top of page


This privacy policy explains who we are, how we collect and use personal information obtained from users of our website, and your rights in relation to your personal information.

  • Who we are

  • How we use your personal information

  • Transfer of your information out of the UK and EEA

  • Your rights

  • Keeping your personal information secure

  • How to complain

  • How to contact us


Who we are

We collect information from you when you use our website or complete

Theolytics is a biotechnology company, harnessing viruses to combat cancer. We are responsible for personal information that we hold about you. We use this personal information as a ‘data controller’ for the purposes of data privacy laws. 

How we use your personal information

We process data for the following purposes:


​​We collect personal information about you when you communicate with us or access our website.


We collect this personal information from you either directly, such as when you contact us, or indirectly, such as your browsing activity while on our website.

We also collect personal information about you when you apply to us via other sources, e.g LinkedIn, Indeed or other similar platforms.

The personal information we collect about you depends on the particular activities we are carrying out and may include: 

  • Your name, address and contact details

  • Information about the services you provide

  • Your IP address

  • CV and cover letter


We use this personal information to:

  • Manage our relationship with you

  • Further our research and development activities

  • Administer and protect our business

  • Purchase goods or services from you

  • Recruit new employees

  • Comply with our terms and policies, which include the prevention and detection of fraud or other crimes.


This website is not intended for use by children. We do not use personal information relating to children.

Our legal basis for processing your personal information

We are required to have a legal basis for using your personal information. The legal basis depends on what personal information we process, and why. 

The legal bases we rely on include:

  • Consent: where you have given us clear consent for us to process your personal information for a specific purpose

  • Contract: where our use of your personal information is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract

  • Legal obligation: where our use of your personal information is necessary for us to comply with the law (not including contractual obligations)

  • Legitimate interests: where our use of your personal information is necessary for our legitimate interests or the legitimate interests of a third party (unless there is a good reason to protect your personal information which overrides our legitimate interests).

Who we share your personal information with

We share your personal information with:

  • Professional service providers, such as our investors and lawyers where it is necessary for our legitimate interests, including the prevention and detection of fraud or other crimes

  • Third party service providers for the purposes of hosting our website. 


We may share your personal information with third parties to whom we may merge or sell our business or assets.

We will share personal information with law enforcement or other authorities if required by applicable law.

We will not share your personal information with any other third party.

Transfer of your information out of the UK and EEA

The information we collect may be transferred to and stored in countries which are outside of the jurisdiction you are in and which are located outside the United Kingdom (UK) and European Economic Area (EEA).

Such countries do not have the same data protection laws as the UK and EEA. As at the date of this policy, any transfer of your personal information will be subject to relevant safeguards as set out in the European Commission approved contract (as permitted under GDPR Article 46(5)). These are designed to help safeguard your privacy rights and give you remedies in the unlikely event of a misuse of your personal information.


If you apply for a role at Theolytics, we may ask you to provide various pieces of personal information including professional and educational history, information about your skills and experience and proof of your right to work. Whilst you are not required to provide all requested information, failure to do so may result in us being unable to proceed with your application for a role.

Your rights

Under the UK GDPR you have a number of important rights, including rights to:

  • Access your personal information 

  • Require us to correct any mistakes 

  • Require the erasure of personal information in certain situations

  • Receive the personal information concerning you which you have provided to us, in a common and machine-readable format 

  • Object to processing of personal information for direct marketing

  • Object to our continued processing of your personal information

  • Restrict our processing of your personal information


You can find out more about these rights and when they apply here

If you would like to exercise any of those rights, please email us at

Keeping your personal information secure

We have appropriate security measures in place to prevent personal information from being accidentally lost or used in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.


We also have procedures in place to deal with any suspected data security breach. If legally required, we will notify you and the regulator of a suspected data security breach.

Links to third party sites

Our website contains links to third party sites, such as our investors and collaborators. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for their policies. Please check the individual policies before you submit any information to those websites.

Changes to this policy

We reserve the right to modify or amend this policy at any time and will always post the revised policy on our website.

Contact us

If you have any questions or concerns about how Theolytics has used your personal data, contact Theolytics via email at or by writing to us at:


Theolytics Limited

Sherard Building 

Edmund Halley Road

Oxford Science Park




How to complain

We hope that we can resolve any query or concern you raise about our use of your information. 

In the UK, you have a right to complain to the Information Commissioner’s Office, who may be contacted here.

bottom of page