This policy applies when you visit this website, contact IoT Technologies Ltd, submit an enquiry, correspond with us, or interact with us as a business contact, supplier, prospect, customer representative or professional adviser.

Most personal information we handle through the website is business contact data. That can include your name, role, organisation, business email address, telephone number, message content, project context, communication history and any technical or commercial details you choose to send us.

Where this website links to third-party services, those services may operate their own privacy notices. We are not responsible for the privacy practices of third-party websites or systems that are not under our control.

We may collect information you provide directly, including enquiry forms, technical briefs, emails, meeting requests, call notes and contact preferences.

We may process limited technical data required to operate and secure the website, including IP address, browser type, device information, request logs, security events, timestamps and basic usage signals.

We do not intentionally collect special-category personal data through the website. Please do not send unnecessary sensitive personal information through enquiry forms or general email unless we specifically ask for it for a lawful and necessary purpose.

We use personal information to respond to enquiries, assess potential projects, prepare proposals, manage business relationships, provide support, operate the website, maintain security, prevent abuse and comply with legal or regulatory obligations.

We may use business contact data to follow up a genuine enquiry or existing relationship. We do not sell personal data. We do not trade personal data. We do not build advertising profiles from enquiry data.

Where we need to retain information for contractual, legal, accounting, operational or dispute-resolution reasons, we keep it only for as long as necessary for those purposes.

We may share information with trusted service providers who help us operate the website and business, such as hosting, email, security, CRM, professional advisers, support tools and infrastructure providers.

Where suppliers process personal data for us, we expect them to protect it, use it only for authorised purposes, and apply suitable technical and organisational safeguards.

We may disclose information where required by law, court order, regulatory requirement, professional obligation, fraud prevention, security incident investigation, or to establish, exercise or defend legal rights.

Depending on the circumstances, you may have rights to be informed, access your data, correct inaccurate data, request deletion, restrict processing, object to processing, request portability, or challenge certain automated decisions.

To make a privacy request, contact us through the Contact page or email us and mark the message “Privacy request”. We may need to verify your identity and understand the context before acting on a request.

You also have the right to complain to the UK Information Commissioner’s Office. We ask that you contact us first where practical so we can investigate and respond.

We use proportionate technical and organisational controls to protect personal information, including access controls, least-privilege permissions, secure configuration, monitoring and supplier governance.

No internet-connected system can be guaranteed completely risk-free. We treat security as an operational discipline and review controls as the website, services and threat environment evolve.