Privacy Policy

1. Who We Are (Data Controller)

Eivo UK is the data controller responsible for your personal data.

Registered address: The Old Chapel, Knighton, Powys, LD7 1BL, United Kingdom

Email: privacy@eivo.uk

Website: https://eivo.uk

If you have any questions about this Privacy Policy or how we handle your data, you may contact us using the details above.

2. Scope of This Policy

This Privacy Policy applies to:

• Visitors to our website

• Clients and prospective clients

• Users of our web design, web hosting, and related services

• Individuals who contact us by email, phone, or online forms

This policy does not apply to third-party websites or services that may be linked from our website.

3. Personal Data We Collect

We only collect personal data that is necessary, relevant, and proportionate.

3.1 Data You Provide Directly

This may include:

• Full name

• Business name

• Email address

• Telephone number

• Billing address

• Domain names

• Website content you provide (text, images, files)

• Login credentials for hosting or content management systems (where required)

• Communications sent to us (emails, messages, support requests)

3.2 Data Collected Automatically

When you visit our website, we may automatically collect:

• IP address

• Browser type and version

• Device type and operating system

• Pages visited and time spent on pages

• Referring URLs

This data is collected using cookies and similar technologies (see Section 11).

4. Lawful Bases for Processing

Under UK GDPR, we rely on the following lawful bases to process personal data:

• Contract: Processing is necessary to provide our services

• Legal obligation: Processing is required to comply with UK law

• Legitimate interests: To operate, secure, and improve our services

• Consent: Where you have explicitly given consent (e.g. marketing emails)

You may withdraw consent at any time where consent is the lawful basis.

5. How We Use Personal Data

We use personal data for the following purposes:

5.1 Service Delivery

• Designing, developing, and hosting websites

• Managing domains, servers, and hosting accounts

• Providing customer support and technical assistance

• Managing backups, security, and performance monitoring

5.2 Account & Billing Management

• Creating and managing client accounts

• Processing payments and invoices

• Preventing fraud and unauthorised access

5.3 Communication

• Responding to enquiries

• Sending service-related notifications

• Providing onboarding and support information

5.4 Website & Service Improvement

• Monitoring performance and reliability

• Analysing usage trends

• Improving security and user experience

5.5 Marketing (Optional)

• Sending service updates or promotional content (only where consent has been given)

6. Data Storage & Security

We take appropriate technical and organisational measures to protect personal data, including:

• Encrypted storage where appropriate

• Secure server infrastructure

• Firewalls and intrusion prevention systems

• Restricted access based on role and necessity

• Regular system updates and security patching

• Secure password and authentication practices

Personal data is only accessible to authorised personnel who require it to perform their duties.

7. Hosting & Third-Party Processors

To deliver our services, we may use trusted third-party processors, including:

• Data centres and hosting infrastructure providers

• Domain registrars

• Payment processors

• Backup and monitoring services

All third-party processors:

• Are contractually bound to comply with UK GDPR

• Only process data on our documented instructions

• Implement appropriate security measures

We do not sell personal data to third parties.

8. International Data Transfers

Where personal data is transferred outside the UK:

• We ensure appropriate safeguards are in place

• Transfers rely on adequacy regulations, standard contractual clauses, or equivalent protections

9. Data Retention

We retain personal data only for as long as necessary:

• While an active client relationship exists

• To meet legal, accounting, or regulatory requirements

• To resolve disputes or enforce agreements

When data is no longer required, it is securely deleted or anonymised.

10. Your Rights Under UK GDPR

You have the right to:

• Access your personal data

• Rectification of inaccurate or incomplete data

• Erasure (“right to be forgotten”)

• Restriction of processing

• Data portability

• Object to processing based on legitimate interests

• Withdraw consent at any time

To exercise your rights, contact us using the details in Section 1.

11. Data Deletion Requests

You may request deletion of your personal data at any time.

We will:

• Verify your identity

• Assess any legal or contractual obligations

• Delete or anonymise eligible data within statutory timeframes

Some data may be retained where required by law or for legitimate business purposes.

12. Cookies & Tracking Technologies

We use cookies to:

• Ensure website functionality

• Analyse website traffic

• Improve performance and usability

You can manage or disable cookies through your browser settings. Full details are provided in our Cookie Policy.

13. Children’s Data

Our services are not intended for individuals under the age of 16, and we do not knowingly collect data from children.

14. Data Breaches

In the event of a personal data breach:

• We will assess the risk promptly

• Notify the Information Commissioner’s Office (ICO) where required

• Inform affected individuals if there is a high risk to their rights and freedoms

15. Complaints

If you believe your data protection rights have been violated, you have the right to lodge a complaint with:

Information Commissioner’s Office (ICO)
Website: https://ico.org.uk

We encourage you to contact us first so we can address your concerns.

16. Changes to This Policy

We may update this Privacy Policy from time to time to reflect legal or operational changes.

The latest version will always be published on our website.

17. Contact Us

For all privacy-related enquiries:

Email: privacy@eivo.uk
Company: Eivo UK