Privacy Policy

This Privacy Policy explains how Blackfield Systems Ltd (“Blackfield”, “we”, “us” or “our”) collects and uses personal data when you visit this website or contact us through it. We are committed to protecting your privacy and to handling your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who we are

Blackfield Systems Ltd is a company registered in England & Wales and is the data controller responsible for the personal data processed through this website. Our registered details are set out at the foot of this page. If you have any questions about this policy or how we handle your data, please contact us using the details in the “How to contact us” section below.

Personal data we collect

This website is a single informational page with an enquiry form. We collect personal data in two ways:

Information you provide. When you submit the enquiry form, we collect the name, email address and message content you give us.

Information collected automatically. When you visit the site, our hosting and security providers process technical data such as your IP address, browser type and the date and time of your request, in order to deliver the site and protect it against abuse. We do not use analytics or tracking cookies, and we do not build profiles of visitors.

How we use your data

We use your personal data to:

· respond to and manage your enquiry and any related correspondence;
· operate, maintain and secure the website, including protecting the enquiry form against spam and automated abuse; and
· comply with our legal obligations.

We do not use your data for marketing, and we do not sell it.

Lawful basis for processing

We rely on the following lawful bases under the UK GDPR:

Legitimate interests — to respond to enquiries you send us and to keep the website secure and functioning. Our legitimate interest is in communicating with people who contact us and in protecting our site and its users. Where you contact us about a potential engagement, processing may also be necessary to take steps at your request before entering into a contract.

Legal obligation — where we are required to retain or disclose data to comply with the law.

Sharing and disclosure

We do not sell or rent personal data. We share it only with service providers who process it on our behalf, and only as needed to run the website and respond to you:

· Cloudflare, Inc. — website hosting, content delivery and the Turnstile anti-bot challenge on the enquiry form;
· Resend, Inc. — delivery of enquiry emails sent from the form to us;
· Google LLC — serving the web fonts used by the site;
· BlockMark Technologies — serving our Cyber Essentials certificate badge on the Security page.

We may also disclose personal data where required by law or by a valid request from a public authority, or to establish, exercise or defend legal claims.

Data retention

We keep enquiry correspondence only for as long as necessary to deal with your enquiry and any follow-up, and to keep a record where we have a legitimate or legal reason to do so. Unless a longer period is required, we delete enquiry messages within 24 months of the matter being concluded. Technical and security logs held by our providers are retained for shorter periods in line with their standard practices.

International transfers

Some of our service providers are based outside the UK, including in the United States. Where personal data is transferred outside the UK, we rely on appropriate safeguards recognised under the UK GDPR — such as UK adequacy regulations, the UK International Data Transfer Agreement, or the International Data Transfer Addendum to the EU Standard Contractual Clauses — so that your data receives an equivalent level of protection.

Your rights

Under the UK GDPR you have the right to:

· access the personal data we hold about you;
· have inaccurate data corrected;
· have your data erased in certain circumstances;
· restrict or object to our processing;
· data portability; and
· withdraw consent where we rely on it.

To exercise any of these rights, contact us using the details below. We will respond within one month, and you will not normally have to pay a fee.

How to contact us or make a complaint

You can contact us about this policy or your personal data through the enquiry form on our home page, or by writing to us at our registered office address shown below.

If you are not satisfied with how we have handled your personal data, you have the right to complain to the Information Commissioner’s Office (ICO), the UK supervisory authority, at ico.org.uk or on 0303 123 1113. We would, however, appreciate the chance to address your concerns first.