Let's talk

Privacy

Privacy Policy

How we handle personal information when you use the Azuki website.

Effective date: [Insert date]

Controller: Azuki Ltd

Registered address: [Insert registered office address]

Contact email: [Insert privacy/contact email]

1. Introduction

Azuki Ltd (“Azuki”, “we”, “us”, “our”) is a UK-based software consultancy providing mobile and web development services to businesses.

This Privacy Policy explains how we collect, use, and protect personal data when you visit our website or contact us.

We are the data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. The Personal Data We Collect

We collect personal data in the following ways:

2.1 Information You Provide via Contact Forms

If you contact us through our website, we may collect:

  • Name
  • Company name
  • Email address
  • Any information included in your message

We collect this data to respond to your enquiry.

2.2 Website Usage Data (Analytics)

With your consent, we use PostHog (PostHog Ltd) to collect analytics data about how visitors use our website.

PostHog is configured to use EU data hosting (https://eu.i.posthog.com).

Analytics data may include:

  • IP address (processed by PostHog)
  • Browser type and version
  • Device type and operating system
  • Pages visited
  • Time and date of visits
  • Time spent on pages
  • Referring website
  • Interaction events (e.g., page views, clicks)

We do not use advertising trackers or behavioural advertising cookies.

3. Cookies and Consent

Our website uses cookies for analytics purposes.

3.1 Consent-Based Analytics

We operate a cookie consent banner that:

  • Requires opt-in consent before enabling analytics cookies
  • Allows you to reject non-essential cookies
  • Allows you to withdraw consent at any time

If you reject analytics cookies, PostHog operates in cookieless mode, meaning identifying analytics cookies are not stored in your browser.

3.2 No Advertising Cookies

We do not use:

  • Advertising cookies
  • Third-party marketing trackers
  • Cross-site behavioural profiling

4. Lawful Bases for Processing

Under UK GDPR, we rely on the following lawful bases:

4.1 Contact Enquiries

Lawful basis: Legitimate interests (Article 6(1)(f))

We process your details to respond to business enquiries and potential commercial engagements.

4.2 Website Analytics

Lawful basis: Consent (Article 6(1)(a))

Analytics cookies and tracking are only activated after you provide explicit consent.

You may withdraw consent at any time via our cookie settings.

5. How We Use Your Information

We use personal data to:

  • Respond to enquiries
  • Communicate regarding potential or ongoing business relationships
  • Improve website performance and usability
  • Maintain website security

We do not sell personal data.

6. Data Retention

We retain personal data only as long as necessary:

  • Contact enquiries: Up to 24 months from last correspondence unless a commercial relationship is established.
  • Analytics data: Retained within PostHog for up to 12 months unless deleted earlier.
  • Business client data: Retained in accordance with contractual and statutory requirements.

We may retain data longer where required for legal or regulatory compliance.

7. Sharing of Personal Data

We may share data with trusted service providers who act as data processors, including:

  • PostHog Ltd (website analytics)
  • Hosting providers
  • Email and IT service providers

All processors are contractually required to protect personal data and only process it in accordance with our instructions.

We do not transfer personal data for advertising purposes.

8. International Transfers

PostHog is configured for EU data hosting. Where personal data is transferred outside the UK or EEA, it is done under appropriate safeguards, such as:

  • UK International Data Transfer Agreement (IDTA), or
  • EU Standard Contractual Clauses (SCCs), as applicable.

9. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • Secure hosting environments
  • Encrypted transmission (HTTPS)
  • Access controls
  • Limited access to authorised personnel only

No internet transmission is entirely secure, but we take reasonable steps to protect your data.

10. Your Data Protection Rights

Under UK GDPR, you have the right to:

  • Request access to your personal data
  • Request correction of inaccurate data
  • Request erasure of your personal data
  • Request restriction of processing
  • Object to processing based on legitimate interests
  • Request data portability (where applicable)
  • Withdraw consent at any time (where processing is based on consent)

To exercise these rights, contact us at:

[Insert contact email]

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) if you believe your data protection rights have been breached.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices and encourage you to review their privacy policies.

12. Children’s Data

Our website and services are intended for business users. We do not knowingly collect personal data from children.

13. Changes to This Policy

We may update this Privacy Policy periodically. The latest version will always be published on this page with an updated effective date.