+44 79 0873 7228
GET IN TOUCH
+44 7908737228

Last updated: March 14, 2025

Introduction

BuildEZ UK Ltd (“BuildEZ”, “we”, “us” or “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our website buildez.co.uk (the “Site”) or otherwise interact with us. It also outlines your rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

For the purposes of data protection law, BuildEZ UK Ltd is the “data controller” of your personal data collected via this Site. Our company details are: BuildEZ UK Ltd, Company Number 16280260, registered address 495C Wimborne Road, Bournemouth, BH9 2AW, United Kingdom. If you have any questions about this Privacy Policy or how we use your data, you can contact us at info@buildez.co.uk or at the postal address above.

By using our Site or providing your information to us, you acknowledge that you have read and understood this Privacy Policy. We encourage you to read it carefully. If you do not agree with any part of this policy, please do not use our Site or services.

Personal Data We Collect

We may collect and process different types of personal information about you. This includes:

  • Information You Provide Directly: When you fill out forms on our Site (such as our contact or inquiry form), request a quote, sign up for newsletters (if available), or communicate with us by phone, email or otherwise, you may provide us with personal data. This could include your name, email address, telephone number, postal address, company name (if applicable), and the content of any message or inquiry you send us. If you choose to provide additional information (for example, details about your project requirements or other personal preferences), we will also collect that information.
  • Transactional Information: If we provide paid services or accept payments through the Site (for example, for project deposits or purchases), and you make a payment, we will collect information necessary to process the payment. This may include billing name and address and payment details (such as credit/debit card information). Please note: We use trusted third-party payment processors to handle payment transactions; we do not store your full card details on our own systems.
  • Automatically Collected Information: When you visit our Site, certain information is collected automatically from your device via cookies and similar tracking technologies (see the Cookies and Tracking Technologies section below for more detail). This may include your IP address, browser type and version, device identifiers, the pages you visit on our Site, the time and date of your visits, the time spent on each page, and other technical information. This data helps us understand how our website is used and ensure it functions properly. Although we do not typically use this data to identify you, it can be considered personal data (for example, an IP address may identify a specific device).
  • Communications Preferences: We may collect your preferences for receiving communications from us. For example, if you opt-in to receive marketing emails or newsletters, we will record that consent and your communication preferences. You can change these preferences at any time (see Your Data Protection Rights below).
  • Job Applications or Recruitment (if applicable): If you submit a job application or CV through our Site or via email, we will collect the information you provide for recruitment purposes. (Note: This applies only if our Site has a careers section or we accept such submissions; otherwise, we handle recruitment data separately from the Site.)

We do not knowingly collect any special categories of personal data through our Site (such as data about your health, ethnicity, political opinions, etc.), nor do we intentionally collect data from children (our services are not directed to individuals under 16). If you believe a child has provided personal data to us, please contact us and we will take steps to delete it.

How We Use Your Personal Data

We will use your personal data only for legitimate business purposes and in accordance with data protection law. The main purposes for which BuildEZ collects and uses your information are:

