Our privacy policy

Introduction

This Privacy Policy explains how Zeffer Ltd (“we”, “us”, or “our”) collects, uses, stores, and protects your personal data when you use our website or services.

We are committed to protecting your privacy and handling your personal data in a transparent and secure manner, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who We Are

Company name: Zeffer Ltd‍
Registered address: Eagle House, 28 Billing Road, Northampton, Northamptonshire, UK, NN1 5AJ
Email: compliance@zeffer.com

For the purposes of UK data protection law, Zeffer Ltd is the data controller.

Personal Data We Collect

We may collect and process the following types of personal data:

• Identity data (such as name)
• Contact data (such as email address, phone number)
• Technical data (such as IP address, browser type, device information)
• Usage data (such as pages visited and interactions with our website)
• Any information you provide when contacting us or using our services

We do not intentionally collect special category data unless explicitly required and lawful.

How We Collect Your Data

We collect personal data through:

• Direct interactions (e.g. contact forms, emails, enquiries)
• Automated technologies (e.g. cookies and analytics tools)
• Third parties or publicly available sources, where lawful

How We Use Your Personal Data

We use your personal data to:

• Provide and manage our services
• Respond to enquiries and communications
• Improve our website and services
• Monitor and analyse usage
• Comply with legal and regulatory obligations

Lawful Bases for Processing

Under UK GDPR, we rely on the following lawful bases to process personal data:

• Consent – where you have given clear permission
• Contract – where processing is necessary for a contract with you
• Legal obligation – where required by law
• Legitimate interests – where necessary for our business interests and your rights are not overridden

Data Sharing

We may share your personal data with:

• Service providers who support our business (e.g. IT, analytics, hosting)
• Professional advisers (e.g. legal or accounting)
• Regulators or authorities where legally required

All third parties are required to respect the security of your data and process it lawfully.

International Transfers

We do not transfer personal data outside the UK unless appropriate safeguards are in place, such as adequacy regulations or standard contractual clauses approved under UK GDPR.

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or reporting requirements.

Your Data Protection Rights

Under UK GDPR, you have the right to:

• Access your personal data
• Request correction of inaccurate data
• Request erasure of your data
• Object to or restrict processing
• Request data portability
• Withdraw consent at any time

To exercise your rights, please contact us using the details above.

Cookies

Our website uses cookies. For more information on how we use cookies and how you can manage them, please see our Cookies Policy.

Data Security

We have appropriate technical and organisational measures in place to protect personal data against unauthorised access, loss, or misuse.

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last updated” date.

Complaints

If you are unhappy with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
Website: ico.org.uk

We would, however, appreciate the opportunity to address your concerns first.