Privacy

We collect the minimum we need to run this website, answer enquiries, and deliver projects. For ecommerce work we use established, PCI-compliant providers (Shopify, Stripe, PayPal) and never store raw card details on our servers.

What we collect

  • Contact details (when you email or submit a form): your name, email, and whatever you choose to share so we can reply.
  • Operational/project data (for clients): information needed to plan, build, launch, and support your site or platform.
  • Basic analytics: page views, device and performance metrics to improve the site. No ad tech, no cross-site tracking.
  • Server logs: IP address and user agent in short-lived logs to help detect abuse and debug issues.

Cookies & analytics

We aim to keep cookies to a minimum. Any analytics we use are for aggregate traffic and performance insights. You can use your browser settings to block non-essential cookies. If we run A/B tests, they’ll use short-lived, first-party identifiers only.

Payments & ecommerce

For client projects, payments are processed by providers such as Stripe, PayPal, and Shopify. Their systems handle card data and apply their own security and privacy terms. We receive tokens and status events (e.g., success/failure, refunds) but do not store card numbers or CVV.

Lawful bases

  • Contract — to provide quotes, deliver services, and support.
  • Legitimate interests — site security, debugging, and improving usability.
  • Consent — where required (e.g., optional analytics or marketing).
  • Legal obligation — records we must retain for tax and accounting.

How long we keep data

  • Enquiries: typically up to 12 months.
  • Project/financial records: up to 6 years (HMRC/Companies House requirements).
  • Server logs: usually 30–90 days unless needed for an investigation.
  • We delete or anonymise data when it’s no longer needed.

Sharing & processors

We don’t sell your data. We may share limited data with service providers (e.g., hosting, analytics, email, payment gateways) strictly to operate the site and deliver services to you. If required by law, we may disclose information to competent authorities.

International transfers

Some processors may store or process data outside the UK/EEA. Where that happens, we rely on recognised safeguards such as Standard Contractual Clauses or the UK Addendum.

Your rights

You may have rights to access, correct, delete, or restrict the use of your personal data, and (where applicable) to data portability and to object. To exercise these rights, contact support@zulogic.com.

Security

We encrypt data in transit, restrict access to operational systems, and use reputable providers for hosting, backups, and email. No internet service can be 100% secure, but we aim for practical, proportionate controls.

Contact

Questions about this notice or your data? Email support@zulogic.com.

ZuLogic Ltd, Church Farm, Ulcombe, ME17 1DN, UK · Company 5388029 · VAT 850 8411 34

Last updated: 5 October 2025