Imaging Beyond Ltd is committed to protecting your privacy and handling your personal data in a transparent, lawful, and secure manner. This Privacy Policy explains how we collect, use, store, and protect personal information when you interact with us, including through our website and business activities.

We prcess personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. Imaging Beyond Ltd is registered with the Information Commissioner’s Office (ICO) and complies with applicable data protection and information governance requirements. We regularly review our policies and practices to ensure ongoing compliance with legal and regulatory obligations and to reflect changes in our business or the law.

What information do we hold?

We collect, process, and store personal information about you, which may include:

• Your name and email address when you contact us for information or subscribe to alerts or updates via our website; and

• In relation to business contacts: organisation name, contact name, address, email address, telephone number, and information relevant to our business relationship with you.

Most of this information is provided directly by you. However, in some circumstances, we may receive personal information from third parties. For example, your employer or organisation may provide your details to us if you are designated as their point of contact.

When you visit our website, we may collect limited technical information such as your internet service provider’s domain name, the pages you access, and the time and date of your visit. This information is used solely to analyse website usage and improve our services. It is not linked to information that identifies you personally.

Cookies

When you visit our website, we use cookies. Cookies are small data files that help maintain your connection to the website and enable it to function effectively.

Cookies may be used to:

• Detect the type of device you are using

• Support language preferences

• Optimise website content and performance

These cookies do not collect or store personally identifiable information. You can refuse or manage cookies through your browser settings. For more information, please refer to our Cookie Policy.

How and why do we use your personal information?

We process your personal information on the basis of legitimate interests pursued by Imaging Beyond Ltd, in relation to the services and activities we provide. This includes using your information to:

• Respond to enquiries or requests you submit

• Contact you regarding our services, research activities, or collaborations

• Manage administrative and operational matters

• Communicate changes to our services or policies

• Prevent fraud and ensure the security of our systems

Where you have given consent, or where we are otherwise legally permitted to do so, we may also send you marketing or informational communications about our services. You may opt out at any time by using the “unsubscribe” option in our communications or by contacting us directly.

We may also process your information to comply with legal obligations, in connection with legal proceedings, or to establish, exercise, or defend our legal rights.

Where we rely on legitimate interests as the lawful basis for processing, you may contact us to request further information about our assessment of any potential impact on you.

Who do we share your information with?

Your personal information may be shared internally with staff at Imaging Beyond Ltd, strictly on a need-to-know basis and only for the purposes described in this Privacy Policy.

We may also share your information with:

• Professional advisers (such as legal, regulatory, or accounting advisers) where necessary to obtain advice

• Service providers who host or support our website, IT systems, or data storage infrastructure

• A third party that acquires Imaging Beyond Ltd or substantially all of its assets, in which case your information may be disclosed as part of due diligence and transferred following completion

We may also disclose your personal information where required to do so by law or to regulatory or law enforcement authorities.

Transfers of personal data outside the UK and EEA

Your personal data is primarily stored within the UK. However, it may also be stored or backed up on servers located outside the UK and European Economic Area, including in India or other jurisdictions where we engage trusted third-party service providers.

Where personal data is transferred internationally, we ensure appropriate safeguards are in place. This includes transferring data only to countries deemed to provide an adequate level of data protection or using standard contractual clauses approved by the UK Government or European Commission, as applicable.

If you would like further information about these safeguards, please contact us using the details below.

How long will we keep your information?

We retain personal information only for as long as is reasonably necessary to fulfil the purposes set out in this Privacy Policy and to comply with our legal and regulatory obligations.

Where information is no longer required, it will be securely deleted or anonymised.

Your rights

Under UK GDPR, you have the following rights in relation to your personal information:

• Right to be informed – to receive clear information about how your data is used

• Right of access – to request a copy of the personal data we hold about you

• Right to rectification – to request correction of inaccurate or incomplete data

• Right to erasure – to request deletion of your data where there is no lawful reason for us to retain it

• Right to restrict processing – to limit how we use your data in certain circumstances

• Right to data portability – to receive your data in a structured, commonly used, machine-readable format

• Right to withdraw consent – where processing is based on consent

• Right to object – particularly where processing is based on legitimate interests or for direct marketing

To exercise any of these rights, please contact us using the details set out below.

The Children’s Code

Protecting children’s privacy is important to us. Our website is not intended for children under the age of 16, and we do not knowingly collect personal data from children under 16 without parental consent.

If we become aware that personal data has been collected from a child under 16 without appropriate consent, we will take steps to delete that information. Parents or guardians who believe their child has provided personal data via our website should contact us immediately.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time to ensure it remains accurate, compliant, and reflective of changes in law or our business activities.

Last updated: 4 January 2026

Contacting us and making a complaint

If you have any questions about this Privacy Policy, wish to exercise your rights, or have concerns about how your personal data is handled, please contact us at:

Email: contact@imagingbeyond.com

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO).