Privacy Policy

1. Introduction

Croft Smart Homes Ltd (“we”, “our”, or “us”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website and services.

This policy complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data Controller

Croft Smart Homes Ltd is the data controller responsible for your personal data. If you have any questions about this Privacy Policy or our data practices, please contact us at:

• Email: privacy@croftsmarthomes.co.uk

3. Information We Collect

We may collect and process the following types of personal data:

Information You Provide

• Contact information (name, email address, phone number)
• Property details when you request a quote
• Communication preferences
• Any other information you provide through our contact forms or during consultations

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Consent: When you submit a contact form or subscribe to our communications
• Contract: To provide services you’ve requested or purchased
• Legitimate interests: To improve our services, conduct marketing, and ensure security
• Legal obligations: To comply with applicable laws and regulations

5. How We Use Your Information

We use your personal data for the following purposes:

• To respond to your enquiries and provide quotes
• To deliver smart home products and provide setup support
• To provide customer support and maintenance services
• To send service updates and important notifications
• To send marketing communications (with your consent)
• To improve our website and services
• To comply with legal obligations
• To protect our business and prevent fraud

6. Data Sharing and Disclosure

We may share your personal data with:

• Service providers: Third parties who help us deliver our services (e.g., delivery partners, IT support)
• Professional advisors: Lawyers, accountants, and other professional advisors
• Law enforcement: When required by law or to protect our rights
• Business transfers: In connection with any merger, sale, or acquisition

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

7. International Data Transfers

Your data is primarily stored and processed in the United Kingdom. If we transfer data outside the UK, we ensure appropriate safeguards are in place, such as:

• Adequacy decisions by the UK government
• Standard contractual clauses approved by the Information Commissioner’s Office (ICO)
• Other appropriate safeguards as required by law

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including:

• Customer records: 7 years after last interaction (for warranty and legal purposes)
• Marketing contacts: Until you unsubscribe or 3 years of inactivity
• Financial records: 7 years (as required by law)

9. Your Rights

Under UK GDPR, you have the following rights regarding your personal data:

• Access: Request a copy of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data (in certain circumstances)
• Restriction: Request limited processing of your data
• Portability: Receive your data in a portable format
• Objection: Object to certain types of processing
• Withdraw consent: Where processing is based on consent

To exercise any of these rights, please contact us at privacy@croftsmarthomes.co.uk. We will respond within one month of receiving your request.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication
• Staff training on data protection
• Incident response procedures

11. Third-Party Services

We use the following third-party services that may process your data:

• Tally: For form submissions and lead management
• Cloudflare: For website hosting and security

Each service has its own privacy policy, and we encourage you to review them.

12. Children’s Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will take steps to delete it.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the “Last updated” date. We encourage you to review this policy periodically.

14. Complaints

If you have concerns about how we handle your personal data, please contact us first at privacy@croftsmarthomes.co.uk. We will investigate and attempt to resolve any complaints or disputes.

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

• Website: ico.org.uk
• Phone: 0303 123 1113
• Address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

15. Contact Us

For any questions about this Privacy Policy or our data practices, please contact us:

• Email: privacy@croftsmarthomes.co.uk
• Website: Contact Form