Privacy Statement

1. Introduction

Cecure ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Statement explains how we collect, use, disclose, and safeguard your information when you visit our website (https://cecure.uk), use our services, or interact with us.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

• Contact details (name, email address, phone number, business address)
• Company information and job title
• Technical information about your IT systems (when providing support services)
• Communication records (emails, phone calls, support tickets)
• Website usage data (IP address, browser type, pages visited)
• CCTV footage (where our CCTV installation services are used)

2.2 Automatically Collected Information

• Website analytics data
• Cookies and similar technologies
• Server logs and technical data

3. How We Use Your Information

3.1 Service Delivery

• Providing IT support, managed services, and cyber security solutions
• Installing and maintaining network infrastructure and CCTV systems
• Delivering cyber security assessments and Cyber Essentials certification
• Disaster recovery planning and implementation
• Domain registration and management services

3.2 Business Operations

• Responding to inquiries and providing customer support
• Processing invoices and managing accounts
• Improving our services and website functionality
• Marketing our services (with your consent)
• Compliance with legal obligations

3.3 Legal Basis for Processing

Under UK GDPR, we process your data based on:

• Legitimate interests for business operations and service improvement
• Contract performance when providing IT services
• Legal compliance for regulatory requirements
• Consent for marketing communications (where required)

4. Information Sharing and Disclosure

4.1 Service Providers

• Cloud hosting providers and IT infrastructure partners
• Software vendors for specialized security tools
• Payment processors for billing services
• Professional advisors (lawyers, accountants, auditors)

4.2 Legal Requirements

We may disclose information when required by law, court order, or to:

• Protect our legal rights and interests
• Prevent fraud or illegal activities
• Comply with regulatory investigations
• Protect the safety of individuals

5. Data Security

As a cyber security specialist, we implement robust security measures:

• Encryption of data in transit and at rest
• Multi-factor authentication and access controls
• Regular security audits and vulnerability assessments
• Incident response procedures
• Staff training on data protection and cyber security
• Compliance with industry security standards

6. Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Statement. Typical retention periods:

• Client service records: 7 years after contract termination
• Financial records: 7 years for tax and accounting purposes
• Marketing data: Until consent is withdrawn
• Website analytics: 26 months

7. Your Rights

Under UK GDPR, you have the following rights:

7.1 Access and Correction Rights

• Request a copy of personal information we hold about you
• Request correction of inaccurate or incomplete data
• Request deletion of your personal information (subject to legal obligations)

7.2 Processing Rights

• Object to processing based on legitimate interests
• Request restriction of processing in certain circumstances
• Data portability (receive your data in a structured format)
• Withdraw consent for marketing communications

8. Cookies and Website Analytics

Our website uses cookies to:

• Ensure proper website functionality
• Analyze website usage and improve user experience
• Remember your preferences and settings

You can control cookies through your browser settings.

9. International Data Transfers

We primarily process data within the UK. If we transfer data internationally, we ensure adequate protection through:

• Adequacy decisions by the UK Government
• Standard contractual clauses
• Other approved transfer mechanisms

10. Changes to This Privacy Statement

We may update this Privacy Statement periodically. Significant changes will be communicated through:

• Website notifications
• Email notifications to clients
• Updated "Last Modified" date

11. Contact Us

To exercise your rights or for questions about this Privacy Statement:

• Email: support@cecure.uk
• Phone: 01332 913 303
• Website: https://cecure.uk

12. Complaints and Regulatory Contact

12.1 Contact Us Directly

If you have concerns about our data processing practices, please contact us using the details above.

12.2 Contact the Regulator

You have the right to lodge a complaint with the Information Commissioner's Office (ICO):

• Website: https://ico.org.uk
• Phone: 0303 123 1113
• Post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

13. Acceptable Use Policy

This Acceptable Use Policy ("Policy") outlines the rules and guidelines for using our services, websites, infrastructure, and support platforms. By accessing or using our services, you agree to comply with this Policy.

13.1 Prohibited Activities

You may not use our services to:

• Violate any applicable local, national, or international laws or regulations
• Distribute malware, viruses, ransomware, spyware, or any malicious code
• Launch or facilitate denial-of-service (DoS or DDoS) attacks
• Access, probe, or scan networks or systems without authorization ("hacking")
• Send unsolicited or bulk emails ("spam") or operate open mail relays
• Host or distribute content that is abusive, harassing, defamatory, discriminatory, or illegal
• Engage in phishing or impersonation of individuals or organisations
• Mine cryptocurrency using our infrastructure without explicit consent
• Infringe intellectual property rights (including software, music, video, images, etc.)

13.2 Security Responsibilities

• You are responsible for maintaining the confidentiality of your credentials (e.g., passwords, access tokens)
• Notify us immediately of any actual or suspected unauthorised access or abuse
• Use secure and up-to-date software on systems you connect to our services

13.3 Enforcement

Violations of this Policy may result in actions including but not limited to:

• Temporary or permanent suspension of services
• Investigation and cooperation with legal authorities
• Termination of contracts without refund in severe cases

13.4 Reporting Abuse

If you believe someone is violating this Acceptable Use Policy, please report it by emailing support@cecure.uk.

13.5 Changes to This Policy

This Acceptable Use Policy may be updated from time to time. Continued use of our services indicates your acceptance of the latest version.