  • To Respond to Inquiries and Provide Services: We use the contact details and information you provide to respond to your inquiries, requests for quotes, or bookings for our services. For example, if you complete our online form or email us, we will use your provided information to contact you and provide the information or services you requested. If you become a customer, we will use your details to communicate with you about your project, deliver our services, and manage our business relationship (including handling payments, if applicable).
  • Customer Support and Communications: If you contact us for support, feedback, or to report an issue, we will use your contact information and any details you’ve given us about the issue to address and resolve your concerns. We may also use your information to notify you about important changes or updates related to our services or your account (for example, changes to our terms or this Privacy Policy).
  • Marketing and Newsletters (with Consent): With your permission, we may use your name and contact information (such as your email address) to send you newsletters or marketing communications about our services, new offerings, or events. This will only be done if you have opted-in to receive such communications (for example, by ticking a box on a form to subscribe or by explicitly requesting to be added to our mailing list). You can withdraw your consent and opt out of marketing messages at any time (see Your Data Protection Rights). We will not spam you – we typically send updates only occasionally and you can unsubscribe easily via a link in the email or by contacting us.
  • Website Analytics and Improvement: We use data collected through cookies and similar technologies (such as your IP address and browsing actions on our Site) to understand how users navigate and use our Site. This helps us analyze trends, administer and improve the website, and enhance user experience. For instance, we may use Google Analytics or similar tools to gather aggregate information like which pages are most visited, how users found our Site, and what times of day see the most traffic. This information is generally anonymous and is used to make our Site more useful and intuitive. (See Cookies and Tracking Technologies for more details on analytics cookies.)
  • Security and Fraud Prevention: We may process personal data (such as IP addresses or other identifiers) to maintain the security of our Site, systems, and users. This includes using information to detect and prevent fraudulent activity, hacking, or other malicious actions. For example, we might log and analyze IP addresses that attempt to log in to any admin area or that perform suspicious activities, in order to block unauthorized access and keep our Site safe.
  • Legal Obligations and Compliance: In some cases, we need to process certain personal data to comply with our legal obligations. For example, we may keep records of transactions or communications as required by tax law, accounting rules, or regulatory requirements. If required by law or by governmental authorities (such as to comply with a court order or law enforcement request), we may process and disclose necessary data. We also retain certain information to be able to defend or exercise our legal rights (for instance, information related to contracts and services we’ve provided, in case of any disputes).

We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason that is compatible with the original purpose (and permitted by law). If we need to use your personal data for an unrelated purpose, we will notify you and explain the legal basis that allows us to do so, or seek your consent if required.

Legal Bases for Processing

Under UK GDPR, we must have a valid “lawful basis” for each use of your personal data. We rely on the following legal bases, depending on the context:

  • Performance of a Contract (Art. 6(1)(b) UK GDPR): Many of our processing activities are necessary to take steps at your request before entering into a contract or to fulfill our contract with you. For example, when you request a quote or information about our building services, we process your data to provide that quote. If you hire us for a project, we will process your personal information to deliver the services, communicate with you, and complete transactions. These uses of your data are necessary for us to perform the contract or the pre-contractual steps you have initiated.
  • Legitimate Interests (Art. 6(1)(f) UK GDPR): We may process your data as needed for our “legitimate interests,” provided that those interests are not overridden by your own rights and interests. We have carefully balanced our interests with your privacy. Examples of processing under legitimate interests include: responding to unsolicited inquiries or messages you send us (it’s in our interest and yours to communicate effectively); improving and securing our Site (we have a legitimate interest in maintaining a reliable and safe website); and in some cases, sending existing customers or individuals who have inquired about our services relevant updates about our services (we will only do so in ways that do not infringe on your rights, and you can always opt out). When we rely on legitimate interests, we ensure that we consider and respect your rights and you have the right to object to such processing (see Your Data Protection Rights).
  • Consent (Art. 6(1)(a) UK GDPR): We will ask for your consent before processing your data in situations where a legal basis of consent is required. The clearest example is for optional marketing emails or newsletters: we will only send these communications if you have given consent. Another example is non-essential cookies (like analytics cookies) — we seek your consent via the cookie banner or settings before setting these on your device. Where we rely on consent, you have the right to withdraw that consent at any time (with effect for the future). Withdrawing consent will not affect the lawfulness of any processing we did based on your consent before you withdrew it.
  • Legal Obligation (Art. 6(1)(c) UK GDPR): In some cases, we need to process or retain certain personal data to comply with a legal obligation. For instance, we may keep financial transaction records for the required number of years under UK tax law, or disclose information if required by a lawful request from authorities. We will not delete certain data if the law obliges us to keep it for a specified time (e.g., retention of invoices for HMRC compliance).
  • Vital Interests / Public Task: These bases are unlikely to apply to our website’s typical operations. We do not usually process personal data under the “vital interests” basis (which applies in life-or-death situations) or under any “public interest/public task” basis (which is mainly for governmental duties). If for some reason these bases did apply, we would only rely on them in strict accordance with the law.

If you have questions about the specific legal basis we are relying on for a particular processing activity, feel free to contact us for more information.

Cookies and Tracking Technologies

Our Site uses cookies and similar tracking technologies to enhance your experience, understand how our Site is used, and for certain functionality. This section explains what cookies are, what types we use, and how you can manage your preferences. This is our “Cookie Policy” as required by law.

