IT Support & Management

Cybersecurity & Defence

Microsoft 365

Network & Connectivity

AI & Automation

Your IT Strategy

Cloud

Legal & Compliance

Privacy Policy

How CT1 Technologies Limited collects, uses and protects your personal data when you visit our website, contact us, or use our services.

Privacy Notice

This Privacy Policy explains how CT1 Technologies Limited uses your personal data in line with UK data protection law, including the UK GDPR and the Data Protection Act 2018.

1. Who we are and how to contact us

This website is operated by CT1 Technologies Limited, a company registered in England and Wales.

Company name: CT1 Technologies Limited
Company number: 16827653
Registered office: 71 New Dover Road, Canterbury, England, CT1 3DZ

For the purposes of data protection law, we are the "data controller" of the personal data described in this notice.

You can contact us about this Privacy Policy or how we use your data by using the contact details on our website, or by writing to our registered office address marked for the attention of “Data Protection”.

2. Personal data we collect

We may collect and process the following categories of personal data:

  • Identity data – such as your name, job title and company name.
  • Contact data – such as business email address, telephone number and postal address.
  • Enquiry data – information you provide when you complete a form on our website, request a quote, book a consultation or contact our support team.
  • Account and support data – information relating to services we provide to you or your organisation, including support tickets, configuration details and communication history.
  • Technical data – such as IP address, browser type and version, time zone setting, operating system and device information.
  • Usage data – information about how you use our website and services, including pages viewed, links clicked and time spent on pages.
  • Marketing and communications data – your preferences in receiving marketing from us and your communication preferences.
  • Billing and payment data – limited payment information and transaction records, where required for invoicing and account management.

3. How we collect your data

We collect personal data in the following ways:

  • Directly from you – for example when you:
    • submit an enquiry form on our website;
    • communicate with us by email, phone or live chat;
    • enter into a contract for IT support, consultancy or hosting services;
    • attend a meeting, webinar or event organised by us.
  • Automatically – when you interact with our website we may automatically collect technical and usage data using cookies and similar technologies.
  • From third parties – for example from:
    • referrals or partner organisations you already work with;
    • service providers that help us deliver our services (such as hosting or monitoring platforms);
    • publicly available sources such as Companies House or professional networking sites.

4. How and why we use your data (lawful basis)

We only use your personal data where we have a valid legal basis. These are the main purposes and lawful bases:

4.1 To provide our services and manage our relationship with you

We use your identity, contact, enquiry, account, support and billing data to:

  • respond to enquiries and requests;
  • prepare and manage proposals, contracts and service agreements;
  • provision and support IT services, systems and infrastructure;
  • manage projects, changes and ongoing support;
  • administer billing and account management.

Legal basis: performance of a contract or taking steps at your request before entering into a contract; our legitimate interests in operating and growing our business.

4.2 To secure our systems and protect our business

We may process technical and usage data, along with limited identity and account data, to:

  • monitor and protect our networks, systems and services;
  • detect and prevent fraud, security incidents and misuse of services;
  • maintain logs and audit trails for security and compliance purposes.

Legal basis: our legitimate interests in ensuring the security, integrity and reliability of our services; compliance with legal obligations where applicable.

4.3 To improve our website and services

We may analyse technical and usage data to:

  • understand how visitors use our website and services;
  • diagnose issues and improve performance and usability;
  • develop new features, offerings and support processes.

Legal basis: our legitimate interests in running, improving and developing our services.

4.4 Marketing and communications

We may use your identity, contact and marketing preference data to send you information about our services, events or insights that we think may be relevant to you.

We will only send you electronic direct marketing where we are permitted to do so under e-privacy rules and, where required, where you have given your consent. You can opt out of marketing emails at any time by using the unsubscribe link in the email or by contacting us.

Legal basis: consent (where required); otherwise our legitimate interests in promoting and growing our business.

