Streamline Digital Privacy Policy

Effective date: 13 February 2026

UK GDPR aligned Master policy (Streamline Digital Ltd) Cookie Policy: streamlinedigital.tech/cookiespolicy

1. Introduction

This Privacy Policy explains what personal data we collect about you, how we use it, who we share it with, and your rights when you:

  • visit our website(s); and/or
  • use our services (including consultancy, implementation, support, integration and related professional services).

Our website(s) may include links to third-party sites. Those sites have their own privacy notices and we are not responsible for their practices.

If you have any questions, contact us at [email protected].

You also have the right to complain to the Information Commissioner’s Office (ICO). We’d appreciate the opportunity to resolve concerns first, so please contact us in the first instance.

2. Who we are (data controller)

Streamline Digital Ltd is the data controller for personal data processed under this policy.

Company name Streamline Digital Ltd
Trading name Streamline Digital
Registered address Jubilee House, East Beach, Lytham St. Annes, England, FY8 5FT
Trading address 5 St Johns Lane, London, EC1 4BH
Data protection contact James Bogue
Email [email protected]

3. Data protection laws

We process personal data in accordance with the UK GDPR (as retained in UK law), the Data Protection Act 2018, and other applicable UK privacy laws (including PECR where relevant to cookies and marketing).

4. Personal data we collect

“Personal data” means information that identifies you (directly or indirectly). We may collect:

4.1 Identity Data

Name, job title, company name, username or identifier.

4.2 Contact Data

Email address, phone number, billing/invoicing address.

4.3 Transaction Data

Details of services purchased, invoices, payments, and related commercial records.

4.4 Technical Data

IP address, browser type/version, device information, operating system, time zone and approximate location, and other technical identifiers.

4.5 Usage Data

How you use our website and services (pages viewed, actions taken, time spent).

4.6 Marketing & Communications Data

Your preferences for receiving marketing, your opt-in/opt-out status, and your communications with us.

4.7 Interaction Data

Information you provide through forms, surveys, enquiries, support requests, phone calls, emails, live chat, and meetings.

4.8 Cookies Data

Information collected through cookies or similar technologies (see section 9).

4.9 Third-party information

We may receive personal data from third parties such as business partners, referral sources, analytics providers, advertising networks, and public sources, where lawful.

Aggregated data: We may use anonymised/aggregated data for reporting and service improvement. This is not personal data.

Special category data: We do not intentionally collect special category data (e.g., health, religion, political opinions). Please avoid sharing it unless specifically requested for a lawful purpose.

5. How we collect your personal data

We collect personal data when you:

  • fill in website forms,
  • request information, proposals, or services,
  • subscribe to content (e.g., newsletters/resources),
  • purchase services,
  • communicate with us (email, phone, meetings, live chat),
  • interact with marketing activities, and/or
  • browse our website(s) (via cookies and analytics, where applicable).

If you provide personal data about another person, you must ensure you have the right to provide it and that they can access this Privacy Policy.

6. How we use your personal data

We use personal data to:

  • provide and deliver our services (including planning, delivery, support, and issue resolution);
  • respond to enquiries and provide proposals/quotes;
  • administer accounts and customer relationships;
  • process payments and manage invoicing/accounting;
  • improve our services and website(s);
  • secure our systems, prevent fraud, and manage risk;
  • send service communications (e.g., updates and notices); and
  • send marketing communications where permitted (see section 10).

7. Lawful bases for processing

We only process personal data where permitted by law. We typically rely on one or more of:

  • Contract – to perform a contract with you or take steps at your request before entering a contract.
  • Legitimate interests – to run and improve our business, deliver services effectively, and keep our systems secure (balanced against your rights).
  • Legal obligation – to comply with law (e.g., tax/accounting requirements).
  • Consent – mainly for certain marketing and cookie preferences (where required).

8. Sharing (disclosing) your personal data

We do not sell your personal data.

8.1 Service providers (processors)

We use trusted third parties to help run our business and deliver services (e.g., hosting, cloud services, email delivery, CRM, analytics, accounting, and payment providers). They process personal data only on our instructions and under appropriate contractual terms.

8.2 Professional advisors

We may share data with lawyers, accountants, auditors, and insurers where necessary.

8.3 Legal requirements / protection

We may share data with regulators, law enforcement, courts, or other parties where we have a legal obligation or need to protect rights, property, or safety.

8.4 Business transfers

If we sell, merge, or reorganise the business, personal data may be shared with relevant parties (subject to safeguards).

8.5 Examples of third parties we may use (depending on the service)

The providers we use may change over time. Examples include:

  • APSIS (marketing automation/email)
  • efficy / webCRM (CRM platform and related services)
  • Xero (accounting/invoicing)
  • Microsoft Azure / cloud infrastructure
  • Payment processors and banking partners
  • Analytics providers (website analytics tools)

9. Cookies

We use cookies and similar technologies to operate our website(s), remember preferences, measure performance, and improve user experience.

Where required, we will request consent for non-essential cookies. You can also manage cookies through your browser settings.

Cookie Policy: https://streamlinedigital.tech/cookiespolicy

10. Marketing

10.1 When we may contact you

  • If you are an existing customer, we may contact you about similar services unless you opt out.
  • If you are a new contact, we will only send direct marketing where permitted by law or where you have opted in.

10.2 How to opt out / withdraw consent

You can opt out at any time by using an unsubscribe link (where included) and/or emailing [email protected].

Opting out of marketing will not stop essential service communications.

11. International transfers

We may store or process personal data outside the UK where suppliers operate internationally. Where personal data is transferred internationally, we use appropriate safeguards such as adequacy regulations and/or UK-approved contractual safeguards (e.g., the UK IDTA or the UK Addendum to EU SCCs).

12. Data security

We use appropriate technical and organisational measures to protect personal data, including access controls, secure hosting, encryption where appropriate, and supplier due diligence.

No method of transmission over the internet is completely secure; however, we take reasonable steps to protect your personal data.

If we become aware of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify you and/or the regulator where legally required.

13. Data retention

We keep personal data only as long as necessary for the purposes described in this policy and to meet legal requirements.

Typically, we retain customer and commercial records for the duration of the relationship and up to 7 years afterwards (commonly for tax/accounting). We may retain certain information longer where required by law or for legitimate business purposes (e.g., dispute resolution).

14. Your rights

Under UK GDPR you have rights, including to:

  • request access to your personal data;
  • request correction of inaccurate data;
  • request deletion (where applicable);
  • request restriction of processing;
  • object to processing (including direct marketing);
  • request data portability (where applicable); and
  • complain to the ICO.

To exercise your rights, contact [email protected]. We may need to verify your identity.

15. Automated decision-making and profiling

We do not generally use automated decision-making that produces legal or similarly significant effects. If that changes, we will update this policy and provide the required information and rights.

16. Changes to this Privacy Policy

We may update this policy periodically. The “Effective date” at the top will change. Continued use of our website(s) or services indicates acceptance of the updated policy.

17. Contact us

Email: [email protected]

If you want a copy of this policy in another format, email us and we’ll help.

Copyright 2026. Streamline Digital. All Rights Reserved.