Privacy Policy
At Plamtex, protecting your personal information isn't just something we say we care about. It's what we do every single day. This policy explains exactly how we handle your data when you use our security and firewall management services. We've written this in plain language because nobody should need a law degree to understand how their information is used.
Who We Are
Plamtex operates from 1 Spring Crescent, Southampton SO17 2FZ, United Kingdom. We specialise in security and firewall management solutions for businesses across the UK market. When we refer to "we," "us," or "our" in this document, we're talking about Plamtex and our team.
You can reach our data protection team at [email protected] or by calling +448438868171 during standard business hours. And yes, real people actually read those emails.
Information We Collect
Look, we only collect what we actually need. Running a security business means we understand data minimisation isn't just good practice—it's essential.
Information You Give Us Directly
- Your name, business email address, and phone number when you contact us
- Company details including business name, address, and VAT number for invoicing
- Technical requirements and network information you share during consultations
- Payment details processed through our secure payment provider
- Any correspondence you send us, whether by email, phone, or contact forms
Information We Collect Automatically
When you visit our website or use our services, some technical information gets collected automatically. This includes your IP address, browser type, device information, and how you interact with our site. We use this to improve our services and spot potential security issues—which, given what we do, you'd probably expect.
Information From Third Parties
Sometimes we receive information about you from partners or service providers you've authorised to share it. This might include referral partners, payment processors, or other security vendors you work with.
How We Use Your Information
Here's where we tell you exactly what we do with your data. No hidden surprises.
- Delivering the security and firewall management services you've contracted us for
- Communicating about your account, services, and any security alerts
- Processing payments and maintaining accurate financial records
- Improving our services based on usage patterns and feedback
- Sending you relevant updates about security threats or service improvements
- Complying with legal obligations and responding to lawful requests
- Protecting against fraud, unauthorised access, and other security risks
We don't sell your data to third parties. Never have, never will. That's not how we operate.
Legal Basis for Processing
Under UK data protection law (specifically the UK GDPR and Data Protection Act 2018), we need a lawful basis to process your personal information. Here's what applies to us:
Contract Performance: Most of what we do is necessary to deliver the services you've hired us for. Can't provide firewall management without processing some data about your systems.
Legitimate Interests: We process certain data because it's in our mutual interest—like improving service quality, preventing fraud, or keeping our systems secure.
Legal Obligations: Sometimes the law requires us to process or retain certain information, particularly around financial records and security incident reporting.
Consent: For marketing communications and certain optional services, we'll ask for your explicit consent before processing your data.
Your Rights
UK data protection law gives you substantial rights over your personal information. We take these seriously.
Access Your Data
You can request a copy of all personal information we hold about you. We'll provide this within one month, free of charge.
Correction Rights
If information we hold is inaccurate or incomplete, you can ask us to correct it. We'll update it promptly.
Deletion Rights
You can request deletion of your personal data in certain circumstances, though legal obligations may require us to retain some information.
Restrict Processing
You can ask us to limit how we use your data while we resolve any disputes or concerns you might have.
Data Portability
You can request your data in a commonly used, machine-readable format to transfer to another provider.
Object to Processing
You can object to processing based on legitimate interests or for direct marketing purposes at any time.
To exercise any of these rights, send an email to [email protected] with your request. We'll need to verify your identity before processing requests—standard security practice.
How We Share Information
We're not in the business of sharing your data around. But there are some situations where we need to share information with others:
Service Providers
We work with carefully selected third parties who help us deliver our services—hosting providers, payment processors, email platforms. These companies only get access to the data they need to perform their specific functions, and they're contractually bound to protect it.
Legal Requirements
If we're legally required to disclose information—court orders, regulatory requests, or legitimate law enforcement inquiries—we will. Though we'll notify you when possible unless prohibited by law.
Business Transfers
If Plamtex is acquired or merges with another company, your information would be transferred as part of that transaction. You'd be notified of any such change.
Data Security Measures
Given what we do for a living, you'd expect us to take security seriously. And we do.
We use industry-standard encryption for data in transit and at rest. Access to personal information is restricted to employees who need it for their roles. Our systems are regularly tested and updated. We conduct regular security audits and maintain detailed access logs.
But let's be honest—no system is 100% secure. What we can promise is that we apply the same rigorous security standards to your data that we recommend to our clients for their own systems.
Data Retention
We don't keep data longer than necessary. Here's how long we typically retain different types of information:
| Data Type | Retention Period | Reason |
|---|---|---|
| Client account information | Duration of relationship plus 6 years | Legal and contractual obligations |
| Financial records | 7 years | UK tax law requirements |
| Security logs | 12-24 months | Incident investigation and analysis |
| Marketing communications consent | Until withdrawn or 3 years of inactivity | Regulatory compliance |
| Website analytics | 26 months | Service improvement |
When data reaches the end of its retention period, we securely delete or anonymise it according to our data disposal procedures.
International Data Transfers
Your data is primarily stored and processed within the United Kingdom. However, some of our service providers operate globally, which means your information might occasionally be transferred outside the UK.
When this happens, we ensure appropriate safeguards are in place—whether that's adequacy decisions, standard contractual clauses, or other approved transfer mechanisms under UK data protection law. Your data maintains the same level of protection regardless of where it's processed.
Cookies and Tracking
Our website uses cookies to function properly and improve your experience. Essential cookies enable basic site functionality. Analytics cookies help us understand how people use our site. We don't use advertising cookies.
You can control cookie preferences through your browser settings, though disabling certain cookies might affect site functionality. For detailed information about our cookie practices, see our separate Cookie Policy.
Children's Privacy
Our services are designed for business use and aren't directed at children under 16. We don't knowingly collect personal information from children. If we discover we've inadvertently collected such information, we'll delete it promptly.
Changes to This Policy
Privacy law evolves. Our services evolve. This policy will need updating occasionally to reflect those changes.
When we make significant changes, we'll notify you by email and update the "Last Updated" date at the top of this page. We encourage you to review this policy periodically, particularly before providing us with any new personal information.
Questions or Concerns?
If something in this policy isn't clear, or if you have concerns about how we handle your data, get in touch.
Email: [email protected]
Phone: +448438868171
Post: Plamtex, 1 Spring Crescent, Southampton SO17 2FZ, United Kingdom
Regulatory Authority: If you believe we've not handled your personal data properly, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's independent data protection regulator.
You can contact the ICO at: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF. Telephone: 0303 123 1113. Website: www.ico.org.uk
We'd appreciate the opportunity to address your concerns directly before you approach the ICO, but the choice is entirely yours.