⚡ 14-Day Free Trial — No Credit Card Required·🚀 Live in 48 Hours·🇬🇧 UK-Based Support·💰 Refer a business — earn £200Refer & Earn →
Legal

Privacy Policy

Last updated: 1 January 2025  ·  Applies to: struvodigital.co.uk

1. Who We Are

Struvo Digital Ltd is a company registered in England and Wales. We provide AI automation services — including AI Receptionist, workflow automation, chatbot development, lead generation and related digital services — to small and medium-sized businesses across the United Kingdom.

For the purposes of UK GDPR, Struvo Digital Ltd is the data controller responsible for your personal data.

2. What Data We Collect

We collect personal data in a number of ways, including when you fill in a form, use our services or browse our website. The categories of data we may collect include:

  • Identity data: First name, last name, business name, job title.
  • Contact data: Email address, telephone number, postal address.
  • Technical data: IP address, browser type and version, time zone, operating system, device type.
  • Usage data: Information about how you use our website and services, including pages visited, time spent on pages and links clicked.
  • Cookie and tracking data: Data collected via cookies and similar technologies (see our Cookies section below).
  • Form submission data: Any information you voluntarily provide when completing a contact, demo request or onboarding form.
  • Call recordings: If you are an AI Receptionist client, calls handled by our AI may be recorded for service delivery, quality assurance and training purposes. You will be notified of recording at the start of each call.

We do not knowingly collect data from individuals under the age of 16. If you believe we have inadvertently collected such data, please contact us immediately.

3. How We Use Your Data

We use the personal data we collect for the following purposes:

  • Service delivery: To set up, manage and provide the services you have contracted with us.
  • Responding to enquiries: To answer questions, provide quotes and communicate with prospective clients.
  • Marketing communications: To send newsletters, product updates and promotional content where you have given consent or where we have a legitimate interest to do so.
  • Platform improvement: To analyse usage patterns, fix bugs and improve the performance and features of our services.
  • Legal obligations: To comply with applicable laws, regulations and legal processes, including tax and accounting requirements.
  • Security: To detect and prevent fraud, abuse and other harmful activities.

Under UK GDPR (Article 6), we rely on the following lawful bases for processing your personal data:

  • Contract performance (Article 6(1)(b)): Processing necessary to perform a contract with you, or to take steps at your request prior to entering into a contract.
  • Legitimate interests (Article 6(1)(f)): Processing necessary for our legitimate business interests, such as improving our services, preventing fraud and direct marketing to existing clients, provided those interests are not overridden by your rights.
  • Consent (Article 6(1)(a)): Where you have given clear, specific consent — for example, signing up to our marketing emails or accepting non-essential cookies. You may withdraw consent at any time.
  • Legal obligation (Article 6(1)(c)): Processing necessary to comply with a legal obligation, such as retaining financial records for HMRC purposes.

5. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Our standard retention periods are:

  • Enquiry and prospect data: 3 years from the date of last contact.
  • Client account and contract data: 7 years from the end of the contract (as required by UK financial regulations).
  • Marketing and newsletter data: Until you unsubscribe or withdraw consent.
  • Cookie and analytics data: Up to 13 months, in line with ICO guidelines.
  • Call recordings: Up to 12 months unless required longer for a specific legal or contractual purpose.

After these periods, data is securely deleted or anonymised.

6. Your Rights

Under UK GDPR, you have the following rights regarding your personal data:

  • Right of access: Request a copy of the personal data we hold about you (Subject Access Request).
  • Right to rectification: Request correction of inaccurate or incomplete data.
  • Right to erasure ("right to be forgotten"): Request deletion of your personal data where there is no compelling reason for us to continue processing it.
  • Right to restriction: Request that we restrict processing of your data in certain circumstances.
  • Right to data portability: Receive your data in a structured, commonly used and machine-readable format and transfer it to another controller.
  • Right to object: Object to processing based on legitimate interests or for direct marketing purposes.
  • Rights related to automated decision-making: The right not to be subject to solely automated decisions that have a significant effect on you.

To exercise any of these rights, please contact us at hello@struvodigital.co.uk. We will respond within 30 days. We may need to verify your identity before processing your request.

7. Cookies

We use cookies and similar tracking technologies on our website. Cookies are small text files placed on your device. We use the following categories of cookies:

  • Essential cookies: Required for the website to function correctly. These cannot be disabled as they are necessary for core site features such as navigation and security. No consent is required.
  • Analytics cookies (opt-in): We use Google Analytics to understand how visitors interact with our site. These cookies collect aggregated, anonymised data and are only set with your consent.
  • Session recording cookies (opt-in): We use Hotjar to record anonymised session data and heatmaps to improve our user experience. These are only activated with your consent.
  • Marketing cookies (optional): Used to deliver relevant advertising and track the effectiveness of campaigns. Only placed with your explicit consent.

You can manage your cookie preferences at any time using the cookie banner displayed when you first visit the site, or by contacting us. Note that disabling certain cookies may affect site functionality.

8. Third Parties

We work with a number of trusted third-party service providers who may process your data on our behalf as data processors. These providers are contractually bound to handle your data securely and only for the purposes we specify:

  • Netlify — Website hosting and deployment. Privacy policy: netlify.com/privacy.
  • Google Analytics — Website traffic analysis and user behaviour analytics (opt-in only).
  • Hotjar — Session recording, heatmaps and user feedback (opt-in only).
  • Tidio — Live chat and chatbot support functionality.

We do not sell, rent or trade your personal data to any third parties for their own marketing purposes. Any data sharing is strictly limited to what is necessary to provide our services.

Where third-party providers are based outside the UK or EEA, we ensure appropriate safeguards are in place (such as Standard Contractual Clauses) to protect your data.

9. Security

We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, loss, destruction or alteration:

  • Encryption in transit: All data transmitted between your browser and our services is encrypted using TLS/SSL protocols.
  • Access controls: Access to personal data is restricted to authorised personnel who need it to perform their duties, and is protected by strong authentication.
  • Regular security audits: We conduct periodic reviews of our security practices and infrastructure.
  • Data minimisation: We only collect and retain the minimum data necessary for the stated purpose.

Despite these measures, no method of data transmission or storage is 100% secure. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify the ICO within 72 hours and inform affected individuals without undue delay.

10. Contact Us

If you have any questions, concerns or requests regarding this Privacy Policy or how we handle your personal data, please get in touch:

If you are not satisfied with our response, or believe we are processing your data unlawfully, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology or legal obligations. The "Last updated" date at the top of this page will always reflect when the policy was most recently revised.

For material changes — those that significantly affect your rights or how we use your data — we will notify registered users by email in advance of the change taking effect. We encourage you to review this policy periodically.

Continued use of our website or services after any changes to this policy constitutes your acceptance of the updated terms. If you do not agree to the updated policy, please discontinue use and contact us to request deletion of your data.

📅 Free Demo💬 WhatsApp Us
💬Chat with us
S
Struvo Assistant
● Online now