What Are Cookies?

Cookies are small text files that are placed on your computer or device when you visit a website. They are widely used to make websites work efficiently and to provide information to the site owners. Cookies can be “first-party” (set by us, the website you are visiting) or “third-party” (set by other companies whose functionality we have integrated into our site, such as analytics or embedded content providers). Cookies can also be classified by their lifespan and purpose: some cookies are temporary (“session” cookies, which are deleted when you close your browser), while others remain on your device for a set period or until you delete them (“persistent” cookies). Similarly, some cookies are essential for the site to function, while others are for analytics, preferences, or advertising.

In addition to cookies, we may use similar technologies like web beacons or pixels (tiny images or scripts that detect when a page is viewed or an email is opened) and local storage (which allows data to be stored locally on your browser). For simplicity, in this policy we refer to all these technologies as “cookies.”

Types of Cookies We Use

We strive to use cookies responsibly and to respect your privacy. On our Site, we may use the following categories of cookies:

  • Strictly Necessary Cookies: These cookies are essential for the operation of our website and enable core functionality. For example, they might be required to help load the pages correctly, to remember your cookie consent preferences, or for security purposes (such as to help us detect fraud or authenticate users). Without these cookies, certain services or features requested by you (such as navigating the site or submitting forms) may not be possible. These cookies do not gather information about you for marketing or remember where you have been on the internet.
  • Functionality Cookies: These cookies allow our website to remember choices you make and provide enhanced, more personalized features. For instance, if our site offers a login or if you select certain preferences (like language or region), functionality cookies would remember those settings to improve your experience. They may also provide certain features like remembering form data you’ve entered previously or keeping you logged in as you navigate between pages. The information these cookies collect may be anonymized and they cannot track your browsing activity on other websites. (Note: If our Site does not currently have features that require such cookies, this category may not be in use. We include it here for completeness and future-proofing.)
  • Analytics/Performance Cookies: We use these cookies to collect information about how visitors use our Site, so we can improve it. For example, we use Google Analytics (a popular web analytics service provided by Google) to gather aggregated data on things like how many users visit the site, which pages are viewed, how long visitors stay, and how they arrived at our Site. These cookies may collect your IP address and generate a unique identifier for your browser, but they do not directly identify you by name. The data received from analytics cookies is aggregated and used to highlight trends or usage patterns (e.g., which pages are frequently visited, which marketing campaigns are effective). This helps us improve the content and performance of our website. We have configured Google Analytics (or will do so) to respect privacy best practices, such as anonymizing IP addresses where possible.
  • Marketing/Advertising Cookies: Currently, BuildEZ does not use advertising cookies or targeted advertising on our Site. These cookies, if used, would be employed to track your browsing habits and enable us or third-party partners to show you relevant advertisements on other sites (often called retargeting or interest-based advertising). They can also help measure the effectiveness of ad campaigns. If in the future we decide to use any advertising or social media cookies, we will update this policy and request your consent in advance.
  • Third-Party Cookies: As mentioned, some cookies on our Site are set by third parties. For example, the analytics cookies from Google are third-party cookies. If we embed content from other platforms (such as a YouTube video, Google Maps, or use a live chat plugin or social media “share” buttons), those providers may set their own cookies on your browser. We do not control these cookies from third parties, and their use is governed by the privacy/cookie policies of the third-party providers. However, we will inform you of their presence and obtain consent where required.

A detailed list of specific cookies and their purposes may be provided via our cookie consent banner or a cookies table on our Site (if applicable). This will include information on the name of each cookie, its provider, purpose, and duration. You can always ask us for more information about the cookies we currently use.

Managing Cookie Preferences

When you first visit our Site, you should see a cookie notification or banner that allows you to accept or reject non-essential cookies. We will not set analytics or other non-essential cookies unless you consent via this banner or settings. You can manage your cookie preferences at any time by using the cookie settings tool on our Site (if available) or by adjusting your web browser settings.

Using Browser Settings: Most web browsers allow you to control cookies through their settings preferences. For example, you can typically set your browser to block all cookies, allow only certain types, or delete cookies when you close your browser. You can also delete cookies that have already been set. Consult your browser’s help documentation to learn how to manage cookies. Links to manage cookie settings for common browsers include: Google Chrome, Mozilla Firefox, Microsoft Edge, Safari, etc. (You can find general guidance at sites like allaboutcookies.org for managing and deleting cookies.)

