Privacy Policy

1. Introduction

At CraftPro Limited ("CraftPro", "we", "us", or "our"), we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at craftpro.uk or use our services.

CraftPro Limited is the data controller and responsible for your personal data. We are registered with the Information Commissioner's Office (ICO) in the United Kingdom.

Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the site or use our services.

2. Information We Collect

We collect several types of information from and about users of our website and services, including:

2.1 Personal Data

Personal Data refers to information that identifies you personally, such as your name, contact information, and payment details. We may collect the following types of Personal Data:

• Contact information (such as name, email address, mailing address, and phone number)
• Account credentials (such as username and password)
• Professional information (such as trade skills, qualifications, certifications, and work experience)
• Payment information (such as credit card details and billing address)
• Profile information (such as profile pictures, portfolio images, and biographical information)
• Communication preferences

2.2 Usage Data

We may also collect information about how you access and use our website and services, including:

• IP address
• Browser type and version
• Operating system
• Referral source
• Length of visit, page views, and website navigation paths
• Timing, frequency, and pattern of service use

2.3 Cookies and Similar Technologies

We use cookies and similar tracking technologies to track activity on our website and hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier. For more information about the cookies we use, please see our Cookie Policy.

3. How We Collect Information

We collect information through various methods, including:

• Direct interactions: When you create an account, fill out forms, correspond with us, or otherwise engage with our services.
• Automated technologies: As you navigate through our website, we may automatically collect technical data about your equipment, browsing actions, and patterns.
• Third parties: We may receive information about you from third parties, such as business partners, social media platforms, and payment processors.

4. How We Use Your Information

We may use the information we collect for various purposes, including to:

• Provide, operate, and maintain our website and services
• Create and manage your account
• Process transactions and send related information, including confirmations and invoices
• Personalize your experience and deliver content relevant to your interests
• Respond to your inquiries and provide customer support
• Send you technical notices, updates, security alerts, and administrative messages
• Communicate with you about products, services, offers, promotions, and events
• Monitor and analyze trends, usage, and activities in connection with our website and services
• Detect, prevent, and address technical issues, fraud, and illegal activity
• Comply with legal obligations

5. Legal Basis for Processing

Under the UK General Data Protection Regulation (UK GDPR), we will only process your personal data when we have a legal basis to do so. The legal basis will depend on the purposes for which we have collected and used your personal data. In almost all cases, the legal basis will be one of the following:

• Contract: To perform a contract with you, such as when you create an account or use our services
• Legal obligation: To comply with a legal obligation to which we are subject
• Legitimate interests: For our legitimate interests or those of a third party, such as to improve our services, prevent fraud, or for direct marketing, where these interests are not overridden by your interests or fundamental rights and freedoms
• Consent: With your explicit consent, which you can withdraw at any time

Where we rely on consent as the legal basis for processing your personal data, you have the right to withdraw your consent at any time. This will not affect the lawfulness of any processing carried out before you withdraw your consent.

6. Data Sharing and Disclosure

We may share your information with the following categories of recipients:

6.1 Service Providers

We may share your information with third-party service providers who perform services on our behalf, such as payment processing, data analysis, email delivery, hosting services, and customer service.

6.2 Business Partners

We may share your information with our business partners to offer you certain products, services, or promotions.

6.3 Legal Requirements

We may disclose your information where required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).

6.4 Business Transfers

In the event of a merger, acquisition, or asset sale, your personal data may be transferred as a business asset. We will notify you before your personal data is transferred and becomes subject to a different Privacy Policy.

7. Data Security

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal data we process. However, please note that no method of transmission over the Internet or method of electronic storage is 100% secure.

8. Data Retention

We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your personal data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies.

9. Your Data Protection Rights

Under the UK GDPR, you have the following rights regarding your personal data:

• Right of access: You have the right to request copies of your personal data.
• Right to rectification: You have the right to request that we correct any inaccurate personal data or complete any incomplete personal data we hold about you.
• Right to erasure (right to be forgotten): You have the right to request that we delete your personal data in certain circumstances.
• Right to restrict processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
• Right to data portability: You have the right to request that we transfer the personal data you have provided to us to another organization, or directly to you, in a structured, commonly used, and machine-readable format.
• Right to object: You have the right to object to our processing of your personal data for direct marketing purposes or where we are relying on a legitimate interest.
• Rights relating to automated decision-making and profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or significantly affects you.

To exercise any of these rights, please contact us at privacy@craftpro.uk. We will respond to your request within one month. You will not have to pay a fee to access your personal data or to exercise any of your other rights. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive.

You also have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk).

10. International Data Transfers

We primarily store and process your personal data within the United Kingdom and the European Economic Area (EEA). However, your information may be transferred to — and maintained on — computers located outside of these areas where the data protection laws may differ from those in your jurisdiction.

Whenever we transfer your personal data outside the UK or EEA, we ensure a similar degree of protection is afforded to it by implementing appropriate safeguards, such as:

• Using specific contracts approved by the UK Information Commissioner that give personal data the same protection it has in the UK (known as the International Data Transfer Agreement or "IDTA")
• Transferring data to countries that have been deemed to provide an adequate level of protection for personal data by the UK government
• Where we use providers based in the US, we may transfer data to them if they are part of a framework that ensures they provide similar protection to personal data shared between the UK/Europe and the US

Please contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the UK or EEA.

11. Children's Privacy

Our services are not intended for use by children under the age of 16, and we do not knowingly collect personal data from children under 16. If you are under 16, please do not provide any personal data to us.

If we become aware that we have collected personal data from a child under 16 without verification of parental consent, we will take steps to remove that information from our servers and terminate the child's account.

12. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page, updating the "Last updated" date at the top of this Privacy Policy, and, where appropriate, notifying you by email.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Historic versions of this Privacy Policy are archived and can be obtained by contacting us.

13. Contact Us

If you have any questions about this Privacy Policy, please contact us at privacy@craftpro.uk.