safeguards by contacting us at [email protected].

Confidentiality

We treat all strategy materials, source code, and proprietary trading logic as strictly confidential. Non-disclosure agreements (NDAs) are available upon request and can be executed before any materials are shared.

Data retention

We retain personal data only for as long as necessary for the purpose it was collected:

  • Enquiries that do not proceed: deleted within 12 months of last contact.
  • Client engagement records: retained for 6 years after the engagement ends, in line with HMRC requirements and the Limitation Act 1980.
  • Server logs: automatically deleted after 90 days.

Cookies

Our website uses only strictly necessary cookies required for the site to function (e.g., session management and security). These cookies do not require consent under the Privacy and Electronic Communications Regulations (PECR) 2003.

We do not use third-party analytics, advertising, or tracking cookies.

Your rights

Under UK GDPR, you have the following rights in relation to your personal data:

  • Access — request a copy of the personal data we hold about you (Article 15).
  • Rectification — ask us to correct inaccurate or incomplete data (Article 16).
  • Erasure — ask us to delete your data where there is no compelling reason for continued processing (Article 17).
  • Restriction — ask us to restrict processing while a concern is resolved (Article 18).
  • Data portability — receive your data in a structured, machine-readable format (Article 20).
  • Object — object to processing based on legitimate interests (Article 21).

To exercise any of these rights, email [email protected]. We will respond within one month.

Complaints

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

  • Website: ico.org.uk
  • Telephone: 0303 123 1113

We would appreciate the opportunity to address your concern first — please contact us at [email protected] before escalating to the ICO.

This privacy policy was last updated on 9 March 2026. We may update this policy from time to time — changes will be posted on this page with a revised date.

This policy is provided for informational purposes and is not a substitute for legal advice.