Please be aware that if you disable or block all cookies in your browser settings (including essential cookies), some parts of our Site may not function properly. For example, you might not be able to submit contact forms or the site might not remember your preferences. We recommend that you use the cookie consent tool on our Site to tailor your preferences for an optimal experience.

Do Not Track: Some browsers have a “Do Not Track” feature that lets you tell websites you do not want to be tracked. Our Site will honor your cookie preferences as described above. At this time, we do not respond to every Do Not Track signal automatically, but you can control tracking through the cookie consent tool and browser settings as described.

Data Sharing and Disclosure

We treat your personal data with care and confidentiality. We do not sell your personal information to third parties. However, we may share your data with certain trusted third parties in order to run our business, provide our services to you, or as otherwise described below. Whenever we share data, we ensure that the recipient has appropriate data protection safeguards in place. The categories of third parties with whom we may share your personal data include:

  • Service Providers and Partners: We use a number of third-party service providers (data “processors”) who act on our behalf to support our business operations and the provision of our Site and services. These include, for example:
    • Website Hosting and IT Infrastructure: Our website is hosted by third-party hosting companies, which means any data you submit through the Site may be stored on their servers. We ensure our hosting provider has strong security measures and is GDPR-compliant.
    • Email and Communication Tools: We may use third-party platforms to send emails or manage other communications. For instance, if you fill out our contact form, your form submission might be sent to us via an email service or stored in our website database. Our company email provider may store messages that include your data. We use reputable providers with appropriate security (e.g., Microsoft Outlook/Office 365, Gmail for business, or similar services).
    • Content Management and Plugins: Our Site is built on the WordPress platform, which means we use various WordPress plugins and tools to add functionality (such as contact form plugins, security plugins, analytics plugins, etc.). These plugins may in some cases process your data (for example, a contact form plugin will capture the details you enter and send them to us; a security plugin might log IP addresses of visitors; a caching plugin may temporarily store your interactions for performance). We only use plugins from trusted developers, and we keep them updated. Each plugin provider may be considered a data processor acting on our behalf, and we ensure they commit to GDPR-compliance.
    • Analytics Services: As noted, we use Google Analytics to help us understand website traffic. Google acts as a data processor in this context. Google may process certain data (like IP addresses and device identifiers) for analytics purposes. We have a data processing agreement with Google and have configured settings to protect data (such as IP anonymization). Google may store analytics data on servers outside the UK (see International Data Transfers below). You can opt out of Google Analytics as described in our Cookie section (e.g., by refusing analytics cookies or using Google’s browser add-on for opting out of Analytics).
    • Payment Processors: If we accept payments through the Site, we rely on external payment gateways (such as Stripe, PayPal, or bank transfer providers) to handle transactions securely. These payment processors will receive your payment details (like credit card number or PayPal account) directly to process the payment. We do not receive or store your sensitive card information from these processors (though we might get limited info such as confirmation of payment, last 4 digits of card, etc.). Each such provider is responsible for the personal data you provide to them, and they have their own privacy and security measures. We only choose payment providers that are PCI-DSS compliant and GDPR-compliant.
    • Other Contractors or Business Partners: In the normal course of our building services, we may need to share your information with trusted partners or subcontractors with your knowledge. For example, if you ask us to arrange a specialist service as part of a project (such as an electrician or surveyor), we might share your name, address, or contact number with that subcontractor to coordinate the work. We will only do this as necessary to carry out your requested services and with appropriate confidentiality obligations in place.
  • Affiliates and Corporate Transactions: At present, BuildEZ UK Ltd does not have any parent or subsidiary companies with whom we routinely share data. If this changes (for example, if we establish an affiliated company or internal group that shares resources), we will update this policy. In the event of a business transfer or sale (for example, if BuildEZ is involved in a merger, acquisition, or sale of assets), personal data we hold may be transferred to the new owner or partner as part of the transaction. In such cases, we would ensure your data remains subject to confidentiality commitments and provide notice before any material change in data handling.
  • Legal Requirements and Protection: We may disclose your personal data if required to do so by law or in response to valid requests by public authorities (for example, to comply with a court order, subpoena, or law enforcement investigation). We may also share information when we believe in good faith that disclosure is necessary to protect our rights, investigate fraud, or respond to an emergency involving potential threats to personal safety. This includes sharing information with regulatory bodies or our professional advisors (lawyers, accountants) if needed to obtain advice or defend legal claims.

