PRIVACY POLICY
Last Updated: [Publication revision — insert effective date when this document is published]
Effective Date: [Publication revision — insert effective date when this document is published]
This Privacy Policy describes how the operator of this website (“we”, “us”, “our”) collects, uses, stores, and protects personal data when you visit or use this site and related business-to-business services.
Statutory identification of the data controller (registered name and address where required) may appear elsewhere on this website when the operator finalizes required disclosures — not duplicated here.
If you represent a roofing business using this site as a prospect or customer: this policy covers your interactions with us regarding our services.
If you submitted data only through a third-party contractor’s site that uses tooling or hosting from us: consult that contractor’s privacy notice; our role is governed by our agreements with them.
1. WHO WE ARE — CONTACT FOR PRIVACY
For transparency notices under applicable privacy law (including GDPR Articles 13/14 where relevant), defer to any published operator identity and postal contact routes shown on this website when available.
Privacy and data-protection correspondence: use the contact routes shown on this website (Contact section). Do not infer an email address or mailing address from this policy text alone unless the same routes are visibly published onsite.
Where no statutory Data Protection Officer is required for the processing described below, substantive privacy enquiries use those published routes.
2. DATA WE PROCESS, WHY, AND LEGAL BASIS
2.1 Website analytics
Coarse traffic and diagnostics to run and secure the site, without cross-site behavioural advertising as a described purpose here. Techniques may avoid unnecessary cookies where feasible. Typical basis where EU/UK law applies: legitimate interests balanced against your rights.
2.2 Messages you send us
Information you voluntarily provide (such as names, organisation, message content, telephone or email if you supply them). Basis: responding to enquiries and entering into or performing arrangements you request.
2.3 Legitimate outreach
Professionally relevant information from public business sources when we prepare or send first contact aligned with publicly stated trade visibility. Typical basis: legitimate interests, with objection and opt-out paths respected without undue delay.
2.4 If you become a contracted customer
Account, onboarding, invoicing artefacts, agreed performance artefacts, retention per contract and bookkeeping rules.
2.5 Cookies / local storage
Prefer minimal storage. If non-essential cookies are introduced, appropriate consent or controls will be provided where local law requires before they are set.
3. RETENTION (SUMMARY)
Kept only as long as needed for the purposes above, subject to legal retention periods (e.g. finance), then deleted or anonymised unless a separate lawful ground applies.
4. INTERNATIONAL TRANSFERS
Where providers process data across borders, standard safeguards (such as approved clauses or recognised frameworks) may apply as documented with each vendor in line with their terms.
5. RIGHTS (EU / UK, HIGH LEVEL)
Subject to applicable law: access, rectification, erasure, restriction, portability, objection to certain processing, and the right to lodge a complaint with a supervisory authority. Use the published contact routes on this site; identity checks may apply.
6. U.S. STATE CONSUMERS (HIGH LEVEL)
Depending on your state, you may have rights to know, delete, correct, or opt out of certain processing. We do not sell personal information as that term is commonly defined in those laws. Exercise rights through the same published contact routes unless a dedicated channel is published.
7. SUBPROCESSORS
Infrastructure categories may include hosting, transactional email, payments-related tokenisation surfaces, analytics, and similar. A current list or category summary may be provided on request where appropriate.
8. CHILDREN
Services are aimed at businesses. If you believe a minor’s data was collected in error, contact us through the published routes so we can delete it.
9. DEMOS / PREVIEWS
Illustrative materials may use lawfully obtained public information; objections and takedown requests are handled promptly where justified.
10. SECURITY
Reasonable technical and organisational measures appropriate to the risk (including access control, transport encryption, and vendor due diligence where applicable).
11. EXTERNAL LINKS
Other sites have their own policies; review them before sharing personal data.
12. CHANGES
Material updates will refresh the effective date at the top; where we may contact you lawfully, we may also notify you directly.
13. REGULATORY COMPLAINTS
You may contact the data protection authority for your usual place of residence or place of an alleged infringement (EU/UK), or use other channels available in your jurisdiction, in addition to contacting us first.
—
This policy is intentionally generic in source. Before going live, align onsite contact channels with your actual legal entity and mailbox, publish any required jurisdictional disclosures separately, and review with qualified counsel for your markets.