Addmonte Ltd - Data protection

Data protection

Addmonte Ltd is committed to protecting and respecting your privacy. When you visit our website, you may have done so by accessing one of the following domain names:

  • addmonte.co.uk

Who we are (controller information)

Addmonte Ltd is the controller of your personal data for the purposes described in this privacy policy. If you have any questions, please contact us at info@addmonte.co.uk.

Information automatically logged

We may use your IP address and similar technical data to help diagnose problems with our server, ensure security, and administer our website. This information is used solely for these purposes.

Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised or unlawful processing, accidental loss, destruction or damage. We use strong TLS/SSL encryption to help safeguard data in transit.

Contact forms

Our website uses a secure contact form (via HTTPS) for customers to request services. We collect the information you submit solely for our business purposes (for example, to respond to your enquiry and provide services). We do not share this information with third parties, except as required by law or as set out in this policy.

Third parties and processors

Information collected on this site is used by us. We do not sell personal data. We may engage trusted service providers (for example, hosting, analytics, payment processing) who process data on our behalf under written contracts and are required to protect it appropriately.

Information collected via contact forms

We may collect the following personal information that identifies you personally:

  • Your name
  • Email address
  • Invoice/billing address
  • Telephone number
  • Other billing information

Invoicing and online payment

We do not collect or store credit or debit card details. We use Stripe to process online payments. If you choose to pay an invoice by card, the necessary payment details are provided directly to Stripe. Please refer to Stripe’s privacy notice for details of its processing.

Cookies

Cookies used on our website do not contain personally identifiable information. Our cookies are managed via a separate cookie policy and consent mechanism; you can read more about cookies here.

We use Google Analytics only with consent to help analyse how visitors use our website. Information on how Google uses data can be found here. You can disable Google Analytics by using a browser add-on.

Log files

Like most standard websites, we use log files. This may include IP addresses, browser type, internet service provider (ISP), referring/exit pages, date/time stamp and number of clicks to analyse trends, administer the site and track aggregate usage. Data in these logs is not linked to personally identifiable information.

How we use personal information

We may use personal information to:

  • respond to enquiries and provide our services;
  • set up and administer your account, invoices and payments;
  • maintain the security and integrity of our systems;
  • send service communications and, where permitted, updates about our products and services.

Legal bases for processing

We rely on the following legal bases under the UK GDPR:

  • Contract – to take steps at your request prior to entering into a contract and to perform our contract with you (for example, responding to service requests, delivering services, invoicing).
  • Legal obligation – to comply with legal requirements, including tax and accounting rules (for example, keeping invoice records).
  • Legitimate interests – to operate, secure and improve our website and services (for example, server security logs, service announcements). We balance these interests against your rights and freedoms.
  • Consent – for non-essential analytics cookies and related processing (for example, Google Analytics in consent mode). You can withdraw consent at any time via our cookie controls.

International transfers

Where personal data is transferred outside the UK/EEA (for example, to the United States in connection with Google Analytics or Stripe), we ensure an appropriate transfer mechanism is in place. Depending on the recipient, this may include the UK–US Data Bridge (where the recipient is certified), the UK International Data Transfer Agreement (IDTA) or Standard Contractual Clauses, together with supplementary measures as necessary.

Data retention

We keep personal data only for as long as necessary for the purposes set out in this policy, and to meet legal, accounting or reporting requirements. In particular:

  • Accounting and invoicing records: retained for six (6) years after the end of the relevant financial year, to comply with UK tax and accounting obligations.
  • Enquiries via contact forms: typically retained for up to 24 months after last meaningful contact, unless a longer period is needed for the establishment, exercise or defence of legal claims.
  • Server security logs: typically retained for up to 90 days.
  • Google Analytics (with consent): we configure our Google Analytics property to retain user-level event data for up to 14 months (standard GA4 setting). This setting primarily affects non-aggregated data (e.g. Explorations); aggregate reports may persist beyond this period but are not linked to identifiable users. You can withdraw consent at any time, and we will submit a data-deletion request to Google where feasible.

Where data must be retained to satisfy legal obligations (for example, invoices), we may be unable to delete it on request until the retention period expires.

Your rights

Subject to certain conditions, you have the right to request access to your personal data, rectification, erasure, restriction of processing, data portability and to object to processing based on legitimate interests. Where processing is based on consent, you may withdraw your consent at any time (this does not affect the lawfulness of processing before withdrawal).

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO). For details, see the ICO’s guidance.

Please note that we may not be able to delete certain data that we are legally required to retain (for example, invoicing records).

Profiling and automated decision-making

We do not carry out automated decision-making that produces legal or similarly significant effects, and we do not profile individuals.

Domain registration

For domain registrations, your registrant details are provided to the relevant domain registrar as required to register and manage the domain.

SSL certificates

To issue an SSL certificate, certain personal data may be transferred to the certificate issuer. This may include information from public WHOIS records and additional details required for issuance (such as name, email address, domain name, country and phone number). We act solely as an intermediary in this process.

Special offers and updates

We may send information about products, services, special offers and newsletters from time to time. You can opt out of such communications at any time by using the unsubscribe option or by contacting us.

Service announcements and links to other sites

On rare occasions, we may need to send important service-related announcements (for example, temporary maintenance). These are not promotional and generally cannot be opted out of.

Our websites may contain links to other sites. We are not responsible for the privacy practices or content of external websites.

EU representative

Pursuant to Article 27 of the EU GDPR, Eszter Koltay (Hungary) is appointed as EU Representative for Addmonte Ltd.
Contact: eurepresentative [at] okojatek.hu

The Representative shall not enter into agreements or make representations on behalf of Addmonte Ltd without prior written approval, except within the scope of the role defined above. The EU Representative does not accept liability for any breaches of the GDPR committed by Addmonte Ltd.

Your responsibility

You are responsible for maintaining the security of your email and cPanel accounts and any associated passwords.

Questions

If you have any questions about this privacy policy, please contact us at info@addmonte.co.uk.

Changes to this notice

We may update this privacy policy from time to time. Any changes will be posted on this page with an updated “Last updated” date.

Last updated: 9 August 2025