Contact us

Privacy Policy

1. Introduction

Carmatec Digital UK Ltd. (“we”, “us”, “our”) is committed to protecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

This Privacy Policy explains how we collect, use, and protect your information when you visit https://carmatec.co.uk/ or interact with us.

Company Details:
Carmatec Digital UK Ltd.
124–128 City Road, London EC1V 2NX
Email: [email protected]

2. Data We Collect

a) Information You Provide

  • Name, email address, phone number
  • Company name, job title
  • Enquiry details via forms, chat, or email

b) Automatically Collected Data

  • IP address
  • Device and browser information
  • Pages visited and session behaviour
  • Security verification and bot-prevention data processed through Cloudflare Turnstile, such as IP address, browser and device information, user-agent details, TLS fingerprint, site key, origin information, and other security-related signals.

Collected via tools such as Google Analytics (GA4) and similar tracking technologies.

3. How We Use Your Data

We use your data to:

  • Respond to enquiries and provide requested information
  • Manage sales and business communications
  • Improve website performance and user experience
  • Send company updates, insights, and marketing communications
  • Maintain security and prevent misuse
  • Protect our website, forms, and online services from spam, abuse, automated bot traffic, and other malicious activity.
  • Comply with legal obligations

4. Legal Basis for Processing

We process your data under:

  • Consent – for form submissions and marketing communications
  • Legitimate Interests – for website analytics and service improvement
  • Contractual Necessity – where services are requested
  • Legal Obligation – compliance with UK law

5. Marketing Communications

We may send you:

  • Company updates
  • Service insights
  • Event invitations

You can unsubscribe at any time via:

We do not send unsolicited mass communications without lawful basis.

6. Cookies & Tracking Technologies

We use cookies and similar technologies to:

  • Analyse website traffic (Google Analytics – GA4)
  • Improve user experience
  • Support marketing and performance tracking

A cookie consent banner is implemented, allowing you to accept or reject non-essential cookies.

You can also manage cookies via your browser settings.

Cloudflare Turnstile

We use Cloudflare Turnstile on our website to help protect our forms, pages, and online services from spam, abuse, automated bot traffic, and other malicious activity. Cloudflare Turnstile may process certain technical signals from website visitors, including IP address, browser and device information, user-agent details, TLS fingerprint, site key, origin information, and other security-related signals, for the purpose of distinguishing legitimate visitors from automated or abusive traffic. Where Cloudflare Turnstile is used in invisible mode, the verification may take place silently without displaying a visible security check or widget to the visitor. This helps us improve website security while maintaining a smoother browsing experience. Cloudflare processes Turnstile data for bot detection, abuse prevention, website security, and related security improvement purposes. For more information, please refer to Cloudflare’s Turnstile Privacy Addendum.

7. Data Sharing

We do not sell personal data.

We may share data with:

  • Zoho CRM and related tools (lead and enquiry management)
  • Analytics providers (e.g., Google Analytics)
  • Hosting and infrastructure providers
  • Professional advisers
  • Security and bot-prevention providers, including Cloudflare Turnstile

All providers are required to maintain appropriate data protection standards.

8. International Transfers

Some service providers may process data outside the UK.

Where applicable, we ensure safeguards such as:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions

9. Data Retention

We retain personal data only as long as necessary for:

  • Responding to enquiries
  • Business communication and follow-ups
  • Legal and compliance requirements

10. Data Security

We implement appropriate security measures, including:

  • Secure hosting environments
  • Access controls
  • Encryption where applicable
  • Monitoring and risk mitigation practices

11. Your Rights

Under UK GDPR, you have the right to:

  • Access your data
  • Request correction or deletion
  • Restrict or object to processing
  • Withdraw consent at any time
  • Data portability

To exercise your rights, contact:
[email protected]

12. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices.

13. Updates to This Policy

We may update this Privacy Policy periodically. Updates will be published on this page.

14. Contact

For privacy-related queries:
[email protected]