Privacy Policy
Last updated: 18 May 2026
This notice explains how Statixs Limited collects and uses personal data when you visit our website, get in touch with us, or enquire about the platform. It is written in plain English and covers only this website. If you are a care home operator using the Statixs platform, a separate Data Processing Agreement governs how we handle the data you manage through the platform.
1. Who we are
Statixs Limited is a software company registered in England and Wales. We build and operate the Statixs platform — a compliance operating system for CQC-regulated care homes and care groups.
For the purposes of this website privacy notice, Statixs Limited is the data controller — we decide what data is collected from website visitors and why.
Contact: [email protected]
2. Data we collect when you visit this website
2.1 Technical and usage data (collected automatically)
When you visit any page on this site, our infrastructure and analytics tools collect standard technical data:
- Pages visited and navigation path
- Time spent on pages
- Referring website or search query
- Browser type and version
- Device category (desktop, mobile, tablet)
- Broad geographic region (country or city level — never precise location)
- Anonymised IP address
This data is collected through Google Analytics 4 and Microsoft Clarity, but only if you have accepted analytics cookies. Without your consent, no analytics cookies are set and no analytics data is sent to these services. See our Cookies page for details.
2.2 Contact and enquiry data
If you fill in a contact form, book a demo, or subscribe to our newsletter, we collect:
- Your name
- Your work email address
- Your phone number (if provided)
- Your organisation and role (if provided)
- The content of your message or enquiry
We use this information to respond to your enquiry, arrange a product demonstration, or send you the content you requested. We do not add you to a marketing list without your explicit agreement.
2.3 Lead magnet and guide downloads
If you download a guide or resource, we collect your name and email address in order to deliver the content. We may follow up with relevant information about the Statixs platform. You can unsubscribe from any email at any time.
3. Why we process your data (lawful basis)
| Activity | Lawful basis |
|---|---|
| Responding to a contact or demo enquiry | Legitimate interests — responding to a business request you have initiated |
| Delivering a requested guide or resource | Steps taken at your request prior to a potential contract |
| Newsletter communications (where you have opted in) | Consent — you can withdraw at any time via the unsubscribe link in any email |
| Website analytics (GA4 and Clarity) | Consent — analytics cookies are only set after you explicitly accept them |
| Platform security and fraud prevention | Legitimate interests — protecting the platform and its users |
4. Cookies and analytics tools
We use cookies on this website. Strictly necessary cookies are always active because the site could not function without them. Analytics cookies — which power Google Analytics 4 and Microsoft Clarity — are only activated if you choose to accept them.
You can see a full list of every cookie we use, its provider, its purpose, and how long it lasts on our Cookies page. You can change your preferences at any time from the Cookie settings link in the footer.
Google Analytics 4 (GA4)
GA4 tells us how many visitors the site receives, which pages they visit, which channels bring them to the site, and whether they interact with key calls to action. We use this to improve the site and measure the effectiveness of our content.
GA4 is operated by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). Data may be processed in the United States under Standard Contractual Clauses approved by the European Commission. Google does not use your data for advertising purposes through our GA4 implementation — we have disabled all advertising features.
We have configured GA4 with IP anonymisation enabled, data retention set to 14 months, and advertising features disabled.
Vercel Analytics
We also use Vercel Analytics, which measures page performance using aggregate, cookieless data with no personal identifiers. This does not require consent and is not covered by the cookie banner.
5. Who we share your data with
We do not sell your personal data. We share data only with:
- Email delivery providers (Resend) — to send you content or responses you have requested
- Google (GA4) — analytics data if you have consented to analytics cookies
- Vercel — our hosting infrastructure; aggregate performance data only
All service providers are contractually required to process your data securely and only for the purposes we specify. They cannot use your data for their own commercial purposes.
6. International data transfers
Our website is hosted in the United Kingdom and European Union. Our primary infrastructure and data storage remain within the UK/EU.
Google and Microsoft may process some analytics data outside the UK/EU (including the United States). Both companies use Standard Contractual Clauses approved by the UK ICO and the European Commission as the legal mechanism for these transfers. You can opt out entirely by rejecting analytics cookies.
7. How long we keep your data
| Data type | Retention period |
|---|---|
| Contact and enquiry records | 3 years from last contact, unless you ask us to delete sooner |
| Newsletter subscriber records | Until you unsubscribe, then deleted within 30 days |
| GA4 analytics data | 14 months (configured within GA4) |
| Clarity session recordings | 90 days (Clarity default) |
| Security and server logs | 90 days |
| Your cookie consent record | Stored in your browser only — we do not retain it on our servers |
8. Your rights
Under UK GDPR, you have the right to:
- Access — request a copy of the personal data we hold about you
- Rectification — ask us to correct inaccurate data
- Erasure — ask us to delete your data in certain circumstances
- Restriction — ask us to pause processing while a concern is resolved
- Portability — receive your data in a structured, machine-readable format
- Objection — object to processing based on legitimate interests
- Withdraw consent — for any processing based on consent (such as analytics cookies or newsletter emails), you can withdraw at any time without detriment
To exercise any of these rights, email [email protected]. We will respond within 30 days.
9. Platform customers and employee data
If you are a care home operator or HR manager using the Statixs platform, the processing of employee and workforce data within the platform is governed by a separate Data Processing Agreement (DPA) between your organisation (as data controller) and Statixs Limited (as data processor). That agreement describes how employee personal data — including training records, DBS information, scheduling, and payroll data — is handled.
To request a copy of the DPA or to ask questions about data processing within the platform, contact [email protected].
10. Security
We use HTTPS across the entire site. Our infrastructure is hosted on Vercel with UK/EU-region data centres. We apply access controls, encryption in transit and at rest, and regular security reviews. No method of data transmission or storage is completely secure, but we take reasonable and proportionate steps to protect your information.
For more detail on our security practices, see our Security page.
11. Complaints
If you have a concern about how we handle your personal data, please contact us first at [email protected] and we will work to resolve it.
You also have the right to complain to the UK Information Commissioner's Office (ICO):
- Website: ico.org.uk/make-a-complaint
- Phone: 0303 123 1113
12. Changes to this notice
We may update this notice from time to time. When we make material changes, we will update the date at the top. We will not retroactively reduce your privacy rights without appropriate notice.