Innovation Pulse
    Kin Innovation Agency

    Privacy Policy

    How Kin Innovation Agency collects, uses, and protects your personal data, and the rights you have over it under the General Data Protection Regulation (GDPR).

    Last updated: 30 May 2026

    1. Who we are

    Kin Innovation Agency ("Kin", "we", "our", or "us") is the data controller responsible for the personal data described in this policy. We provide innovation capability, ISO readiness, and governance services, along with this website and the Innovation Pulse assessment tool.

    If you have any questions about this policy or how we handle your data, you can reach us at hello@kininnovation.eu.

    2. The data we collect

    We only collect the data we need to respond to you and deliver our services.

    Information you give us

    • Contact and enquiries: your name, email address, organisation, and your role. Depending on the enquiry, this may also include your organisation type and size, the service package you are interested in, and the related pricing details, along with the content of any message you send us. We may send you a confirmation email in response.
    • Innovation Pulse: your name, work email, organisation, and any optional context you provide so we can generate and send your assessment report.
    • Client portal: account and workspace information needed to give authorised users access to their compliance and readiness data.

    Information collected automatically

    When you visit our website we may collect limited technical and usage data, such as your browser type, device information, and how you navigate the site. We use this to keep the site secure and to understand how it is used. See section 9 for more on cookies and analytics.

    3. Why we use your data and our legal bases

    Under the GDPR, we rely on the following legal bases to process your data:

    • Consent: when you submit an enquiry or request an Innovation Pulse report.
    • Contract: to deliver the services you or your organisation have engaged us to provide.
    • Legitimate interests: to run, secure, and improve our website and services, provided your rights do not override those interests.
    • Legal obligation: where we are required to retain or disclose data to comply with the law.

    We do not sell your personal data to anyone.

    4. The Innovation Pulse assessment

    When you complete the Innovation Pulse, the context you provide is processed to generate a tailored report. To produce this report, the relevant assessment content is sent to a third-party artificial intelligence provider acting on our behalf. We share only what is needed to generate the report, and we ask such providers not to use your content to train their own models.

    Your completed report may then be delivered to the email address you provided. We use a third-party email provider to send these messages.

    5. Sharing your data

    We share personal data only with service providers who help us operate, and only to the extent necessary. These may include providers of hosting, database, email delivery, AI report generation, and website analytics. Each acts under contract and is required to protect your data and use it only for the purposes we specify.

    We may also disclose data where required by law, to protect our rights, or in connection with a business transfer such as a merger or acquisition.

    6. International transfers

    Some of our service providers may process data outside the European Economic Area. Where this happens, we put appropriate safeguards in place, such as the European Commission's standard contractual clauses, to ensure your data receives an equivalent level of protection.

    7. How long we keep it

    We retain personal data only for as long as necessary to fulfil the purpose for which it was collected, to meet our legal and contractual obligations, or to resolve disputes. When data is no longer needed, we delete it or anonymise it securely. You can ask us to delete your data at any time (see section 8).

    8. Your rights under the GDPR

    You have the right to:

    • access the personal data we hold about you
    • have inaccurate data corrected
    • have your data erased
    • restrict or object to certain processing
    • receive your data in a portable format
    • withdraw consent at any time, without affecting prior processing
    • lodge a complaint with your local data protection supervisory authority

    To exercise any of these rights, contact us at hello@kininnovation.eu. We will respond within the timeframes required by law.

    9. Cookies and analytics

    We may use cookies and similar technologies to keep the site working, remember your preferences, and understand how the site is used. You can control or disable cookies through your browser settings, although some parts of the site may not function as intended if you do.

    10. How we protect your data

    We use appropriate technical and organisational measures to protect your data against unauthorised access, loss, or misuse, including encryption in transit, access controls, and the principle of collecting only what we need. No method of transmission or storage is completely secure, but we work to keep your data safe.

    11. Changes to this policy

    We may update this policy from time to time to reflect changes in our practices or legal requirements. When we do, we will revise the "Last updated" date at the top of this page. We encourage you to review this page periodically.

    12. Contact us

    If you have questions about this policy, wish to exercise your rights, or want to make a complaint, please contact us at hello@kininnovation.eu.

    Questions about your data?

    We are happy to explain how we handle your information or help you exercise your rights.