Privacy Policy

Last Updated: 15 April 2025

1. Introduction

Zylnux Ltd ("we", "us", "our") is committed to protecting and respecting your privacy. This policy explains what personal data we collect, how we use it, the conditions under which we may disclose it to others, and how we keep it secure. This policy also explains your rights in relation to your personal data under the UK General Data Protection Regulation (UK GDPR).

This policy applies to visitors of our website zylnux.com (the "Website") and to our business clients and their employees when we provide our Services.

2. Data Controller Information

For the purpose of the UK GDPR, the data controller is Zylnux Ltd, a company registered in England and Wales under company number 12345678.

Our registered office and contact address for data protection matters is:

Data Protection Officer
Zylnux Ltd.
Level 39, One Canada Square
Canary Wharf, London, E14 5AB
Email: [email protected]

We are registered with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (Registration number Z1234567).

3. What Personal Data We Collect

We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together as follows:

  • Identity Data: Includes first name, last name, username or similar identifier, title, and company name.
  • Contact Data: Includes billing address, delivery address, email address, and telephone numbers.
  • Financial Data: Includes bank account and payment card details for processing payments for our services.
  • Transaction Data: Includes details about payments to and from you and other details of products and services you have purchased from us.
  • Technical Data: Includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
  • Profile Data: Includes your username and password for any client portal, purchases or orders made by you, your interests, preferences, feedback, and survey responses.
  • Usage Data: Includes information about how you use our website, products, and services.
  • Marketing and Communications Data: Includes your preferences in receiving marketing from us and our third parties and your communication preferences.

We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data).

4. How We Collect Your Data

We use different methods to collect data from and about you, including through:

  • Direct interactions: You may give us your Identity, Contact, and Financial Data by filling in forms on our Website (e.g., contact form) or by corresponding with us by post, phone, email, or otherwise. This includes personal data you provide when you:
    • apply for our products or services;
    • create an account on our website;
    • request marketing to be sent to you;
    • give us feedback or contact us.
  • Automated technologies or interactions: As you interact with our Website, we will automatically collect Technical Data about your equipment, Browse actions, and patterns. We collect this personal data by using cookies and other similar technologies. Please see our Cookie Policy for further details.
  • Third parties or publicly available sources: We may receive personal data about you from various third parties and public sources as set out below:
    • Technical Data from analytics providers such as Google.
    • Contact, Financial and Transaction Data from providers of technical, payment and delivery services.
    • Identity and Contact Data from data brokers or aggregators, and from publicly available sources such as Companies House.

5. How We Use Your Personal Data and Lawful Basis

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

  • To perform a contract: Where we need to perform the contract we are about to enter into or have entered into with you (e.g., to provide you with our Services).
  • For our legitimate interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. For example, to manage our business, analyse website traffic to improve user experience, or to prevent fraud.
  • With your consent: Where you have given us explicit consent to use your data for a specific purpose, such as sending you direct marketing emails.
  • To comply with a legal obligation: Where we need to comply with a legal obligation, such as for tax or accounting purposes.

6. Data Sharing and Disclosures

We may share your personal data with the parties set out below for the purposes outlined in section 5:

  • Internal Third Parties: Other companies in the Zylnux Group acting as joint controllers or processors.
  • External Third Parties:
    • Service providers acting as processors who provide IT and system administration services (e.g., hosting providers).
    • Professional advisers acting as processors or joint controllers including lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
    • HM Revenue & Customs, regulators, and other authorities acting as processors or joint controllers based in the United Kingdom who require reporting of processing activities in certain circumstances.
    • Third-party suppliers and distributors for the purpose of ordering hardware or software licenses on your behalf.
  • Third parties to whom we may choose to sell, transfer or merge parts of our business or our assets.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

7. International Transfers

We do not transfer your personal data outside the United Kingdom (UK). If in the future we need to transfer your data to a country not deemed to provide an adequate level of protection, we will ensure that appropriate safeguards are in place, such as by using specific contracts approved by the UK Secretary of State which give personal data the same protection it has in the UK.

8. Data Security

We have put in place appropriate technical and organisational security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. These measures include encryption, access control, and regular security assessments. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

9. Data Retention

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements. By law, we have to keep basic information about our customers (including Contact, Identity, Financial, and Transaction Data) for six years after they cease being customers for tax purposes.

In some circumstances you can ask us to delete your data: see "Your legal rights" below for further information.

10. Your Legal Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data. These include the right to:

  • Request access to your personal data.
  • Request correction of the personal data that we hold about you.
  • Request erasure of your personal data.
  • Object to processing of your personal data where we are relying on a legitimate interest.
  • Request restriction of processing of your personal data.
  • Request the transfer of your personal data to you or to a third party.
  • Withdraw consent at any time where we are relying on consent to process your personal data.

If you wish to exercise any of the rights set out above, please contact our Data Protection Officer at [email protected]. You will not have to pay a fee to access your personal data, but we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data.

You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk).

11. Changes to this Privacy Policy

We keep our privacy policy under regular review. This version was last updated on the date shown above. We may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes.

We use cookies to enhance your Browse experience and analyze our traffic. By clicking "Accept", you consent to our use of cookies. Learn more.