PRIVACY POLICY

CPR Global Tech Ltd (“CPR Guardian”, “we”, “us”, or “our”) is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you use our website (www.cprguardian.com), purchase our products, or access our services.

We are committed to complying with data protection laws, including the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and, where applicable, the EU General Data Protection Regulation (GDPR).

By using our services, you acknowledge that you have read and understood this Privacy Policy.

We collect and process different types of personal information depending on how you interact with us. This includes:

A. Information You Provide to Us

• Identity & Contact Information – Including and limited to; Name, email address, phone number, postal address, date of birth, emergency contact details.
• Account Information – Username, password, and other login credentials.
• Payment Details – Billing address, credit/debit card details, and transaction history.
• Health & Safety Data – If you use our personal alarm or monitoring devices, we may collect data such as location, heart rate, falls, and other health-related data.
• Customer Support Data – Any correspondence or interactions with our support team, including emails, calls, and chat messages.

B. Information We Collect Automatically

When you visit our website or use our services, we may collect certain information automatically, including:

• Technical Data – IP address, browser type, device identifiers, operating system, and website usage statistics.
• Usage Data – Interactions with our website, including pages visited, time spent on pages, and referring websites.
• Geolocation Data – If you use a location-based service, we may collect your real-time location.

C. Information We Receive from Third Parties

We may receive information about you from:

• Payment providers to process transactions.
• Healthcare professionals or emergency contacts if you use our monitoring services.
• Marketing partners who provide us with insights into customer preferences.

We use your persona

A. To Provide Our Services

• Setting up and managing your account.
• Delivering and personalising our products and services.
• Processing payments and managing subscriptions.

B. To Ensure Safety & Emergency Response

• Monitoring device data for falls, heart rate, and location tracking (if enabled).
• Contacting emergency contacts or responders in case of an incident.
• Improving the accuracy of our safety and health monitoring features.

C. To Improve Our Services

• Analysing usage data to enhance our website, products, and customer experience.
• Conducting research and development for better safety and health monitoring solutions.
• Troubleshooting technical issues and improving website security.

D. To Communicate with You

• Sending important service updates, security notifications, or account-related messages.
• Responding to customer service inquiries and complaints.
• Sending surveys or feedback requests to improve our services.

E. For Marketing & Promotions

• Providing updates on new features, special offers, or company news (only with your consent).
• Sending targeted advertisements based on your interests and preferences.
• Conducting contests, promotions, or surveys.

F. For Legal & Security Purposes

• Detecting and preventing fraud, abuse, or security threats.
• Complying with legal obligations, such as law enforcement requests or regulatory compliance.
• Enforcing our Terms & Conditions and protecting our legal rights.

We process your personal data under the following legal bases:

• Consent – When you give us explicit permission to process your data for marketing or health monitoring.
• Contractual Necessity – When processing is necessary to provide our services.
• Legal Obligation – When we must comply with legal or regulatory requirements.
• Legitimate Interests – For improving our services, fraud prevention, and security measures.

We may share your personal data with third parties in the following circumstances:

A. With Service Providers

We work with trusted third parties to assist in operating our business, including:

• Payment processors (e.g., Stripe, PayPal) to handle transactions.
• Cloud storage providers to store customer data securely.
• IT security providers to prevent fraud and cyber threats.

B. With Emergency Contacts & Healthcare Providers

If you use our monitoring services, we may share your health or safety data with:

• Your designated emergency contacts.
• Healthcare professionals or responders in case of emergencies.

C. With Law Enforcement or Regulators

We may disclose your data if required by law or to protect our rights, property, or safety.

D. In Business Transfers

If CPR Global Tech Ltd undergoes a merger, acquisition, or asset sale, your data may be transferred to the new owner.

We primarily store and process data within the UK and the EU. However, if we transfer data outside these regions (e.g., cloud storage services in the US), we ensure appropriate safeguards, such as:

• Standard Contractual Clauses (SCCs) for EU data protection compliance.
• Data protection agreements with third parties to maintain security standards.

We retain personal data only for as long as necessary for the purposes outlined in this policy:

• Account information is retained while your account is active.
• Transaction data is retained for tax and accounting purposes.
• Health & safety data is retained in accordance with applicable regulations.

You can request data deletion at any time by contacting us.

You have the following rights regarding your personal data:

• Right to Access – Request a copy of the personal data we hold about you.
• Right to Rectification – Request corrections to inaccurate or incomplete data.
• Right to Erasure – Request deletion of your personal data in certain circumstances.
• Right to Restrict Processing – Limit how we use your data in specific situations.
• Right to Data Portability – Request your data in a machine-readable format.
• Right to Object – Object to processing for direct marketing or legitimate interest purposes.
• Right to Withdraw Consent – Opt out of marketing communications at any time.

To exercise any of these rights, please contact us at support@cprguardian.com

We implement strict security measures to protect your personal data, including:

• Encryption for secure data transmission.
• Access controls to limit who can access sensitive information.
• Regular security audits to detect and prevent vulnerabilities.

However, no system is 100% secure. Please take precautions to protect your login credentials.

We use cookies and similar tracking technologies to:

• Improve website functionality and performance.
• Analyse visitor interactions and improve user experience.
• Serve personalized ads (with your consent).

You can manage cookie preferences through your browser settings.

If you have any questions or concerns about this Privacy Policy, you can contact us at:

• CPR Global Tech Ltd (CPR Guardian)
• Email: support@cprguardian.com
• Phone: +44(0) 1792 398 239
• Address: 25 Tawe Business Village, Swansea Enterprise Park, Swansea SA7 9LA