Privacy Policy

Privacy Policy – SmartOps IT

1. Data Controller

The Data Controller for your personal data is SmartOps IT, operating as a Sole Trader in the United Kingdom.

Correspondence Address:

SmartOps IT
Lytchett House
13 Freeland Park
Wareham Road
Poole, Dorset
BH16 6FA
United Kingdom

Strona www: https://smartopsit.co.uk
E-mail: info@smartopsit.co.uk

Personal data is processed in accordance with the UK GDPR and the Data Protection Act 2018.

2. Scope and Purposes of Processing

We process personal data only to the extent necessary to carry out IT business activities, Managed Service Provider (MSP) services, and cybersecurity services.

Personal data is obtained directly from you or from systems and accounts to which you grant us authorised access.

A. Contact Form / E-mail

Data scope: Name, e-mail address, message content, technical data (e.g. IP address).

Purpose: Responding to enquiries, preparing quotations, and providing IT and cybersecurity services.

Legal basis:
• Article 6(1)(b) UK GDPR – performance of a contract or steps prior to entering into a contract.
• Article 6(1)(f) UK GDPR – legitimate interests of the controller (business communication).

3. Technical Data and Security

Due to the nature of our services (IT / Cybersecurity), we may process technical data such as system logs or IP addresses. This data is used exclusively for:

• ensuring system security;
• detecting incidents and threats;
• providing IT services.

Legal basis: Article 6(1)(f) UK GDPR – legitimate interest (IT security).

4. Social Media

Our website contains links only to external services (Facebook, Instagram, LinkedIn).

We do not use tracking plugins or marketing pixels.

Once you click a link, the privacy policy of the relevant third-party service applies.

5. Cookies

The website uses only strictly necessary cookies required for its proper and secure operation.

❌ We do not use Google Analytics.
❌ We do not use marketing or tracking cookies.
❌ We do not engage in user profiling.

Accordingly, under the Privacy and Electronic Communications Regulations (PECR), a cookie consent banner is not required.

6. Data Recipients

Personal data may be shared with trusted third parties only where necessary for the operation of our business, including:

• hosting and e-mail service providers;
• postal operators handling business correspondence;
• public authorities (e.g. HMRC), where required by UK law;
• customer support and helpdesk service providers (e.g. ticketing and support systems).

7. Data Transfers Outside the United Kingdom

As a rule, personal data is not transferred outside the United Kingdom.
Where such a transfer occurs (e.g. within IT infrastructure), it will be carried out in compliance with the UK GDPR and with appropriate legal safeguards in place (such as Standard Contractual Clauses).

8. Data Retention Period

• contact data – for the duration of cooperation or handling of the enquiry;
• technical data and logs – for the period necessary to ensure IT security and auditability;
• financial records – for 6 years plus the current financial year, in accordance with HMRC requirements.

9. Your Rights

Under the UK GDPR, you have the right to:

• access your personal data;
• rectify your personal data;
• erase your personal data (“right to be forgotten”);
• restrict processing;
• object to processing based on legitimate interests.

To exercise your rights, please contact us at: info@smartopsit.co.uk

10. Complaints

You have the right to lodge a complaint with the UK supervisory authority:

Information Commissioner’s Office (ICO)
https://ico.org.uk