Privacy Policy

We take the protection of your privacy very seriously. Kindly review this privacy policy attentively as it encompasses crucial details regarding our identity, as well as the methods, reasons, and intentions behind collecting, storing, utilizing, and sharing your personal information. This page also outlines your rights concerning your personal information and provides guidance on how to get in touch with us or the UK Information Commissioner’s Office (ICO) if you have any concerns or complaints.

In the course of our operations, we collect, use, and assume responsibility for specific personal information related to you. Our actions adhere to the General Data Protection Regulation, which is applicable throughout the European Union, including the UK. As the ‘controller’ of this personal information under the purview of these laws, we are committed to ensuring compliance and safeguarding your privacy.

In this privacy policy, when we refer to “we” or “us,” we are specifically indicating RedFox Tech Ltd.

To ensure the application of high standards of best practices for protecting personal information, our data protection officer (DPO) offers assistance and guidance. If you have inquiries regarding the use of personal information, our DPO can be contacted via email at [dpo@redfoxtech.co.uk]. Additionally, you can reach out to us using the contact details provided at https://redfoxtech.co.uk/contact

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.

This website may have links to third-party websites, plug-ins, and applications.  Clicking on these links or enabling such connections may permit third parties to gather or share data about you.  We lack control over these third-party websites and bear no responsibility for their privacy policies.  As you navigate away from our site, we advise you to scrutinise the privacy notices of each website you encounter.

We may collect and use the following personal information about you:

We may also collect and use personal information about you in the following circumstances:

The provision of this personal information is essential for delivering services, whether directly to you or to our clients. Failure to furnish the requested personal information may result in delays or the inability to provide services to you.

We mostly collect data directly from you and can include but not limited to activities such as:

Other times we will use technology to collect data automatically:

We will only use your personal data when we’re allowed to by law.  Most commonly, we will use your data in the following circumstances:

Typically, we do not primarily depend on consent as the legal justification for processing your personal data. The exception is when you submit an inquiry to us through our website; in doing so, you implicitly consent to our use of any provided personal data to handle and respond to that specific inquiry. Additionally, this consent extends to the sending of third-party direct marketing communications to you via email or text message.

Regardless, you always have the right to withdraw consent to marketing at any time by letting us know.

Here’s a table which details the ways we use your typical personal data and which of the legal bases we rely on to do so.

We aim to offer you options regarding specific uses of personal data, especially concerning marketing and advertising.

We may employ your Identity, Contact, Technical, and Usage Data to formulate an understanding of your potential preferences, needs, or interests. This process guides our decisions on the relevance of products, services, and offers for you (referred to as marketing).

You may receive marketing communications from us if you have requested information, purchased goods or services, or provided your details during a competition entry or promotion registration. In each case, if you have not opted out of receiving marketing, you may receive communications from us.

We will solely utilise your personal data for the intended purposes for which we gathered it, unless we reasonably determine that there’s a need to employ it for another purpose, and that such purpose aligns with the original intent.

Should you seek clarification on how processing for the new purpose aligns with the initial one, please get in touch with us.

In instances where we need to use your personal data for an unrelated purpose, we will notify you and provide an explanation of the legal basis allowing such use.

It’s important to note that we may process your personal data without your explicit knowledge or consent, adhering to the aforementioned principles, when it is required or permitted by law.

We may have to share some of your personal data with external parties for the below purposes:

It is sometimes necessary for us to share your personal information outside the European Economic Area (EEA), e.g. with our service providers located outside the EEA (such as the US).

These transfers are subject to special rules under European and UK data protection law.

These non-EEA countries do not have the same data protection laws as the UK and EEA. We will, however, ensure the transfer complies with data protection law and all personal information will be secure. Our standard practice is to ensure that any US-based suppliers are certified under the EU-US Privacy Shield scheme, or alternatively to use standard data protection contract clauses that have been approved by the European Commission.

If you would like further information on international transfers of data, please contact our DPO.

We have implemented suitable security measures to prevent your personal data from being unintentionally lost, used or accessed without authorisation, altered, or disclosed. Furthermore, access to your personal data is restricted to employees, agents, contractors, and other third parties who have a legitimate business need to know. They will process your personal data solely based on our instructions and are bound by a duty of confidentiality.

We have established procedures to address any suspected personal data breaches and will inform you and any relevant regulatory authorities of a breach when it is legally mandated

We will retain your personal data only for the duration necessary to fulfil the purposes for which we initially collected it, including meeting any legal, accounting, or reporting obligations.

In determining the appropriate retention period, we consider factors such as the volume, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure, the purposes for processing, alternative means to achieve those purposes, and relevant legal requirements.

By law, we are obligated to retain fundamental customer information (including Contact, Identity, Financial, and Transaction Data) for 6 years after the cessation of customer relations for tax purposes.

Under certain circumstances, you can request the deletion of your data (refer to the “request erasure” section for more details).

In specific situations, we may anonymise your personal data for research or statistical purposes, rendering it no longer associated with you. In such cases, we may use this information indefinitely without further notice to you.

Data protection laws give you a number of rights as set out below. If you would like to exercise any of your rights, please contact our DPO in writing.