1. Introduction
SEAFISHX LIMITED, trading as SeaFishSoft ("we", "our", "us"), is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.
We are a company registered in England and Wales under company number 16838650, with our registered office at 7 Copperfield Road, Coventry, West Midlands, CV2 4AQ, England.
Data Controller: SEAFISHX LIMITED is the data controller responsible for your personal data under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
2. Information We Collect
2.1 Information You Provide Directly
- Contact Information: Name, email address, phone number, company name, and job title when you contact us or request our services.
- Project Information: Details about your project requirements, business needs, and technical specifications.
- Communication Records: Records of correspondence when you contact us via email, phone, or other channels.
- Payment Information: Billing details and payment information when you purchase our services (processed securely through third-party payment processors).
2.2 Information Collected Automatically
- Device Information: Browser type, operating system, device type, and screen resolution.
- Usage Data: Pages visited, time spent on pages, click patterns, and navigation paths.
- Log Data: IP address, access times, referring URLs, and error logs.
- Location Data: General geographic location based on IP address (country/city level only).
2.3 Information from Third Parties
- Business information from publicly available sources for B2B marketing purposes.
- Analytics data from third-party services such as Google Analytics.
3. How We Use Your Information
We use the information we collect for the following purposes:
- Service Delivery: To provide, maintain, and improve our software development and consulting services.
- Communication: To respond to your enquiries, provide customer support, and send service-related notifications.
- Business Operations: To process transactions, manage accounts, and fulfil contractual obligations.
- Marketing: To send promotional communications about our services (with your consent where required).
- Analytics: To analyse website usage patterns and improve user experience.
- Legal Compliance: To comply with legal obligations and protect our legal rights.
- Security: To detect, prevent, and address technical issues, fraud, or security threats.
4. Legal Basis for Processing
Under the UK GDPR, we process your personal data based on the following legal grounds:
- Contract Performance: Processing necessary to fulfil our contractual obligations to you.
- Legitimate Interests: Processing necessary for our legitimate business interests, such as improving our services and marketing to existing clients.
- Consent: Where you have given explicit consent for specific processing activities, such as marketing communications.
- Legal Obligation: Processing necessary to comply with our legal obligations.
5. Data Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. We may share your data with:
- Service Providers: Trusted third-party vendors who assist in our business operations (e.g., cloud hosting, payment processing, email services).
- Professional Advisors: Lawyers, accountants, and other professionals as necessary.
- Legal Requirements: When required by law, court order, or governmental authority.
- Business Transfers: In connection with any merger, acquisition, or sale of assets.
All third-party service providers are contractually obligated to protect your data and use it only for the purposes we specify.
6. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy, unless a longer retention period is required by law.
- Client Data: Retained for the duration of our business relationship plus 7 years for legal and tax compliance.
- Enquiry Data: Retained for 2 years from the date of last contact.
- Marketing Data: Until you unsubscribe or withdraw consent.
- Analytics Data: Retained in anonymised form for up to 26 months.
7. Your Rights (GDPR)
Under the UK GDPR, you have the following rights regarding your personal data:
- Right of Access: Request a copy of the personal data we hold about you.
- Right to Rectification: Request correction of inaccurate or incomplete data.
- Right to Erasure: Request deletion of your personal data ("right to be forgotten").
- Right to Restrict Processing: Request limitation of how we process your data.
- Right to Data Portability: Receive your data in a structured, machine-readable format.
- Right to Object: Object to processing based on legitimate interests or for direct marketing.
- Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.
To exercise any of these rights, please contact us using the details provided below. We will respond to your request within one month.
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
8. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:
- Encryption of data in transit (TLS/SSL) and at rest.
- Secure access controls and authentication mechanisms.
- Regular security assessments and vulnerability testing.
- Employee training on data protection and security practices.
- Incident response procedures for potential data breaches.
While we strive to protect your data, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.
9. Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance your browsing experience and analyse site traffic.
Types of Cookies We Use:
- Essential Cookies: Necessary for the website to function properly.
- Analytics Cookies: Help us understand how visitors interact with our website.
- Functional Cookies: Remember your preferences and settings.
You can control cookie settings through your browser preferences. Note that disabling certain cookies may affect website functionality.
10. International Data Transfers
Your data may be transferred to and processed in countries outside the UK. When we transfer data internationally, we ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses approved by the UK Government.
- Transfers to countries with adequate data protection levels.
- Other lawful transfer mechanisms under UK GDPR.
11. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website with a new "Last Updated" date.
We encourage you to review this policy periodically to stay informed about how we protect your information.
12. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
SEAFISHX LIMITED
Address: 7 Copperfield Road, Coventry, West Midlands, CV2 4AQ, England
Email: seafishtech@rbox.me
Company Number: 16838650
We aim to respond to all enquiries within 5 business days.