When we share your data with any third-party, we limit the information to what is necessary for the specific purpose. We also ensure that any third-party recipient is contractually bound to protect the confidentiality and security of your data, and to use it only for the purposes we specify. Where required by UK GDPR, we have data processing agreements in place with third parties who process personal data on our behalf.

If you would like more details about the third parties we use or share data with, you can contact us for an up-to-date list. We will happily provide information on our data processors and partners relevant to your personal data.

International Data Transfers

BuildEZ UK Ltd is based in the United Kingdom, and we primarily store and process personal data within the UK or the European Economic Area (EEA). However, some of the third parties we work with may process or store personal data in other countries. In particular:

  • Google Analytics: Google may process analytics data on servers located outside the UK, including in the United States.
  • Email/Cloud Service Providers: If we use cloud-based email or storage (for example, Microsoft 365, Google Workspace, or other software-as-a-service platforms), the data may be stored or backed up on servers globally, including outside the UK/EEA.
  • Payment Providers: If you make payments that are processed by a company outside the UK/EEA, your payment data might transit through or be stored in those jurisdictions (though payment data is typically well protected via encryption).

Whenever we transfer your personal data out of the UK (or EEA), we will ensure a similar degree of protection is afforded to it by implementing appropriate safeguards as required by law. For example, if data is transferred to the United States or any country not deemed “adequate” by UK authorities, we will use standard contractual clauses (SCCs) approved by the UK Information Commissioner’s Office, or rely on another valid transfer mechanism, to ensure your data is protected. We also work only with companies that are reputable and have demonstrated their commitment to data protection (for instance, companies that certify to frameworks like the EU-U.S. Data Privacy Framework or have robust security certifications).

If you have questions about our international data transfer practices or want more information about the safeguards in place, please contact us (see Contact Us section below).

Data Retention

We will keep your personal data only for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

In practice, this means:

  • If you make an inquiry or request a quote but do not ultimately engage our services, we will generally retain your contact information and inquiry details for a certain period (for example, 6 to 12 months) in case you decide to proceed later or have follow-up questions. This also allows us to refer back to your inquiry if you contact us again. After that period, we will delete or anonymize your information, unless we have another valid reason to keep it (for instance, your inquiry led to us creating a record for a potential project that is still under consideration, or we are required to keep the data due to a legal obligation).
  • If you become a customer (e.g., we carry out a project or service for you), we will retain your personal data for the duration of our business relationship and for a period afterward. Typically, we keep contract-related information and communications for a number of years after the project completion. This is both for good business record-keeping and to comply with legal requirements. For example, UK tax law may require us to retain transaction records (which could include your name, invoices, payment records) for 6 years after the end of the relevant financial year. We may also retain correspondence or project details for up to 6 years (or as advised by our legal counsel) because that is the typical statute of limitations for legal claims, in case any issues arise later.
  • If you have opted into marketing communications, we will retain your contact details for that purpose until you unsubscribe or inform us that you no longer wish to receive such communications. If you withdraw consent or opt-out, we may keep your contact information on a suppression list (a list of people who no longer want to be contacted) to ensure we respect your choice in the future.
  • Automatically collected data (analytics) is retained as per our analytics tool settings. For instance, Google Analytics retains aggregated site data for a certain period (we may set it to something like 26 months, or a duration that suits our trend analysis needs). Individual user-level data in analytics (to the extent any exists) is typically anonymized and/or deleted on a rolling basis according to those settings. Raw web server logs that include IP addresses are usually retained for a short period (a few weeks) for security monitoring and then automatically deleted.
  • If you send us a CV or job application (if applicable), and you do not become an employee or contractor, we may retain your application for a short period (e.g., 6-12 months) in case other opportunities arise, unless you ask us to delete it sooner. Successful candidates’ data will be kept in personnel files according to our internal retention policies.

