Data & Privacy

Data Controller

The data controller for this research is the UK Enterprise GenAI Adoption Benchmark research team. You may contact us regarding data protection matters at privacy@example.com.

What Data We Collect

We collect the following types of data:

• Account information: Email address (required for authentication), name (optional)
• Organisation details: Organisation name, industry sector, size band, role
• Survey responses: Your answers to all survey questions
• Metadata: Timestamps, progress tracking, and session data for technical purposes

How We Use Your Data

Your data is used for the following purposes:

• Conducting research analysis on GenAI adoption across UK enterprises
• Producing aggregate reports and insights
• Providing benchmarking comparisons to participants
• Improving the survey instrument and research methodology

We will never sell your data to third parties or use it for marketing purposes.

Anonymisation

All survey data is anonymised prior to analysis and publication:

• Organisation identifiers are replaced with anonymous codes for analysis
• Personally identifiable information is stored separately from survey responses
• All published findings are in aggregate form only
• Small group analysis follows k-anonymity principles (minimum N=10) to prevent identification
• Any quotes or case studies are anonymised and attributed generically

Data Security

We implement robust security measures to protect your data:

• Encryption: Data is encrypted at rest and in transit using industry-standard encryption protocols
• Secure access: Access controls restrict data access to authorised research team members only
• UK storage: All data is stored within the United Kingdom in compliance with UK data protection requirements
• Regular audits: Security practices are regularly reviewed and audited
• Incident response: We have procedures in place to detect and respond to security incidents

Your Rights

Under the UK General Data Protection Regulation (UK GDPR), you have the following rights:

• Right of access: Request a copy of your personal data
• Right to rectification: Request correction of inaccurate data
• Right to erasure: Request deletion of your data (see below)
• Right to restrict processing: Request restriction of how your data is processed
• Right to data portability: Request transfer of your data to another organisation
• Right to object: Object to processing of your data

Right to Withdraw and Delete

You may withdraw your participation and request deletion of your data at any time:

• During survey completion: Simply close the survey; your responses will not be submitted
• After submission: Email privacy@example.com with your request to withdraw

Upon receiving a withdrawal request, we will delete your data from our active systems within 30 days. Note that data may have already been incorporated into aggregate analysis, which cannot be retroactively altered.

Data Retention

Survey data will be retained for a maximum of 730 days (approximately 2 years) from the date of submission. After this period, data will be securely deleted. Aggregate research findings may be retained indefinitely for research and benchmarking purposes, but these contain no personally identifiable information.

Children's Privacy

This survey is intended for adults participating in a professional capacity. We do not knowingly collect information from individuals under the age of 18. If you are under 18, please do not participate in this survey.

International Transfers

Your data is not transferred outside the United Kingdom. All data processing and storage takes place within the UK, in compliance with UK data protection regulations.

Contact Us

If you have questions, concerns, or requests related to data protection, please contact us at privacy@example.com.