Privacy Policy for Cavea Group

1. Who We Are

Cavea Group Limited is registered in England and Wales (Company No. 16441752).
Registered Office: 167–169 Great Portland Street, London, W1W 5PF, United Kingdom.
Email: admin@caveagroup.com

2. The Information We Collect

• Identity details such as name, job title, and organisation.
• Contact details such as email address and telephone number.
• Technical data such as IP address, browser type, and operating system.
• Usage data, including visited pages and site interactions.
• Cookies and similar technologies as described in our separate Cookie Policy.

3. Biometric Data at Live Events

During selected live experience events, we may collect biometric data such as skin conductance (electrodermal activity) and heart rate using wearable sensors. This data is pseudonymised, meaning any identifier is replaced with a code, and is handled separately from personal or registration details. No personal identifying information is associated with these biometric measurements unless separately provided for event management purposes.

Biometric data is collected solely for research analysis to understand participant engagement and emotional response. Data is never used to identify individuals, is stored securely using encryption and access controls, and is only shared in pseudonymised, aggregated form with authorised technical partners and for reporting.

You have the right to withdraw from the measurement and to contact us with any questions or concerns. Data retention, rights, and security measures for biometric data are in line with the UK GDPR, Data Protection Act 2018, and industry standards.
For more details, contact admin@caveagroup.com.

4. How We Use Your Information

• To respond to your enquiries.
• To operate and improve our website and services.
• To analyse trends and monitor website performance.
• To ensure website security and prevent misuse.
• To comply with legal obligations.

5. Lawful Basis for Processing

We rely on consent, legitimate interests, contractual necessity, and legal obligations under the UK GDPR and the Data Protection Act 2018.

6. Data Retention

Data is kept for only as long as needed: up to three years for general correspondence, anonymised analytics after 26 months, and statutory records as required by law.

7. Sharing and Transfers

We may share limited data with trusted service providers (e.g. hosting, analytics). If any data is transferred outside the UK or EEA, we apply appropriate safeguards such as Standard Contractual Clauses or UK adequacy regulations.

8. Your Data Protection Rights

Under UK data protection law, you have rights to access, correct, delete, restrict, or transfer your personal data, and to withdraw consent at any time.

You can contact us at admin@caveagroup.com. You may also raise any concerns with the Information Commissioner’s Office (ICO).

9. Data Security

We employ encryption, access control, and secure hosting to protect your information. Access to data is strictly limited to authorised personnel.

10. Third-Party Websites

Our website may link to third-party sites. We are not responsible for their content or privacy practices and encourage you to review their policies.

11. Updates to This Policy

This policy may be updated periodically. The latest version will always be posted on this page with the current revision date.

12. Contact Us

Cavea Group Limited
167–169 Great Portland Street, London, W1W 5PF, UK
Email: admin@caveagroup.com
Website: https://www.caveagroup.com