4.5 Legal and regulatory obligations

We may process any of the data categories above where necessary to:

  • comply with legal obligations (for example in relation to tax, accounting or regulatory requirements);
  • establish, exercise or defend legal claims.

Legal basis: compliance with legal obligations; our legitimate interests in protecting our legal rights.

5. Who we share your data with

We may share your personal data with:

  • Service providers and subcontractors who help us deliver our services, such as data centre providers, cloud platforms, backup and monitoring providers, email and collaboration tools, CRM and ticketing systems, and telecoms providers.
  • Professional advisers such as solicitors, auditors, accountants and insurers, where necessary for the purposes of professional advice and compliance.
  • Regulators, authorities and law enforcement where required by law or to protect our rights or those of others.
  • Business transferees – if we sell or transfer part of our business or assets, data may be disclosed to prospective or actual buyers and their advisers, subject to appropriate confidentiality protections.

We require all third parties who process personal data on our behalf to respect the security of your data, use it only for specified purposes and act under a written data processing agreement where required by law.

6. International transfers

Some of our service providers or their sub-processors may be located outside the UK (and the European Economic Area). Where personal data is transferred internationally, we will ensure that appropriate safeguards are in place, such as:

  • an adequacy decision from the UK government in respect of the destination country; or
  • standard contractual clauses or other legally recognised safeguards.

You can contact us for more information about the specific safeguards used for any international transfers relating to your data.

7. Data security

We take appropriate technical and organisational measures to protect personal data against unauthorised or unlawful processing, accidental loss, destruction or damage. These measures may include access controls, encryption, secure configuration, logging and monitoring, backup and recovery processes and staff training.

While we use reasonable efforts to protect your personal data, no transmission of data over the internet or any network can be guaranteed as completely secure.

8. How long we keep your data

We keep personal data only for as long as is reasonably necessary for the purposes described in this Privacy Policy, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements.

In general:

  • enquiry data is retained for up to 2 years after our last interaction with you, unless we enter into a contract;
  • contract and account data is retained for the duration of the service and for a standard period (typically up to 7 years) afterwards to meet legal and accounting requirements;
  • technical and usage data may be kept for shorter periods where possible, typically in aggregated or anonymised form.

We may retain data for longer where necessary in connection with a complaint, dispute or legal claim.

9. Your data protection rights

Under data protection law, you have a number of rights in relation to your personal data. These rights are not absolute and may be subject to certain conditions and exemptions, but they typically include:

  • Right of access – to obtain a copy of your personal data and information about how we process it.
  • Right to rectification – to have inaccurate or incomplete data corrected.
  • Right to erasure – to request deletion of your personal data in certain circumstances.
  • Right to restriction – to request that we restrict processing of your data in certain circumstances.
  • Right to data portability – to receive personal data you provided to us in a commonly used, machine-readable format where our processing is based on consent or contract and carried out by automated means.
  • Right to object – to object to our processing of your data where we are relying on legitimate interests (including profiling), and to object to direct marketing at any time.
  • Right to withdraw consent – where we rely on consent to process your data, you can withdraw that consent at any time.

To exercise any of these rights, please contact us using the details on our website or by writing to our registered office. We may need to verify your identity before fulfilling your request.

10. Complaints and contacting the ICO

If you have concerns about how we handle your personal data, we would encourage you to contact us first so we can try to resolve the issue.

You also have the right to lodge a complaint with the UK data protection regulator, the Information Commissioner’s Office (ICO):

Website: www.ico.org.uk
Helpline: 0303 123 1113
Address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

11. Cookies and similar technologies

Our website may use cookies and similar technologies to operate, remember your preferences and understand how our site is used. For more information about the cookies we use and how to control them, please refer to our separate Cookie Policy (where available).

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements or other factors. Any updates will be posted on this page with a revised “last updated” date.

We encourage you to review this page periodically to stay informed about how we handle your personal data.

We use cookies to improve your browsing experience and to analyse site traffic. By accepting, you agree to our cookie policy.