Last updated: 29.5.2026.
Incisive QA (“Incisive QA,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect personal information when you visit our website or engage with us as a prospective or active client.
This policy is written to align with the EU General Data Protection Regulation (GDPR), the UK GDPR, and the California Consumer Privacy Act (CCPA/CPRA).
1. Who We Are
Incisive QA is a software quality assurance (QA) outsourcing provider. We supply dedicated QA engineers and testing services to software companies.
- Legal entity: QA Incisive
For the purposes of this website and our marketing activities, Incisive QA acts as the data controller of your personal information.
2. Our Two Roles: Controller and Processor
Because of the nature of our business, we handle personal data in two distinct roles:
- As a data controller – for information we collect directly through our website, sales process, and marketing (for example, contact details of prospective clients). This Privacy Policy governs that information.
- As a data processor – when, during the delivery of QA services, we access data within a client’s systems or test environments on that client’s instructions. In that case, the client is the data controller, and our handling of such data is governed by our separate service agreement and Data Processing Agreement, not by this Privacy Policy.
3. Information We Collect
We collect only what we need:
- Information you provide to us – such as your name, email address, company name, job title, and the contents of any message when you complete a contact form, book a discovery call, or otherwise communicate with us.
- Technical information – such as IP address, browser type, device type, and pages visited, collected automatically when you use our website.
- Cookie data – as described in our Cookie Policy.
We do not seek to collect special-category (sensitive) personal data through our website, and we ask that you do not submit it to us through web forms.
4. How We Use Your Information
We use personal information to:
- respond to your inquiries and schedule requested calls or meetings;
- provide and improve our services and respond to client requests;
- send relevant business communications where you have agreed to receive them, or where we have a legitimate interest in doing so;
- operate, maintain, and improve our website; and
- comply with our legal and regulatory obligations.
5. Legal Bases for Processing (GDPR / UK GDPR)
Where the GDPR or UK GDPR applies, we rely on the following legal bases:
- Consent – for example, when you opt in to marketing communications.
- Performance of a contract – to provide services you or your company have requested.
- Legitimate interests – to operate our business, respond to inquiries, and promote our services, provided your rights do not override those interests.
- Legal obligation – where we are required to process data to comply with the law.
6. How We Share Information
We do not sell your personal information.
We may share information with trusted third-party service providers who help us operate our business – for example, website hosting, analytics, email, and scheduling tools. These providers process data only on our instructions and under appropriate data protection terms.
A current list of the categories of service providers we use is available on request.
We may also disclose information where required by law or to protect our legal rights.
7. International Data Transfers
We may transfer and store personal information in countries other than the one in which you reside, including the United States. Where we transfer personal data out of the EEA or the UK, we rely on appropriate safeguards such as the EU Standard Contractual Clauses and, for UK transfers, the UK International Data Transfer Addendum.
8. Data Retention
We keep personal information only for as long as necessary for the purposes described in this policy, or as required by law. When information is no longer needed, we securely delete or anonymize it.
9. Your Rights
Depending on where you live, you may have the following rights:
Under the GDPR / UK GDPR, you have the right to access, correct, delete, restrict, or object to the processing of your personal data; the right to data portability; and the right to withdraw consent at any time.
Under the CCPA/CPRA, if you are a California resident, you have the right to know what personal information we collect, to request its deletion, to correct inaccurate information, and to opt out of any sale or sharing of personal information. We do not sell personal information. You will not be discriminated against for exercising your rights.
To exercise any of these rights, contact us. You may also have the right to lodge a complaint with your local data protection authority.
10. Security
We apply appropriate technical and organizational measures to protect personal information against unauthorized access, loss, or misuse. No method of transmission over the internet is completely secure, so we cannot guarantee absolute security.
11. Children’s Privacy
Our website and services are intended for businesses and are not directed at children under 16. We do not knowingly collect personal information from children.
12. Automated Decision-Making
We do not use your personal information to make decisions based solely on automated processing that produce legal or similarly significant effects on you.
13. Changes to This Policy
We may update this Privacy Policy from time to time. The “Last updated” date at the top shows when it was last revised. Material changes will be posted on this page.
14. Contact Us
If you have any questions about this Privacy Policy or how we handle your information, contact us via Contact form.