When we no longer have a legitimate need to keep your personal data, we will securely dispose of it. This may involve permanently deleting it from our systems, anonymizing the data so it can no longer be associated with you, and/or securely destroying physical records. We also regularly review the data we hold and erase or anonymize that which is no longer required.

If you have specific questions about how long we keep particular types of data, feel free to contact us. We can provide more details or adjust retention periods where legally required.

Data Security

BuildEZ takes the security of your personal data seriously. We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Secure Systems and Encryption: Our website is secured using HTTPS encryption (SSL/TLS), which means data transmitted between your browser and our Site is encrypted in transit. We use reputable hosting services that maintain up-to-date security protocols. Where possible, we encrypt sensitive personal data at rest and in transit. For example, if we store any personal information in databases or backups, we apply encryption and access controls to those systems.
  • Access Controls: We limit access to personal data to those employees, contractors, and service providers who have a business need to know. All such persons are subject to confidentiality obligations and are trained on data protection. Access to administrative areas of our website, as well as to databases or email accounts that contain personal data, is protected with strong passwords and, where feasible, two-factor authentication.
  • Maintaining Software Security: We keep our website software (including WordPress and its plugins) and our devices and systems updated with the latest security patches to reduce vulnerabilities. We utilize security tools (such as firewalls, anti-malware scanners, and monitoring services) to protect our website from threats. For example, a security plugin may monitor login attempts and block suspicious activity.
  • Physical Security: The personal data we hold may also be contained in physical forms (for example, printed contracts or notes). We keep any such documents secure in our office with restricted access. Our office and computers are secured to prevent unauthorized entry or theft.
  • Backup and Recovery: We routinely back up important data to prevent loss. These backups are secured and encrypted. In the event of a physical or technical incident, we have procedures in place to restore access to personal data in a timely manner.
  • Vendor Due Diligence: For any third-party service providers that handle personal data on our behalf, we ensure they have appropriate security measures and certifications. We review their privacy and security policies and, where appropriate, sign data processing agreements to contractually require protection of your data.

Despite all these precautions, it’s important to note that no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security. However, we continuously monitor for potential threats and have a data breach response plan. In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant authorities (such as the ICO) as required by law.

Your Data Protection Rights

Under the UK GDPR and Data Protection Act 2018, you have several important rights with regard to your personal data. We respect these rights and have processes in place to ensure you can exercise them. Your principal rights are:

