Let's talk

Privacy

Privacy Policy

How we handle personal information when you use the Azuki website.

Effective date: 15 April 2026

Controller: Azuki Ltd

Registered address: Broadway House, Hardwick, Cambridge, CB23 7QJ

Contact email: hello@azuki.io

1. Introduction

Azuki Ltd (“Azuki”, “we”, “us”, “our”) is a UK-based software consultancy providing mobile and web development services to businesses.

This Privacy Policy explains how we collect, use, and protect personal data when you visit our website or contact us.

We are the data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. The Personal Data We Collect

We collect personal data in the following ways:

2.1 Information You Provide via Contact Forms

If you contact us through our website, we may collect:

  • Name
  • Company name
  • Email address
  • Any information included in your message

We collect this data to respond to your enquiry.

2.2 Website Usage Data (Analytics)

With your consent, we use PostHog (PostHog Ltd) and Google Analytics to understand how visitors use our website and to measure key actions such as contact enquiries, discovery call clicks, and visits to our price calculator.

PostHog is configured to use EU data hosting (https://eu.i.posthog.com).

Google services are loaded using Google Consent Mode with ad and analytics storage denied by default until you accept cookies.

Analytics data may include:

  • IP address (processed by PostHog)
  • Browser type and version
  • Device type and operating system
  • Pages visited
  • Time and date of visits
  • Time spent on pages
  • Referring website
  • Interaction events (e.g. page views, clicks)

We also use Google Ads conversion measurement to understand whether key commercial actions on our website lead to useful enquiries.

3. Cookies and Consent

Our website uses cookies and consent-based measurement tools for analytics and conversion tracking.

3.1 Consent-Based Analytics

We operate a cookie consent banner that:

  • Sets Google analytics and advertising storage to denied by default
  • Requires opt-in consent before granting analytics storage
  • Allows you to reject non-essential cookies
  • Allows you to withdraw consent at any time

If you reject analytics cookies, PostHog operates in cookieless mode, meaning identifying analytics cookies are not stored in your browser.

Google may still receive consent mode signals needed to operate in a limited privacy-preserving mode, but ad and analytics storage remain denied unless you accept cookies.

3.2 Advertising and Conversion Measurement

We use Google Ads conversion measurement to record actions such as:

  • Submitting our contact form
  • Clicking to book a discovery call
  • Clicking through to our price calculator

We do not sell personal data or use our website for broad third-party behavioural advertising.

4. Lawful Bases for Processing

Under UK GDPR, we rely on the following lawful bases:

4.1 Contact Enquiries

Lawful basis: Legitimate interests (Article 6(1)(f))

We process your details to respond to business enquiries and potential commercial engagements.

4.2 Website Analytics and Conversion Measurement

Lawful basis: Consent (Article 6(1)(a))

Analytics and conversion measurement operate using denied default consent settings and only gain full ad or analytics storage after you provide explicit consent.

You may withdraw consent at any time via our cookie settings.

5. How We Use Your Information

We use personal data to:

  • Respond to enquiries
  • Communicate regarding potential or ongoing business relationships
  • Improve website performance and usability
  • Measure whether important website actions lead to enquiries
  • Maintain website security

We do not sell personal data.

6. Data Retention

We retain personal data only as long as necessary:

  • Contact enquiries: Up to 24 months from last correspondence unless a commercial relationship is established.
  • Analytics data: Retained within PostHog and Google according to our configured retention settings unless deleted earlier.
  • Business client data: Retained in accordance with contractual and statutory requirements.

We may retain data longer where required for legal or regulatory compliance.

7. Sharing of Personal Data

We may share data with trusted service providers who act as data processors, including:

  • PostHog Ltd (website analytics)
  • Google (analytics and ads conversion measurement)
  • Hosting providers
  • Email and IT service providers

All processors are contractually required to protect personal data and only process it in accordance with our instructions.

We do not sell personal data or share it for unrelated third-party advertising purposes.

8. International Transfers

PostHog is configured for EU data hosting. Google and other service providers may process personal data outside the UK or EEA. Where personal data is transferred outside the UK or EEA, it is done under appropriate safeguards, such as:

  • UK International Data Transfer Agreement (IDTA), or
  • EU Standard Contractual Clauses (SCCs), as applicable.

9. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • Secure hosting environments
  • Encrypted transmission (HTTPS)
  • Access controls
  • Limited access to authorised personnel only

No internet transmission is entirely secure, but we take reasonable steps to protect your data.

10. Your Data Protection Rights

Under UK GDPR, you have the right to:

  • Request access to your personal data
  • Request correction of inaccurate data
  • Request erasure of your personal data
  • Request restriction of processing
  • Object to processing based on legitimate interests
  • Request data portability (where applicable)
  • Withdraw consent at any time (where processing is based on consent)

To exercise these rights, contact us at:

hello@azuki.io

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) if you believe your data protection rights have been breached.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices and encourage you to review their privacy policies.

12. Children’s Data

Our website and services are intended for business users. We do not knowingly collect personal data from children.

13. Changes to This Policy

We may update this Privacy Policy periodically. The latest version will always be published on this page with an updated effective date.