  • Right to Be Informed: You have the right to be given clear, transparent information about how your personal data is used. This Privacy Policy is part of fulfilling that right. If you have any questions about our data practices, we will be happy to provide further information.
  • Right of Access: You have the right to request a copy of the personal data we hold about you, and to obtain information about how we process it (commonly called a “Data Subject Access Request”). We will provide this information free of charge, usually within one month of confirmation of your request. If your request is complex or numerous, we may extend this time by up to two further months, but we will inform you and explain why. In rare cases we may charge a reasonable fee if a request is manifestly unfounded or excessive, but we will assess that on a case-by-case basis.
  • Right to Rectification: If any of the personal data we hold about you is inaccurate or incomplete, you have the right to have it corrected or updated without undue delay. Please let us know if you become aware of any errors in your data and we will rectify them.
  • Right to Erasure: This is also known as the “right to be forgotten.” You have the right to request that we delete your personal data when there is no compelling reason for us to continue processing it. For example, if you initially consented to receive marketing, you can request removal of your data if you withdraw that consent. However, this right is not absolute – we may need to retain certain information if we have a legal obligation or another lawful basis to keep it (for instance, we cannot delete data that is required for ongoing contracts or that we must keep for legal compliance). We will inform you of what data can and cannot be erased when you make such a request.
  • Right to Restrict Processing: You have the right to request that we suspend or limit the processing of your personal data in certain circumstances. For instance, if you contest the accuracy of the data or have objected to processing (see below), you can ask us to restrict processing while we investigate. Restriction means we would store your data but not actively use it until the issue is resolved. Another example is if we no longer need the data but you want us to keep it for establishing, exercising, or defending legal claims, we would mark it and keep it only for that purpose.
  • Right to Data Portability: For personal data that you have provided to us and that we process by automated means with your consent or under a contract, you have the right to obtain that data in a structured, commonly used, machine-readable format, and to have it transmitted to another controller where technically feasible. In plain terms, this right mostly applies to data you gave us electronically, and you can ask for a copy of it in a format like CSV or JSON so that you can move it to another service. This right is unlikely to be heavily used in the context of a building services website, but it’s available for applicable scenarios.
  • Right to Object: You have the right to object to certain types of processing of your personal data when that processing is based on legitimate interests or on performing a task in the public interest/exercise of official authority (which we do not do). If we are processing your data based on our legitimate interest, you can object to that processing if you feel it impacts your rights. If you object, we must stop that processing unless we have compelling legitimate grounds that override your rights, or if we need to continue for legal claims. Importantly, you have an absolute right to object to the processing of your personal data for direct marketing purposes at any time. If you object to marketing, we will cease using your data for that purpose immediately.
  • Right to Withdraw Consent: Where we rely on consent to process your personal data (for example, for sending marketing emails or for certain cookies), you have the right to withdraw your consent at any time. You can do this by contacting us or, in the case of email marketing, by clicking the “unsubscribe” link in our emails. Withdrawing consent will not affect the legality of any processing done prior to withdrawal, but it means we will stop the specific activities that were based on consent.
  • Rights Related to Automated Decision Making and Profiling: Under UK GDPR, you have rights to not be subject to a decision based solely on automated processing (including profiling) which produces legal or similarly significant effects on you, unless certain conditions are met. We do not engage in any purely automated decision-making or profiling that has a legal or significant effect on you. All decisions about our services involve human review.
  • Right to Complain to a Supervisory Authority: If you have a concern about how we are handling your personal data and we are unable to resolve it to your satisfaction, you have the right to lodge a complaint with the UK supervisory authority, which is the Information Commissioner’s Office (ICO). You can contact the ICO by calling 0303 123 1113 or via their website https://ico.org.uk/make-a-complaint/. We would, however, appreciate the chance to address your concerns before you approach the ICO, so please do contact us first if possible.

Exercising Your Rights: You can exercise any of your rights by contacting us using the details provided in the Contact Us section. We may need to verify your identity before fulfilling certain requests (to ensure we don’t disclose data to the wrong person). This is typically done by asking for information to confirm you are the owner of the data in question. There is generally no fee for exercising your rights. We will respond to your requests as soon as possible, and within the timeframes set by law (usually within one month, extendable by two additional months if necessary, as noted above).

We are committed to upholding your rights and will assist you in any way we can. If you have any questions about your rights or how to exercise them, please let us know.

External Links

Our Site may contain links to other websites or services that are not operated by BuildEZ (for example, links to our profiles on social media platforms, or references to partner websites). This Privacy Policy applies only to our own Site and services. If you click a link to an external site, please be aware that those third-party websites have their own privacy policies. We do not have control over and are not responsible for the content or privacy practices of any external sites. We encourage you to review the privacy policy of every website you visit, especially if you provide personal data to them.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please do not hesitate to contact us:

BuildEZ UK Ltd
495C Wimborne Road
Bournemouth, BH9 2AW
United Kingdom

Email: info@buildez.co.uk
Phone: (If available, you may include a contact number here — not provided in the prompt, so we only list email and address.)

When contacting us about your personal data, please provide as much detail as possible about your query. For example, if you are requesting a copy of your data, describing the context (e.g., you filled in a contact form on a certain date) will help us locate your information quickly. We will handle all requests in accordance with applicable laws and will get back to you promptly.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. If we make significant changes, we will post the updated policy on this page and update the “Last updated” date at the top. In some cases, we may provide additional notice of changes (such as by email or a notice on our homepage) especially if the changes are material or required by law.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our Site after any changes to this Policy will be deemed acceptance of those changes.

Thank you for reading our Privacy Policy. We value your privacy and trust. If you have any further questions or need clarifications, please reach out to us at info@buildez.co.uk. We are here to help and address any concerns you may have regarding your personal data and privacy. Your confidence in how we handle your information is important to us, and we aim to maintain that trust through transparency and accountability.